cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java

   1 /**
   2  * ============LICENSE_START====================================================
   3  * org.onap.aaf
   4  * ===========================================================================
   5  * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
   6  * ===========================================================================
   7  * Licensed under the Apache License, Version 2.0 (the "License");
   8  * you may not use this file except in compliance with the License.
   9  * You may obtain a copy of the License at
  10  *
  11  *      http://www.apache.org/licenses/LICENSE-2.0
  12  *
  13  * Unless required by applicable law or agreed to in writing, software
  14  * distributed under the License is distributed on an "AS IS" BASIS,
  15  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16  * See the License for the specific language governing permissions and
  17  * limitations under the License.
  18  * ============LICENSE_END====================================================
  19  *
  20  */
  21
  22 package org.onap.aaf.cadi.aaf;
  23
  24 import java.io.IOException;
  25 import java.io.PrintStream;
  26 import java.net.HttpURLConnection;
  27 import java.net.InetSocketAddress;
  28 import java.net.Socket;
  29 import java.net.URI;
  30 import java.net.URISyntaxException;
  31 import java.util.ArrayList;
  32 import java.util.Date;
  33 import java.util.List;
  34
  35 import org.onap.aaf.cadi.Access.Level;
  36 import org.onap.aaf.cadi.CadiException;
  37 import org.onap.aaf.cadi.Locator;
  38 import org.onap.aaf.cadi.Locator.Item;
  39 import org.onap.aaf.cadi.LocatorException;
  40 import org.onap.aaf.cadi.PropAccess;
  41 import org.onap.aaf.cadi.SecuritySetter;
  42 import org.onap.aaf.cadi.aaf.v2_0.AAFLocator;
  43 import org.onap.aaf.cadi.client.Future;
  44 import org.onap.aaf.cadi.config.Config;
  45 import org.onap.aaf.cadi.config.SecurityInfoC;
  46 import org.onap.aaf.cadi.http.HBasicAuthSS;
  47 import org.onap.aaf.cadi.http.HClient;
  48 import org.onap.aaf.cadi.http.HX509SS;
  49 import org.onap.aaf.cadi.locator.SingleEndpointLocator;
  50 import org.onap.aaf.cadi.oauth.HRenewingTokenSS;
  51 import org.onap.aaf.cadi.util.FixURIinfo;
  52 import org.onap.aaf.misc.env.APIException;
  53
  54 public class TestConnectivity {
  55
  56     public static void main(String[] args) {
  57         if (args.length<1) {
  58             System.out.println("Usage: ConnectivityTester <cadi_prop_files> [<AAF FQDN (i.e. aaf.dev.att.com)>]");
  59         } else {
  60             print(true,"START OF CONNECTIVITY TESTS",new Date().toString(),System.getProperty("user.name"),
  61                     "Note: All API Calls are /authz/perms/user/<AppID/Alias of the caller>");
  62
  63             if (!args[0].contains(Config.CADI_PROP_FILES+'=')) {
  64                 args[0]=Config.CADI_PROP_FILES+'='+args[0];
  65             }
  66
  67             PropAccess access = new PropAccess(args);
  68             String aaflocate;
  69             if (args.length>1) {
  70                 aaflocate = "https://" + args[1];
  71                 access.setProperty(Config.AAF_LOCATE_URL, "https://" + args[1]);
  72             } else {
  73                 aaflocate = access.getProperty(Config.AAF_LOCATE_URL);
  74                 if (aaflocate==null) {
  75                     print(true,"Properties must contain ",Config.AAF_LOCATE_URL);
  76                 }
  77             }
  78
  79             try {
  80                 SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(access, HttpURLConnection.class);
  81
  82                 List<SecuritySetter<HttpURLConnection>> lss = loadSetters(access,si);
  83                 /////////
  84                 String directAAFURL = access.getProperty(Config.AAF_URL,null);
  85                 if(directAAFURL!=null && !directAAFURL.contains("AAF_LOCATE")) {
  86                     print(true,"Test Connections by non-located aaf_url");
  87                     Locator<URI> locator = new SingleEndpointLocator(directAAFURL);
  88                     connectTest(locator,new URI(directAAFURL));
  89
  90                     SecuritySetter<HttpURLConnection> ss = si.defSS;
  91                     permTest(locator,ss);
  92                 } else {
  93                         /////////
  94                         print(true,"Test Connections driven by AAFLocator");
  95                         URI serviceURI = uri(access,"service");
  96
  97                         for (URI uri : new URI[] {
  98                                 serviceURI,
  99                                 uri(access,"token"),
 100                                 uri(access,"introspect"),
 101                                 uri(access,"cm"),
 102                                 uri(access,"gui"),
 103                                 uri(access,"fs"),
 104                                 uri(access,"hello")
 105                         }) {
 106                             Locator<URI> locator = new AAFLocator(si, uri);
 107                             try {
 108                                 connectTest(locator, uri);
 109                             } catch (Exception e) {
 110                                 e.printStackTrace();
 111                                 System.err.flush();
 112                             }
 113                         }
 114
 115                         /////////
 116                         print(true,"Test Service for Perms driven by AAFLocator");
 117                         Locator<URI> locator = new AAFLocator(si,serviceURI);
 118                         for (SecuritySetter<HttpURLConnection> ss : lss) {
 119                             permTest(locator,ss);
 120                         }
 121
 122                         //////////
 123                         print(true,"Test essential BasicAuth Service call, driven by AAFLocator");
 124                         boolean hasBath=false;
 125                         for (SecuritySetter<HttpURLConnection> ss : lss) {
 126                             if (ss instanceof HBasicAuthSS) {
 127                                 hasBath=true;
 128                                 basicAuthTest(new AAFLocator(si, serviceURI),ss);
 129                             }
 130                         }
 131                         if(!hasBath) {
 132                                 System.out.println("No User/Password to test");
 133                         }
 134                 }
 135
 136             } catch (Exception e) {
 137                 e.printStackTrace(System.err);
 138             } finally {
 139                 print(true,"END OF TESTS");
 140             }
 141         }
 142     }
 143
 144     private static URI uri(PropAccess access, String ms) throws URISyntaxException {
 145                 String aaf_root_ns = access.getProperty(Config.AAF_ROOT_NS,"AAF_NS");
 146                 String aaf_api_version = access.getProperty(Config.AAF_API_VERSION,Config.AAF_DEFAULT_API_VERSION);
 147                 String aaf_locate_url = access.getProperty(Config.AAF_LOCATE_URL,Defaults.AAF_LOCATE_CONST);
 148                 if("cm".equals(ms) && "2.0".equals(aaf_api_version)) {
 149                         ms = "certman";
 150                 }
 151                 return new URI(aaf_locate_url + "/locate/" + aaf_root_ns + '.' + ms + ':' + aaf_api_version);
 152         }
 153
 154         private static List<SecuritySetter<HttpURLConnection>> loadSetters(PropAccess access, SecurityInfoC<HttpURLConnection> si)  {
 155         print(true,"Load Security Setters from Configuration Information");
 156         String user = access.getProperty(Config.AAF_APPID);
 157
 158         ArrayList<SecuritySetter<HttpURLConnection>> lss = new ArrayList<>();
 159
 160
 161         try {
 162             HBasicAuthSS hbass = new HBasicAuthSS(si,true);
 163             if (hbass==null || hbass.getID()==null) {
 164                 access.log(Level.INFO, "BasicAuth Information is not available in configuration, BasicAuth tests will not be conducted... Continuing");
 165             } else {
 166                 access.log(Level.INFO, "BasicAuth Information found with ID",hbass.getID(),".  BasicAuth tests will be performed.");
 167                 lss.add(hbass);
 168             }
 169         } catch (Exception e) {
 170             access.log(Level.INFO, "BasicAuth Security Setter constructor threw exception: \"",e.getMessage(),"\". BasicAuth tests will not be performed");
 171         }
 172
 173         try {
 174             HX509SS hxss = new HX509SS(user,si);
 175             if (hxss==null || hxss.getID()==null) {
 176                 access.log(Level.INFO, "X509 (Client certificate) Information is not available in configuration, X509 tests will not be conducted... Continuing");
 177             } else {
 178                 access.log(Level.INFO, "X509 (Client certificate) Information found with ID",hxss.getID(),".  X509 tests will be performed.");
 179                 lss.add(hxss);
 180             }
 181         } catch (Exception e) {
 182             access.log(Level.INFO, "X509 (Client certificate) Security Setter constructor threw exception: \"",e.getMessage(),"\". X509 tests will not be performed");
 183         }
 184
 185         String tokenURL = access.getProperty(Config.AAF_OAUTH2_TOKEN_URL);
 186         String locateURL=access.getProperty(Config.AAF_LOCATE_URL);
 187         if (tokenURL==null || (tokenURL.contains("/locate/") && locateURL!=null)) {
 188             tokenURL=Defaults.OAUTH2_TOKEN_URL+"/token";
 189         }
 190
 191         try {
 192             HRenewingTokenSS hrtss = new HRenewingTokenSS(access, tokenURL);
 193             access.log(Level.INFO, "AAF OAUTH2 Information found with ID",hrtss.getID(),".  AAF OAUTH2 tests will be performed.");
 194             lss.add(hrtss);
 195         } catch (Exception e) {
 196             access.log(Level.INFO, "AAF OAUTH2 Security Setter constructor threw exception: \"",e.getMessage(),"\". AAF OAUTH2 tests will not be conducted... Continuing");
 197         }
 198
 199         tokenURL = access.getProperty(Config.AAF_ALT_OAUTH2_TOKEN_URL);
 200         if (tokenURL==null) {
 201             access.log(Level.INFO, "AAF Alternative OAUTH2 requires",Config.AAF_ALT_OAUTH2_TOKEN_URL, "OAuth2 tests to", tokenURL, "will not be conducted... Continuing");
 202         } else {
 203             try {
 204                 HRenewingTokenSS hrtss = new HRenewingTokenSS(access, tokenURL);
 205                 access.log(Level.INFO, "ALT OAUTH2 Information found with ID",hrtss.getID(),".  ALT OAUTH2 tests will be performed.");
 206                 lss.add(hrtss);
 207             } catch (Exception e) {
 208                 access.log(Level.INFO, "ALT OAUTH2 Security Setter constructor threw exception: \"",e.getMessage(),"\". ALT OAuth2 tests to", tokenURL, " will not be conducted... Continuing");
 209             }
 210         }
 211
 212         return lss;
 213     }
 214
 215     private static void print(Boolean strong, String ... args) {
 216         PrintStream out = System.out;
 217         out.println();
 218         if (strong) {
 219             for (int i=0;i<70;++i) {
 220                 out.print('=');
 221             }
 222             out.println();
 223         }
 224         for (String s : args) {
 225             out.print(strong?"==  ":"------ ");
 226             out.print(s);
 227             if (!strong) {
 228                 out.print("  ------");
 229             }
 230             out.println();
 231         }
 232         if (strong) {
 233             for (int i=0;i<70;++i) {
 234                 out.print('=');
 235             }
 236         }
 237         out.println();
 238     }
 239
 240     private static void connectTest(Locator<URI> dl, URI locatorURI) throws LocatorException {
 241         URI uri;
 242         Socket socket;
 243         print(false,"TCP/IP Connect test to all Located Services for "  + locatorURI.toString() );
 244         for (Item li = dl.first();li!=null;li=dl.next(li)) {
 245             if ((uri = dl.get(li)) == null) {
 246                 System.out.println("Locator Item empty");
 247             } else {
 248                 socket = new Socket();
 249                 try {
 250                         FixURIinfo fui = new FixURIinfo(uri);
 251                     try {
 252                         socket.connect(new InetSocketAddress(fui.getHost(),  fui.getPort()),3000);
 253                         System.out.printf("Can Connect a Socket to %s %d\n",fui.getHost(),fui.getPort());
 254                     } catch (IOException e) {
 255                         System.out.printf("Cannot Connect a Socket to  %s %d: %s\n",fui.getHost(),fui.getPort(),e.getMessage());
 256                     }
 257                 } finally {
 258                     try {
 259                         socket.close();
 260                     } catch (IOException e1) {
 261                         System.out.printf("Could not close Socket Connection: %s\n",e1.getMessage());
 262                     }
 263                 }
 264             }
 265         }
 266     }
 267
 268     private static void permTest(Locator<URI> dl, SecuritySetter<HttpURLConnection> ss)  {
 269         try {
 270             URI uri = dl.get(dl.best());
 271             if (uri==null) {
 272                 System.out.print("No URI available using " + ss.getClass().getSimpleName());
 273                 System.out.println();
 274                 return;
 275             } else {
 276                 System.out.print("Resolved to: " + uri + " using " + ss.getClass().getSimpleName());
 277             }
 278             if (ss instanceof HRenewingTokenSS) {
 279                 System.out.println(" " + ((HRenewingTokenSS)ss).tokenURL());
 280             } else {
 281                 System.out.println();
 282             }
 283             HClient client = new HClient(ss, uri, 3000);
 284             client.setMethod("GET");
 285             String user = ss.getID();
 286
 287             String pathInfo = "/authz/perms/user/"+user;
 288             client.setPathInfo(pathInfo);
 289             System.out.println(pathInfo);
 290
 291             client.send();
 292             Future<String> future = client.futureReadString();
 293             if (future.get(7000)) {
 294                 System.out.println(future.body());
 295             } else {
 296                 if (future.code()==401 && ss instanceof HX509SS) {
 297                     System.out.println("  Authentication denied with 401 for Certificate.\n\t"
 298                             + "This means Certificate isn't valid for this environment, and has attempted another method of Authentication");
 299                 } else {
 300                     System.out.println(future.code() + ":" + future.body());
 301                 }
 302             }
 303         } catch (CadiException | LocatorException | APIException e) {
 304             e.printStackTrace();
 305         }
 306     }
 307
 308
 309     private static void basicAuthTest(Locator<URI> dl, SecuritySetter<HttpURLConnection> ss) {
 310         try {
 311             URI uri = dl.get(dl.best());
 312             System.out.println("Resolved to: " + uri);
 313             HClient client = new HClient(ss, uri, 3000);
 314             client.setMethod("GET");
 315             client.setPathInfo("/authn/basicAuth");
 316             client.addHeader("Accept", "text/plain");
 317             client.send();
 318
 319
 320             Future<String> future = client.futureReadString();
 321             if (future.get(7000)) {
 322                 System.out.println("BasicAuth Validated");
 323             } else {
 324                 System.out.println("Failure " + future.code() + ":" + future.body());
 325             }
 326         } catch (CadiException | LocatorException | APIException e) {
 327             e.printStackTrace();
 328         }
 329     }
 330 }