2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
22 package org.onap.aaf.cadi.aaf;
24 import java.io.IOException;
25 import java.io.PrintStream;
26 import java.net.HttpURLConnection;
27 import java.net.InetSocketAddress;
28 import java.net.Socket;
30 import java.util.ArrayList;
31 import java.util.Date;
32 import java.util.List;
35 import org.onap.aaf.cadi.Access.Level;
36 import org.onap.aaf.cadi.CadiException;
37 import org.onap.aaf.cadi.Locator;
38 import org.onap.aaf.cadi.Locator.Item;
39 import org.onap.aaf.cadi.LocatorException;
40 import org.onap.aaf.cadi.PropAccess;
41 import org.onap.aaf.cadi.SecuritySetter;
42 import org.onap.aaf.cadi.aaf.v2_0.AAFLocator;
43 import org.onap.aaf.cadi.client.Future;
44 import org.onap.aaf.cadi.config.Config;
45 import org.onap.aaf.cadi.config.SecurityInfoC;
46 import org.onap.aaf.cadi.configure.Agent;
47 import org.onap.aaf.cadi.http.HBasicAuthSS;
48 import org.onap.aaf.cadi.http.HClient;
49 import org.onap.aaf.cadi.http.HX509SS;
50 import org.onap.aaf.cadi.locator.SingleEndpointLocator;
51 import org.onap.aaf.cadi.oauth.HRenewingTokenSS;
52 import org.onap.aaf.cadi.util.FixURIinfo;
53 import org.onap.aaf.misc.env.APIException;
55 public class TestConnectivity {
57 private static Map<String, String> aaf_urls;
60 public static void main(String[] args) {
62 System.out.println("Usage: ConnectivityTester <cadi_prop_files> [<AAF FQDN (i.e. aaf.dev.att.com)>]");
64 print(true,"START OF CONNECTIVITY TESTS",new Date().toString(),System.getProperty("user.name"),
65 "Note: All API Calls are /authz/perms/user/<AppID/Alias of the caller>");
67 if (!args[0].contains(Config.CADI_PROP_FILES+'=')) {
68 args[0]=Config.CADI_PROP_FILES+'='+args[0];
71 PropAccess access = new PropAccess(args);
73 SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(access, HttpURLConnection.class);
74 aaf_urls = Agent.loadURLs(access);
76 List<SecuritySetter<HttpURLConnection>> lss = loadSetters(access,si);
78 String directAAFURL = aaf_urls.get(Config.AAF_URL);
79 if(directAAFURL!=null && !(directAAFURL.contains("/locate/") || directAAFURL.contains("AAF_LOCATE_URL"))) {
80 print(true,"Test Connections by non-located aaf_url");
81 Locator<URI> locator = new SingleEndpointLocator(directAAFURL);
82 connectTest(locator,new URI(directAAFURL));
84 SecuritySetter<HttpURLConnection> ss = si.defSS;
88 print(true,"Test Connections driven by AAFLocator");
89 String serviceURI = aaf_urls.get(Config.AAF_URL);
91 for (String url : new String[] {
93 aaf_urls.get(Config.AAF_OAUTH2_TOKEN_URL),
94 aaf_urls.get(Config.AAF_OAUTH2_INTROSPECT_URL),
95 aaf_urls.get(Config.AAF_URL_CM),
96 aaf_urls.get(Config.AAF_URL_GUI),
97 aaf_urls.get(Config.AAF_URL_FS),
98 aaf_urls.get(Config.AAF_URL_HELLO)
100 URI uri = new URI(url);
101 Locator<URI> locator = new AAFLocator(si, uri);
103 connectTest(locator, uri);
104 } catch (Exception e) {
111 print(true,"Test Service for Perms driven by AAFLocator");
112 Locator<URI> locator = new AAFLocator(si,new URI(serviceURI));
113 for (SecuritySetter<HttpURLConnection> ss : lss) {
114 permTest(locator,ss);
118 print(true,"Test essential BasicAuth Service call, driven by AAFLocator");
119 boolean hasBath=false;
120 for (SecuritySetter<HttpURLConnection> ss : lss) {
121 if (ss instanceof HBasicAuthSS) {
123 basicAuthTest(new AAFLocator(si, new URI(serviceURI)),ss);
127 System.out.println("No User/Password to test");
131 } catch (Exception e) {
132 e.printStackTrace(System.err);
134 print(true,"END OF TESTS");
140 private static List<SecuritySetter<HttpURLConnection>> loadSetters(PropAccess access, SecurityInfoC<HttpURLConnection> si) {
141 print(true,"Load Security Setters from Configuration Information");
142 String user = access.getProperty(Config.AAF_APPID);
144 ArrayList<SecuritySetter<HttpURLConnection>> lss = new ArrayList<>();
148 HBasicAuthSS hbass = new HBasicAuthSS(si,true);
149 if (hbass==null || hbass.getID()==null) {
150 access.log(Level.INFO, "BasicAuth Information is not available in configuration, BasicAuth tests will not be conducted... Continuing");
152 access.log(Level.INFO, "BasicAuth Information found with ID",hbass.getID(),". BasicAuth tests will be performed.");
155 } catch (Exception e) {
156 access.log(Level.INFO, "BasicAuth Security Setter constructor threw exception: \"",e.getMessage(),"\". BasicAuth tests will not be performed");
160 HX509SS hxss = new HX509SS(user,si);
161 if (hxss==null || hxss.getID()==null) {
162 access.log(Level.INFO, "X509 (Client certificate) Information is not available in configuration, X509 tests will not be conducted... Continuing");
164 access.log(Level.INFO, "X509 (Client certificate) Information found with ID",hxss.getID(),". X509 tests will be performed.");
167 } catch (Exception e) {
168 access.log(Level.INFO, "X509 (Client certificate) Security Setter constructor threw exception: \"",e.getMessage(),"\". X509 tests will not be performed");
171 String tokenURL = aaf_urls.get(Config.AAF_OAUTH2_TOKEN_URL);
174 HRenewingTokenSS hrtss = new HRenewingTokenSS(access, tokenURL);
175 access.log(Level.INFO, "AAF OAUTH2 Information found with ID",hrtss.getID(),". AAF OAUTH2 tests will be performed.");
177 } catch (Exception e) {
178 access.log(Level.INFO, "AAF OAUTH2 Security Setter constructor threw exception: \"",e.getMessage(),"\". AAF OAUTH2 tests will not be conducted... Continuing");
181 tokenURL = access.getProperty(Config.AAF_ALT_OAUTH2_TOKEN_URL);
182 if (tokenURL==null) {
183 access.log(Level.INFO, "AAF Alternative OAUTH2 requires",Config.AAF_ALT_OAUTH2_TOKEN_URL, "OAuth2 tests to", tokenURL, "will not be conducted... Continuing");
186 HRenewingTokenSS hrtss = new HRenewingTokenSS(access, tokenURL);
187 access.log(Level.INFO, "ALT OAUTH2 Information found with ID",hrtss.getID(),". ALT OAUTH2 tests will be performed.");
189 } catch (Exception e) {
190 access.log(Level.INFO, "ALT OAUTH2 Security Setter constructor threw exception: \"",e.getMessage(),"\". ALT OAuth2 tests to", tokenURL, " will not be conducted... Continuing");
197 private static void print(Boolean strong, String ... args) {
198 PrintStream out = System.out;
201 for (int i=0;i<70;++i) {
206 for (String s : args) {
207 out.print(strong?"== ":"------ ");
210 out.print(" ------");
215 for (int i=0;i<70;++i) {
222 private static void connectTest(Locator<URI> dl, URI locatorURI) throws LocatorException {
225 print(false,"TCP/IP Connect test to all Located Services for " + locatorURI.toString() );
226 for (Item li = dl.first();li!=null;li=dl.next(li)) {
227 if ((uri = dl.get(li)) == null) {
228 System.out.println("Locator Item empty");
230 System.out.printf("Located %s using %s\n",uri.toString(), locatorURI.toString());
231 socket = new Socket();
233 FixURIinfo fui = new FixURIinfo(uri);
235 socket.connect(new InetSocketAddress(fui.getHost(), fui.getPort()),3000);
236 System.out.printf("Can Connect a Socket to %s %d\n",fui.getHost(),fui.getPort());
237 } catch (IOException e) {
238 System.out.printf("Cannot Connect a Socket to %s %d: %s\n",fui.getHost(),fui.getPort(),e.getMessage());
243 } catch (IOException e1) {
244 System.out.printf("Could not close Socket Connection: %s\n",e1.getMessage());
251 private static void permTest(Locator<URI> dl, SecuritySetter<HttpURLConnection> ss) {
253 URI uri = dl.get(dl.best());
255 System.out.print("No URI available using " + ss.getClass().getSimpleName());
256 System.out.println();
259 System.out.print("Resolved to: " + uri + " using " + ss.getClass().getSimpleName());
261 if (ss instanceof HRenewingTokenSS) {
262 System.out.println(" " + ((HRenewingTokenSS)ss).tokenURL());
264 System.out.println();
266 HClient client = new HClient(ss, uri, 3000);
267 client.setMethod("GET");
268 String user = ss.getID();
270 String pathInfo = "/authz/perms/user/"+user;
271 client.setPathInfo(pathInfo);
272 System.out.println(pathInfo);
275 Future<String> future = client.futureReadString();
276 if (future.get(7000)) {
277 System.out.println(future.body());
279 if (future.code()==401 && ss instanceof HX509SS) {
280 System.out.println(" Authentication denied with 401 for Certificate.\n\t"
281 + "This means Certificate isn't valid for this environment, and has attempted another method of Authentication");
283 System.out.println(future.code() + ":" + future.body());
286 } catch (CadiException | LocatorException | APIException e) {
292 private static void basicAuthTest(Locator<URI> dl, SecuritySetter<HttpURLConnection> ss) {
294 URI uri = dl.get(dl.best());
295 System.out.println("Resolved to: " + uri);
296 HClient client = new HClient(ss, uri, 3000);
297 client.setMethod("GET");
298 client.setPathInfo("/authn/basicAuth");
299 client.addHeader("Accept", "text/plain");
303 Future<String> future = client.futureReadString();
304 if (future.get(7000)) {
305 System.out.println("BasicAuth Validated");
307 System.out.println("Failure " + future.code() + ":" + future.body());
309 } catch (CadiException | LocatorException | APIException e) {
Code Review / aaf / authz.git / blob