Merge "Mapper_2_0 Junits"

author Jonathan Gathman <jonathan.gathman@att.com>

Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)

committer Gerrit Code Review <gerrit@onap.org>

Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)
author Jonathan Gathman <jonathan.gathman@att.com>
Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)
committer Gerrit Code Review <gerrit@onap.org>
Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)
diff --git a/auth/auth-batch/pom.xml b/auth/auth-batch/pom.xml

index a30ccaa..1c49d6f 100644 (file)
--- a/auth/auth-batch/pom.xml
+++ b/auth/auth-batch/pom.xml
@@ -118,6 +118,11 @@
                         <groupId>org.onap.aaf.authz</groupId>
                         <artifactId>aaf-auth-cass</artifactId>
                 </dependency>
+               
+               <dependency>
+                       <groupId>javax.mail</groupId>
+                       <artifactId>mail</artifactId>
+               </dependency>
  
                 <dependency>
                         <groupId>org.slf4j</groupId>
diff --git a/auth/auth-batch/src/main/java/org/onap/aaf/auth/helpers/Perm.java b/auth/auth-batch/src/main/java/org/onap/aaf/auth/helpers/Perm.java

index 469284a..acfb339 100644 (file)
--- a/auth/auth-batch/src/main/java/org/onap/aaf/auth/helpers/Perm.java
+++ b/auth/auth-batch/src/main/java/org/onap/aaf/auth/helpers/Perm.java
@@ -106,7 +106,9 @@ public class Perm implements Comparable<Perm> {
                 try {
                         while(iter.hasNext()) {
                                 row = iter.next();
-                               Perm pk = new Perm(row.getString(0),row.getString(1),row.getString(2),row.getString(3), row.getString(4), row.getSet(5,String.class));
+                               Perm pk = new Perm(
+                                               row.getString(0),row.getString(1),row.getString(2),
+                                               row.getString(3), row.getString(4), row.getSet(5,String.class));
                                 keys.put(pk.encode(), pk);
                                 data.put(pk,pk.roles);
                         }
diff --git a/auth/auth-batch/src/main/java/org/onap/aaf/auth/javax/JavaxMailer.java b/auth/auth-batch/src/main/java/org/onap/aaf/auth/javax/JavaxMailer.java

new file mode 100644 (file)

index 0000000..17921c8
--- /dev/null
+++ b/auth/auth-batch/src/main/java/org/onap/aaf/auth/javax/JavaxMailer.java
@@ -0,0 +1,160 @@
+/**
+ * ============LICENSE_START====================================================
+ * org.onap.aaf
+ * ===========================================================================
+ * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
+ * ===========================================================================
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ * ============LICENSE_END====================================================
+ *
+ */
+package org.onap.aaf.auth.javax;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.mail.Address;
+import javax.mail.Message;
+import javax.mail.MessagingException;
+import javax.mail.Session;
+import javax.mail.Transport;
+import javax.mail.internet.InternetAddress;
+import javax.mail.internet.MimeMessage;
+
+import org.onap.aaf.auth.env.AuthzTrans;
+import org.onap.aaf.auth.org.Mailer;
+import org.onap.aaf.auth.org.OrganizationException;
+
+public class JavaxMailer implements Mailer {
+       private Session session;
+
+         public JavaxMailer() {
+                 
+                       // Get the default Session object.
+                       session = Session.getDefaultInstance(System.getProperties());
+       
+         }
+         
+         @Override
+               public int sendEmail(AuthzTrans trans, boolean testMode, String mailFrom, List<String> to, List<String> cc, String subject, String body,
+                               Boolean urgent) throws OrganizationException {
+
+                       int status = 1;
+
+
+                       try {
+                               // Create a default MimeMessage object.
+                               MimeMessage message = new MimeMessage(session);
+
+                               // Set From: header field of the header.
+                               message.setFrom(new InternetAddress(mailFrom));
+
+                               if (!testMode) {
+                                       // Set To: header field of the header. This is a required field
+                                       // and calling module should make sure that it is not null or
+                                       // blank
+                                       message.addRecipients(Message.RecipientType.TO,getAddresses(to));
+
+                                       // Set CC: header field of the header.
+                                       if ((cc != null) && (cc.size() > 0)) {
+                                               message.addRecipients(Message.RecipientType.CC,getAddresses(cc));
+                                       }
+
+                                       // Set Subject: header field
+                                       message.setSubject(subject);
+
+                                       if (urgent) {
+                                               message.addHeader("X-Priority", "1");
+                                       }
+
+                                       // Now set the actual message
+                                       message.setText(body);
+                               } else {
+
+                                       // override recipients
+                                       message.addRecipients(Message.RecipientType.TO,
+                                                       InternetAddress.parse(mailFrom));
+
+                                       // Set Subject: header field
+                                       message.setSubject("[TESTMODE] " + subject);
+
+                                       if (urgent) {
+                                               message.addHeader("X-Priority", "1");
+                                       }
+
+                                       ArrayList<String> newBody = new ArrayList<>();
+
+                                       Address temp[] = getAddresses(to);
+                                       String headerString = "TO:\t" + InternetAddress.toString(temp) + "\n";
+
+                                       temp = getAddresses(cc);
+                                       headerString += "CC:\t" + InternetAddress.toString(temp) + "\n";
+
+                                       newBody.add(headerString);
+
+                                       newBody.add("Text: \n");
+
+                                       newBody.add(body);
+                                       String outString = "";
+                                       for (String s : newBody) {
+                                               outString += s + "\n";
+                                       }
+
+                                       message.setText(outString);
+                               }
+                               // Send message
+                               Transport.send(message);
+                               status = 0;
+
+                       } catch (MessagingException mex) {
+                               System.out.println("Error messaging: "+ mex.getMessage());
+                               System.out.println("Error messaging: "+ mex.toString());
+                               throw new OrganizationException("Exception send email message "
+                                               + mex.getMessage());
+                       }
+
+                       return status;
+               }
+
+               /**
+                * Convert the delimiter String into Internet addresses with the default
+                * delimiter of ";"
+                * @param strAddress
+                * @return
+                */
+               private Address[] getAddresses(List<String> strAddress) throws OrganizationException {
+                       return this.getAddresses(strAddress,";");
+               }
+               /**
+                * Convert the delimiter String into Internet addresses with the
+                * delimiter of provided
+                * @param strAddresses
+                * @param delimiter
+                * @return
+                */
+               private Address[] getAddresses(List<String> strAddresses, String delimiter) throws OrganizationException {
+                       Address[] addressArray = new Address[strAddresses.size()];
+                       int count = 0;
+                       for (String addr : strAddresses)
+                       {
+                               try{
+                                       addressArray[count] = new InternetAddress(addr);
+                                       count++;
+                               }catch(Exception e){
+                                       throw new OrganizationException("Failed to parse the email address "+ addr +": "+e.getMessage());
+                               }
+                       }
+                       return addressArray;
+               }
+
+}
diff --git a/auth/auth-cass/pom.xml b/auth/auth-cass/pom.xml

index b6f30d2..867313e 100644 (file)
--- a/auth/auth-cass/pom.xml
+++ b/auth/auth-cass/pom.xml
@@ -63,9 +63,6 @@
         </developers>
  
         <properties>
-
-
-
                 <!-- SONAR -->
                 <!-- <sonar.skip>true</sonar.skip> -->
                 <jacoco.version>0.7.7.201606060606</jacoco.version>
@@ -100,6 +97,11 @@
                         <artifactId>cassandra-driver-core</artifactId>
                 </dependency>
  
+               <dependency>
+                                       <groupId>com.google.guava</groupId>
+                                       <artifactId>guava</artifactId>
+               </dependency>
+
                 <!-- Cassandra prefers Snappy and LZ4 libs for performance -->
                 <dependency>
                         <groupId>org.xerial.snappy</groupId>
diff --git a/auth/auth-certman/src/test/java/org/onap/aaf/auth/cm/test/CertmanTest.java b/auth/auth-certman/src/test/java/org/onap/aaf/auth/cm/test/CertmanTest.java

index 5ec96f2..a8f9934 100644 (file)
--- a/auth/auth-certman/src/test/java/org/onap/aaf/auth/cm/test/CertmanTest.java
+++ b/auth/auth-certman/src/test/java/org/onap/aaf/auth/cm/test/CertmanTest.java
@@ -163,8 +163,4 @@ public class CertmanTest {
  //             return null;
  //     }
         
-       @Test                                           //TODO: Temporary fix AAF-111
-       public void netYetTested() {
-               fail("Tests not yet implemented");
-       }
  }
diff --git a/auth/auth-core/src/main/java/org/onap/aaf/auth/org/Mailer.java b/auth/auth-core/src/main/java/org/onap/aaf/auth/org/Mailer.java

new file mode 100644 (file)

index 0000000..86875a4
--- /dev/null
+++ b/auth/auth-core/src/main/java/org/onap/aaf/auth/org/Mailer.java
@@ -0,0 +1,38 @@
+/**
+ * ============LICENSE_START====================================================
+ * org.onap.aaf
+ * ===========================================================================
+ * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
+ * ===========================================================================
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ * ============LICENSE_END====================================================
+ *
+ */
+package org.onap.aaf.auth.org;
+
+import java.util.List;
+
+import org.onap.aaf.auth.env.AuthzTrans;
+
+public interface Mailer {
+       public int sendEmail(
+                       AuthzTrans trans,
+                       boolean testMode,
+                       String mailFrom,
+                       List<String> toList, 
+                       List<String> ccList, 
+                       String subject, 
+                       String body,
+                       Boolean urgent) throws OrganizationException;
+
+}
diff --git a/auth/auth-core/src/main/java/org/onap/aaf/auth/org/OrganizationFactory.java b/auth/auth-core/src/main/java/org/onap/aaf/auth/org/OrganizationFactory.java

index f950703..ffc7916 100644 (file)
--- a/auth/auth-core/src/main/java/org/onap/aaf/auth/org/OrganizationFactory.java
+++ b/auth/auth-core/src/main/java/org/onap/aaf/auth/org/OrganizationFactory.java
@@ -105,7 +105,6 @@ public class OrganizationFactory {
                                                                 org.addSupportedRealm(r);
                                                         }
                                                 }
-                                               
                                         } catch (ClassNotFoundException | NoSuchMethodException | SecurityException | 
                                                         InstantiationException | IllegalAccessException | IllegalArgumentException | 
                                                         InvocationTargetException e) {
diff --git a/auth/auth-core/src/main/java/org/onap/aaf/auth/rserv/CachingFileAccess.java b/auth/auth-core/src/main/java/org/onap/aaf/auth/rserv/CachingFileAccess.java

index bc563f3..96349ae 100644 (file)
--- a/auth/auth-core/src/main/java/org/onap/aaf/auth/rserv/CachingFileAccess.java
+++ b/auth/auth-core/src/main/java/org/onap/aaf/auth/rserv/CachingFileAccess.java
@@ -37,7 +37,6 @@ import java.util.ArrayList;
  import java.util.Arrays;
  import java.util.Collections;
  import java.util.Comparator;
-import java.util.Date;
  import java.util.HashSet;
  import java.util.Map;
  import java.util.Map.Entry;
@@ -553,10 +552,10 @@ public class CachingFileAccess<TRANS extends Trans> extends HttpCode<TRANS, Void
                                         content.remove(entry.getKey());
                                         //System.out.println("removed Cache Item " + entry.getKey() + "/" + new Date(entry.getValue().access).toString());
                                 }
-                               for(int i=end;i<size;++i) {
-                                       Entry<String, Content> entry = scont.get(i).entry;
-                                       //System.out.println("remaining Cache Item " + entry.getKey() + "/" + new Date(entry.getValue().access).toString());
-                               }
+//                             for(int i=end;i<size;++i) {
+//                                     Entry<String, Content> entry = scont.get(i).entry;
+//                                     //System.out.println("remaining Cache Item " + entry.getKey() + "/" + new Date(entry.getValue().access).toString());
+//                             }
                         }
                 }
         }
diff --git a/auth/auth-deforg/pom.xml b/auth/auth-deforg/pom.xml

index bce3199..3420663 100644 (file)
--- a/auth/auth-deforg/pom.xml
+++ b/auth/auth-deforg/pom.xml
@@ -102,16 +102,6 @@
                         <artifactId>aaf-auth-core</artifactId>
                 </dependency>
  
-               <dependency>
-                       <groupId>javax.mail</groupId>
-                       <artifactId>mail</artifactId>
-               </dependency>
-
-               <dependency>
-                       <groupId>org.jvnet.mock-javamail</groupId>
-                       <artifactId>mock-javamail</artifactId>
-                       <version>1.9</version>
-               </dependency>
         </dependencies>
  
         <build>
diff --git a/auth/auth-deforg/src/main/java/org/onap/aaf/org/DefaultOrg.java b/auth/auth-deforg/src/main/java/org/onap/aaf/org/DefaultOrg.java

index b36c6f2..0bfe7e2 100644 (file)
--- a/auth/auth-deforg/src/main/java/org/onap/aaf/org/DefaultOrg.java
+++ b/auth/auth-deforg/src/main/java/org/onap/aaf/org/DefaultOrg.java
@@ -31,17 +31,10 @@ import java.util.List;
  import java.util.Set;
  import java.util.regex.Pattern;
  
-import javax.mail.Address;
-import javax.mail.Message;
-import javax.mail.MessagingException;
-import javax.mail.Session;
-import javax.mail.Transport;
-import javax.mail.internet.InternetAddress;
-import javax.mail.internet.MimeMessage;
-
  import org.onap.aaf.auth.env.AuthzTrans;
  import org.onap.aaf.auth.org.EmailWarnings;
  import org.onap.aaf.auth.org.Executor;
+import org.onap.aaf.auth.org.Mailer;
  import org.onap.aaf.auth.org.Organization;
  import org.onap.aaf.auth.org.OrganizationException;
  import org.onap.aaf.cadi.util.FQI;
@@ -76,11 +69,20 @@ public class DefaultOrg implements Organization {
                 if(mailFrom==null) {
                         throw new OrganizationException(s + PROPERTY_IS_REQUIRED);
                 }
+               
+               // Note: This code is to avoid including javax.mail into ONAP, because there are security/licence 
+               // exceptions
+               try {
+                       Class.forName("javax.mail.Session"); // ensure package is loaded
+                       @SuppressWarnings("unchecked")
+                       Class<Mailer> minst = (Class<Mailer>)Class.forName("org.onap.aaf.org.JavaxMailer");
+                       mailer = minst.newInstance();
+               } catch (ClassNotFoundException | InstantiationException | IllegalAccessException e1) {
+                       env.warn().log("JavaxMailer not loaded. Mailing disabled");
+               }
  
                 System.getProperties().setProperty("mail.smtp.host",mailHost);
                 System.getProperties().setProperty("mail.user", mailFrom);
-               // Get the default Session object.
-               session = Session.getDefaultInstance(System.getProperties());
  
                 try {
                         String defFile;
@@ -130,7 +132,7 @@ public class DefaultOrg implements Organization {
  
         public Identities identities;
         private boolean dryRun;
-       private Session session;
+       private Mailer mailer;
         public enum Types {Employee, Contractor, Application, NotActive};
         private final static Set<String> typeSet;
  
@@ -400,113 +402,6 @@ public class DefaultOrg implements Organization {
                 return Response.OK;
         }
  
-       @Override
-       public int sendEmail(AuthzTrans trans, List<String> toList, List<String> ccList, String subject, String body,
-                       Boolean urgent) throws OrganizationException {
-
-               int status = 1;
-
-               List<String> to = new ArrayList<>();
-               for(String em : toList) {
-                       if(em.indexOf('@')<0) {
-                               to.add(new DefaultOrgIdentity(trans, em, this).email());
-                       } else {
-                               to.add(em);
-                       }
-               }
-
-               List<String> cc = new ArrayList<>();
-               if(ccList!=null) {
-                       if(!ccList.isEmpty()) {
-
-                               for(String em : ccList) {
-                                       if(em.indexOf('@')<0) {
-                                               cc.add(new DefaultOrgIdentity(trans, em, this).email());
-                                       } else {
-                                               cc.add(em);
-                                       }
-                               }
-                       }
-
-                       // for now, I want all emails so we can see what goes out. Remove later
-                       if (!ccList.contains(mailFrom)) {
-                               ccList.add(mailFrom);
-                       }
-               }
-
-               try {
-                       // Create a default MimeMessage object.
-                       MimeMessage message = new MimeMessage(session);
-
-                       // Set From: header field of the header.
-                       message.setFrom(new InternetAddress(mailFrom));
-
-                       if (!dryRun) {
-                               // Set To: header field of the header. This is a required field
-                               // and calling module should make sure that it is not null or
-                               // blank
-                               message.addRecipients(Message.RecipientType.TO,getAddresses(to));
-
-                               // Set CC: header field of the header.
-                               if ((ccList != null) && (ccList.size() > 0)) {
-                                       message.addRecipients(Message.RecipientType.CC,getAddresses(cc));
-                               }
-
-                               // Set Subject: header field
-                               message.setSubject(subject);
-
-                               if (urgent) {
-                                       message.addHeader("X-Priority", "1");
-                               }
-
-                               // Now set the actual message
-                               message.setText(body);
-                       } else {
-
-                               // override recipients
-                               message.addRecipients(Message.RecipientType.TO,
-                                               InternetAddress.parse(mailFrom));
-
-                               // Set Subject: header field
-                               message.setSubject("[TESTMODE] " + subject);
-
-                               if (urgent) {
-                                       message.addHeader("X-Priority", "1");
-                               }
-
-                               ArrayList<String> newBody = new ArrayList<>();
-
-                               Address temp[] = getAddresses(to);
-                               String headerString = "TO:\t" + InternetAddress.toString(temp) + "\n";
-
-                               temp = getAddresses(cc);
-                               headerString += "CC:\t" + InternetAddress.toString(temp) + "\n";
-
-                               newBody.add(headerString);
-
-                               newBody.add("Text: \n");
-
-                               newBody.add(body);
-                               String outString = "";
-                               for (String s : newBody) {
-                                       outString += s + "\n";
-                               }
-
-                               message.setText(outString);
-                       }
-                       // Send message
-                       Transport.send(message);
-                       status = 0;
-
-               } catch (MessagingException mex) {
-                       System.out.println("Error messaging: "+ mex.getMessage());
-                       System.out.println("Error messaging: "+ mex.toString());
-                       throw new OrganizationException("Exception send email message "
-                                       + mex.getMessage());
-               }
-
-               return status;
-       }
  
         /**
          * Default Policy is to set to 6 Months for Notification Types.
@@ -661,37 +556,6 @@ public class DefaultOrg implements Organization {
                 this.dryRun = dryRun;
         }
  
-       /**
-        * Convert the delimiter String into Internet addresses with the default
-        * delimiter of ";"
-        * @param strAddress
-        * @return
-        */
-       private Address[] getAddresses(List<String> strAddress) throws OrganizationException {
-               return this.getAddresses(strAddress,";");
-       }
-       /**
-        * Convert the delimiter String into Internet addresses with the
-        * delimiter of provided
-        * @param strAddresses
-        * @param delimiter
-        * @return
-        */
-       private Address[] getAddresses(List<String> strAddresses, String delimiter) throws OrganizationException {
-               Address[] addressArray = new Address[strAddresses.size()];
-               int count = 0;
-               for (String addr : strAddresses)
-               {
-                       try{
-                               addressArray[count] = new InternetAddress(addr);
-                               count++;
-                       }catch(Exception e){
-                               throw new OrganizationException("Failed to parse the email address "+ addr +": "+e.getMessage());
-                       }
-               }
-               return addressArray;
-       }
-
         private String extractRealm(final String r) {
                 int at;
                 if((at=r.indexOf('@'))>=0) {
@@ -719,4 +583,41 @@ public class DefaultOrg implements Organization {
                 supportedRealms.add(extractRealm(r));
         }
  
+       @Override
+       public int sendEmail(AuthzTrans trans, List<String> toList, List<String> ccList, String subject, String body,
+                       Boolean urgent) throws OrganizationException {
+               if (mailer!=null) {
+                       List<String> to = new ArrayList<>();
+                       for(String em : toList) {
+                               if(em.indexOf('@')<0) {
+                                       to.add(new DefaultOrgIdentity(trans, em, this).email());
+                               } else {
+                                       to.add(em);
+                               }
+                       }
+
+                       List<String> cc = new ArrayList<>();
+                       if(ccList!=null) {
+                               if(!ccList.isEmpty()) {
+
+                                       for(String em : ccList) {
+                                               if(em.indexOf('@')<0) {
+                                                       cc.add(new DefaultOrgIdentity(trans, em, this).email());
+                                               } else {
+                                                       cc.add(em);
+                                               }
+                                       }
+                               }
+
+                               // for now, I want all emails so we can see what goes out. Remove later
+                               if (!ccList.contains(mailFrom)) {
+                                       ccList.add(mailFrom);
+                               }
+                       }
+
+                       return mailer.sendEmail(trans,dryRun,mailFrom,to,cc,subject,body,urgent);
+               } else {
+                       return 0;
+               }
+       }
  }
diff --git a/auth/auth-fs/src/test/java/org/onap/aaf/auth/fs/test/JU_AAF_FS.java b/auth/auth-fs/src/test/java/org/onap/aaf/auth/fs/test/JU_AAF_FS.java

index 27f771c..3c68f61 100644 (file)
--- a/auth/auth-fs/src/test/java/org/onap/aaf/auth/fs/test/JU_AAF_FS.java
+++ b/auth/auth-fs/src/test/java/org/onap/aaf/auth/fs/test/JU_AAF_FS.java
@@ -48,8 +48,6 @@ import java.io.File;
  import java.io.IOException;
  import java.io.PrintStream;
  
-import org.junit.Test;
-
  public class JU_AAF_FS {
         AuthzEnv aEnv;
         AAF_FS aafFs;
diff --git a/auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/OAuth2FormHttpTafResp.java b/auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/OAuth2FormHttpTafResp.java

index 23d87e3..6adb464 100644 (file)
--- a/auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/OAuth2FormHttpTafResp.java
+++ b/auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/OAuth2FormHttpTafResp.java
@@ -32,19 +32,20 @@ import org.onap.aaf.cadi.taf.AbsTafResp;
  import org.onap.aaf.cadi.taf.TafResp;
  
  public class OAuth2FormHttpTafResp extends AbsTafResp implements TafResp {
+       private static final String tafName = DirectOAuthTAF.class.getSimpleName();
         private HttpServletResponse httpResp;
         private RESP status;
         private final boolean wasFailed;
         
         public OAuth2FormHttpTafResp(Access access, OAuth2FormPrincipal principal, String desc, RESP status, HttpServletResponse resp, boolean wasFailed) {
-               super(access,principal, desc);
+               super(access,tafName,principal, desc);
                 httpResp = resp;
                 this.status = status; 
                 this.wasFailed = wasFailed;
         }
  
         public OAuth2FormHttpTafResp(Access access, TrustPrincipal principal, String desc, RESP status,HttpServletResponse resp) {
-               super(access,principal, desc);
+               super(access,tafName,principal, desc);
                 httpResp = resp;
                 this.status = status; 
                 wasFailed = true; // if Trust Principal added, must be good
@@ -62,4 +63,5 @@ public class OAuth2FormHttpTafResp extends AbsTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return wasFailed;
         }
+
  }
diff --git a/auth/docker/Dockerfile.client b/auth/docker/Dockerfile.client

index 64ed4c0..aed4221 100644 (file)
--- a/auth/docker/Dockerfile.client
+++ b/auth/docker/Dockerfile.client
@@ -1,4 +1,4 @@
-FROM rmannfv/aaf-base:xenial 
+FROM nexus3.onap.org:10001/onap/aaf/aaf-base-xenial:latest
  MAINTAINER AAF Team, AT&T 2018
  ENV VERSION=${AAF_VERSION}
  
diff --git a/auth/docker/Dockerfile.config b/auth/docker/Dockerfile.config

index 60e82ad..3402fe5 100644 (file)
--- a/auth/docker/Dockerfile.config
+++ b/auth/docker/Dockerfile.config
@@ -1,4 +1,4 @@
-FROM rmannfv/aaf-base:xenial 
+FROM nexus3.onap.org:10001/onap/aaf/aaf-base-xenial:latest
  MAINTAINER AAF Team, AT&T 2018
  ENV VERSION=${AAF_VERSION}
  
diff --git a/auth/docker/Dockerfile.core b/auth/docker/Dockerfile.core

index b54dce7..c511563 100644 (file)
--- a/auth/docker/Dockerfile.core
+++ b/auth/docker/Dockerfile.core
@@ -1,4 +1,4 @@
-FROM rmannfv/aaf-base:xenial 
+FROM nexus3.onap.org:10001/onap/aaf/aaf-base-xenial:latest
  MAINTAINER AAF Team, AT&T 2018
  ENV VERSION=${AAF_VERSION}
  
diff --git a/auth/pom.xml b/auth/pom.xml

index e3ec9c0..a6af750 100644 (file)
--- a/auth/pom.xml
+++ b/auth/pom.xml
@@ -35,11 +35,6 @@
         
         <properties>
                 <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-               <project.interfaceVersion>2.1.1-SNAPSHOT</project.interfaceVersion>
-               <!-- >project.jettyVersion>9.3.22.v20171030</project.jettyVersion -->
-               <!-- project.jettyVersion>9.4.11.v20180605</project.jettyVersion -->
-               <project.jettyVersion>9.4.12.RC2</project.jettyVersion>
-               <powermock.version>1.5.1</powermock.version>
                 <project.ext_root_dir>/opt/app/osaaf</project.ext_root_dir>
                 <!--  SONAR  -->
                  <jacoco.version>0.7.7.201606060606</jacoco.version>
@@ -340,25 +335,21 @@
                 <dependency>
                         <groupId>org.mockito</groupId>
                         <artifactId>mockito-all</artifactId>
-                       <version>1.9.5</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-module-junit4</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-api-mockito</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>junit</groupId>
                         <artifactId>junit</artifactId>
-                       <version>4.10</version>
                         <scope>test</scope>
                 </dependency>
  
@@ -382,166 +373,5 @@
                 <module>auth-hello</module>
         </modules>
  
-       <dependencyManagement>
-               <dependencies>
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-env</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-log4j</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-rosetta</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-xgen</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-core</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-client</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-aaf</artifactId>
-                               <version>${project.version}</version>
-                               <exclusions>
-                                       <exclusion>
-                                               <groupId>org.apache.cassandra</groupId>
-                                               <artifactId>cassandra-all</artifactId>
-                                       </exclusion>
-                               </exclusions>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-client</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-                       
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-core</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-cass</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-cmd</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-oauth</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-deforg</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>javax.servlet</groupId>
-                               <artifactId>javax.servlet-api</artifactId>
-                               <version>3.0.1</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-servlet</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-server</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>com.datastax.cassandra</groupId>
-                               <artifactId>cassandra-all</artifactId>
-                               <version>${project.cassVersion}</version>
-                               <exclusions>
-                                       <exclusion>
-                                               <groupId>org.slf4j</groupId>
-                                               <artifactId>slf4j-log4j12</artifactId>
-                                       </exclusion>
-                                       <exclusion>
-                                               <groupId>log4j</groupId>
-                                               <artifactId>log4j</artifactId>
-                                       </exclusion>
-                               </exclusions>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>com.datastax.cassandra</groupId>
-                               <artifactId>cassandra-driver-core</artifactId>
-                               <version>${project.cassVersion}</version>
-                               <exclusions>
-                                       <exclusion>
-                                               <groupId>org.slf4j</groupId>
-                                               <artifactId>slf4j-log4j12</artifactId>
-                                       </exclusion>
-                                       <exclusion>
-                                               <groupId>log4j</groupId>
-                                               <artifactId>log4j</artifactId>
-                                       </exclusion>
-                               </exclusions>
-                       </dependency>
-                       
-                       <!-- Note: Ensure DataStax uses more up-to-date netty handler -->               
-                       <dependency>
-                                 <groupId>io.netty</groupId>
-                                 <artifactId>netty-handler</artifactId>
-                                 <version>${project.nettyVersion}</version>
-                       </dependency>
-
-                       
-
-                       <dependency>
-                               <groupId>org.slf4j</groupId>
-                               <artifactId>slf4j-log4j12</artifactId>
-                               <version>1.7.5</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>javax.mail</groupId>
-                               <artifactId>mail</artifactId>
-                               <version>1.4.7</version>
-                       </dependency>
-               </dependencies>
-       </dependencyManagement>
-
-
-       
  
  </project>     
diff --git a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java

index df2ad4f..3f5bc97 100644 (file)
--- a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java
+++ b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java
@@ -31,13 +31,13 @@ import java.util.ArrayList;
  import java.util.Date;
  import java.util.List;
  
+import org.onap.aaf.cadi.Access.Level;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.Locator;
+import org.onap.aaf.cadi.Locator.Item;
  import org.onap.aaf.cadi.LocatorException;
  import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.SecuritySetter;
-import org.onap.aaf.cadi.Access.Level;
-import org.onap.aaf.cadi.Locator.Item;
  import org.onap.aaf.cadi.aaf.v2_0.AAFLocator;
  import org.onap.aaf.cadi.client.Future;
  import org.onap.aaf.cadi.config.Config;
diff --git a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFCon.java b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFCon.java

index 32a82d6..3210713 100644 (file)
--- a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFCon.java
+++ b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFCon.java
@@ -76,7 +76,9 @@ public abstract class AAFCon<CLIENT> implements Connector {
         final public RosettaEnv env;
         protected abstract URI initURI();
         protected abstract void setInitURI(String uriString) throws CadiException;
+       /*
         protected abstract SecuritySetter<CLIENT>  bestSS(SecurityInfoC<CLIENT> si) throws CadiException;
+       */
         
         /**
          * Use this call to get the appropriate client based on configuration (HTTP, future)
@@ -137,7 +139,6 @@ public abstract class AAFCon<CLIENT> implements Connector {
                 if(tag==null) {
                         throw new CadiException("AAFCon cannot be constructed without a property tag or URL");
                 } else {
-                       si.defSS = bestSS(si);
                         String str = access.getProperty(tag,null);
                         if(str==null) {
                                 if(tag.contains("://")) { // assume a URL
diff --git a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFConHttp.java b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFConHttp.java

index 59cb6c8..a06b7af 100644 (file)
--- a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFConHttp.java
+++ b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFConHttp.java
@@ -51,28 +51,11 @@ public class AAFConHttp extends AAFCon<HttpURLConnection> {
  
         public AAFConHttp(Access access) throws CadiException, LocatorException {
                 super(access,Config.AAF_URL,SecurityInfoC.instance(access, HttpURLConnection.class));
-               bestSS(si);
                 hman = new HMangr(access,Config.loadLocator(si, access.getProperty(Config.AAF_URL,null)));
         }
  
         protected SecuritySetter<HttpURLConnection> bestSS(SecurityInfoC<HttpURLConnection> si) throws CadiException {
-               Access access = si.access;
-               String s;
-               if((s = access.getProperty(Config.CADI_ALIAS, null))!=null) {
-                       try {
-                               return new HX509SS(s,si,true);
-                       } catch (APIException e) {
-                               throw new CadiException(e);
-                       }
-               } else if((access.getProperty(Config.AAF_APPID, null))!=null){
-                       try {
-                               return new HBasicAuthSS(si,true);
-                       } catch (IOException /*| GeneralSecurityException*/ e) {
-                               throw new CadiException(e);
-                       }
-               } else {
-                       throw new CadiException("No IDs (" + Config.CADI_ALIAS + " or " + Config.AAF_APPID + ") have been identified.");
-               }
+               return si.defSS;
         }
  
         public AAFConHttp(Access access, String tag) throws CadiException, LocatorException {
diff --git a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFLurPerm.java b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFLurPerm.java

index a5ef6d1..682540e 100644 (file)
--- a/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFLurPerm.java
+++ b/cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFLurPerm.java
@@ -30,18 +30,20 @@ import java.util.Map;
  
  import org.onap.aaf.cadi.AbsUserCache;
  import org.onap.aaf.cadi.Access;
+import org.onap.aaf.cadi.Access.Level;
+import org.onap.aaf.cadi.CachedPrincipal.Resp;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.Lur;
  import org.onap.aaf.cadi.Permission;
  import org.onap.aaf.cadi.User;
-import org.onap.aaf.cadi.Access.Level;
-import org.onap.aaf.cadi.CachedPrincipal.Resp;
  import org.onap.aaf.cadi.aaf.AAFPermission;
  import org.onap.aaf.cadi.client.Future;
+import org.onap.aaf.cadi.client.Holder;
  import org.onap.aaf.cadi.client.Rcli;
  import org.onap.aaf.cadi.client.Retryable;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.lur.LocalPermission;
+import org.onap.aaf.cadi.util.Timing;
  import org.onap.aaf.misc.env.APIException;
  import org.onap.aaf.misc.env.util.Split;
  
@@ -107,15 +109,16 @@ public class AAFLurPerm extends AbsAAFLur<AAFPermission> {
  
         protected User<AAFPermission> loadUser(final Principal principal)  {
                 final String name = principal.getName();
-//             TODO Create a dynamic way to declare domains supported.
                 final long start = System.nanoTime();
+               final Holder<Float> remote = new Holder<Float>(0f);
+
                 final boolean[] success = new boolean[]{false};
                 
-//             new Exception("loadUser").printStackTrace();
                 try {
                         return aaf.best(new Retryable<User<AAFPermission>>() {
                                 @Override
                                 public User<AAFPermission> code(Rcli<?> client) throws CadiException, ConnectException, APIException {
+                                       final long remoteStart = System.nanoTime();
                                         Future<Perms> fp = client.read("/authz/perms/user/"+name,aaf.permsDF);
                                         
                                         // In the meantime, lookup User, create if necessary
@@ -137,7 +140,9 @@ public class AAFLurPerm extends AbsAAFLur<AAFPermission> {
                                         }
                                         
                                         // OK, done all we can, now get content
-                                       if(fp.get(aaf.timeout)) {
+                                       boolean ok = fp.get(aaf.timeout);
+                                       remote.set(Timing.millis(remoteStart));
+                                       if(ok) {
                                                 success[0]=true;
                                                 Map<String, Permission> newMap = user.newMap();
                                                 boolean willLog = aaf.access.willLog(Level.DEBUG);
@@ -170,51 +175,61 @@ public class AAFLurPerm extends AbsAAFLur<AAFPermission> {
                         success[0]=false;
                         return null;
                 } finally {
-                       float time = (System.nanoTime()-start)/1000000f;
-                       aaf.access.log(Level.INFO, success[0]?"Loaded":"Load Failure",name,"from AAF in",time,"ms");
+                       aaf.access.printf(Level.INFO, "AAFLurPerm: %s %s perms from AAF in %f ms, remote=%f",
+                                       (success[0]?"Loaded":"Load Failure"),name,Timing.millis(start),remote.get());
                 }
         }
  
-       public Resp reload(User<AAFPermission> user) {
+       public Resp reload(final User<AAFPermission> user) {
                 final String name = user.name;
                 long start = System.nanoTime();
-               boolean success = false;
+               final Holder<Float> remote = new Holder<Float>(0f);
+               final Holder<Boolean> success = new Holder<Boolean>(false);
                 try {
-                       Future<Perms> fp = aaf.client(Config.AAF_DEFAULT_VERSION).read(
-                                       "/authz/perms/user/"+name,
-                                       aaf.permsDF
-                                       );
-                       
-                       // OK, done all we can, now get content
-                       if(fp.get(aaf.timeout)) {
-                               success = true;
-                               Map<String,Permission> newMap = user.newMap(); 
-                               boolean willLog = aaf.access.willLog(Level.DEBUG);
-                               for(Perm perm : fp.value.getPerm()) {
-                                       user.add(newMap, new AAFPermission(perm.getNs(),perm.getType(),perm.getInstance(),perm.getAction(),perm.getRoles()));
-                                       if(willLog) {
-                                               aaf.access.log(Level.DEBUG, name,"has",perm.getType(),perm.getInstance(),perm.getAction());
+                       Resp rv = aaf.best(new Retryable<Resp>() {
+                               @Override
+                               public Resp code(Rcli<?> client) throws CadiException, ConnectException, APIException {
+                                       final long remoteStart = System.nanoTime();
+                                       Future<Perms> fp = aaf.client(Config.AAF_DEFAULT_VERSION).read(
+                                                       "/authz/perms/user/"+name,
+                                                       aaf.permsDF
+                                                       );
+                                       
+                                       // OK, done all we can, now get content
+                                       boolean ok = fp.get(aaf.timeout);
+                                       remote.set(Timing.millis(remoteStart));
+                                       if(ok) {
+                                               success.set(true);
+                                               Map<String,Permission> newMap = user.newMap(); 
+                                               boolean willLog = aaf.access.willLog(Level.DEBUG);
+                                               for(Perm perm : fp.value.getPerm()) {
+                                                       user.add(newMap, new AAFPermission(perm.getNs(),perm.getType(),perm.getInstance(),perm.getAction(),perm.getRoles()));
+                                                       if(willLog) {
+                                                               aaf.access.log(Level.DEBUG, name,"has",perm.getType(),perm.getInstance(),perm.getAction());
+                                                       }
+                                               }
+                                               user.renewPerm();
+                                               return Resp.REVALIDATED;
+                                       } else {
+                                               int code;
+                                               switch(code=fp.code()) {
+                                                       case 401:
+                                                               aaf.access.log(Access.Level.ERROR, code, "Unauthorized to make AAF calls");
+                                                               break;
+                                                       default:
+                                                               aaf.access.log(Access.Level.ERROR, code, fp.body());
+                                               }
+                                               return Resp.UNVALIDATED;
                                         }
                                 }
-                               user.renewPerm();
-                               return Resp.REVALIDATED;
-                       } else {
-                               int code;
-                               switch(code=fp.code()) {
-                                       case 401:
-                                               aaf.access.log(Access.Level.ERROR, code, "Unauthorized to make AAF calls");
-                                               break;
-                                       default:
-                                               aaf.access.log(Access.Level.ERROR, code, fp.body());
-                               }
-                               return Resp.UNVALIDATED;
-                       }
+                       });
+                       return rv;
                 } catch (Exception e) {
                         aaf.access.log(e,"Calling","/authz/perms/user/"+name);
                         return Resp.INACCESSIBLE;
                 } finally {
-                       float time = (System.nanoTime()-start)/1000000f;
-                       aaf.access.log(Level.AUDIT, success?"Reloaded":"Reload Failure",name,"from AAF in",time,"ms");
+                       aaf.access.printf(Level.INFO, "AAFLurPerm: %s %s perms from AAF in %f ms (remote=%f)",
+                                       (success.get()?"Reloaded":"Reload Failure"),name,Timing.millis(start),remote.get());
                 }
         }
  
diff --git a/cadi/aaf/src/main/java/org/onap/aaf/cadi/oauth/OAuth2HttpTafResp.java b/cadi/aaf/src/main/java/org/onap/aaf/cadi/oauth/OAuth2HttpTafResp.java

index 7e1028a..9292e75 100644 (file)
--- a/cadi/aaf/src/main/java/org/onap/aaf/cadi/oauth/OAuth2HttpTafResp.java
+++ b/cadi/aaf/src/main/java/org/onap/aaf/cadi/oauth/OAuth2HttpTafResp.java
@@ -31,19 +31,20 @@ import org.onap.aaf.cadi.taf.AbsTafResp;
  import org.onap.aaf.cadi.taf.TafResp;
  
  public class OAuth2HttpTafResp extends AbsTafResp implements TafResp {
+       private static final String tafName = OAuth2HttpTaf.class.getSimpleName();
         private HttpServletResponse httpResp;
         private RESP status;
         private final boolean wasFailed;
         
         public OAuth2HttpTafResp(Access access, OAuth2Principal principal, String desc, RESP status, HttpServletResponse resp, boolean wasFailed) {
-               super(access,principal, desc);
+               super(access,tafName, principal, desc);
                 httpResp = resp;
                 this.status = status; 
                 this.wasFailed = wasFailed;
         }
  
         public OAuth2HttpTafResp(Access access, TrustPrincipal principal, String desc, RESP status,HttpServletResponse resp) {
-               super(access,principal, desc);
+               super(access,tafName, principal, desc);
                 httpResp = resp;
                 this.status = status; 
                 wasFailed = true; // if Trust Principal added, must be good
@@ -62,5 +63,4 @@ public class OAuth2HttpTafResp extends AbsTafResp implements TafResp {
                 return wasFailed;
         }
  
-
  }
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/test/TestHClient.java b/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/test/TestHClient.java

index b526244..2e509b0 100644 (file)
--- a/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/test/TestHClient.java
+++ b/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/test/TestHClient.java
@@ -24,11 +24,10 @@ package org.onap.aaf.cadi.aaf.test;
  import java.net.HttpURLConnection;
  import java.net.URI;
  
-import org.onap.aaf.cadi.CadiException;
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.SecuritySetter;
  import org.onap.aaf.cadi.Access.Level;
+import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.Locator.Item;
+import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.aaf.v2_0.AAFLocator;
  import org.onap.aaf.cadi.aaf.v2_0.AbsAAFLocator;
  import org.onap.aaf.cadi.client.Future;
@@ -36,7 +35,6 @@ import org.onap.aaf.cadi.client.Rcli;
  import org.onap.aaf.cadi.client.Retryable;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.SecurityInfoC;
-import org.onap.aaf.cadi.http.HBasicAuthSS;
  import org.onap.aaf.cadi.http.HMangr;
  import org.onap.aaf.misc.env.APIException;
  import org.onap.aaf.misc.env.impl.BasicTrans;
@@ -56,13 +54,11 @@ public class TestHClient {
                                         for(Item item = loc.first(); item!=null; item=loc.next(item)) {
                                                 System.out.println(loc.get(item));
                                         }
-                                       SecuritySetter<HttpURLConnection> ss = new HBasicAuthSS(si);
-               //                      SecuritySetter<HttpURLConnection> ss = new X509SS(si, "aaf");
                                         
                                         hman = new HMangr(access,loc);
                                         final String path = String.format("/authz/perms/user/%s",
                                                         access.getProperty(Config.AAF_APPID,"xx9999@people.osaaf.org"));
-                                       hman.best(ss, new Retryable<Void>() {
+                                       hman.best(si.defSS, new Retryable<Void>() {
                                                 @Override
                                                 public Void code(Rcli<?> cli) throws APIException, CadiException {
                                                         Future<String> ft = cli.read(path,"application/json");  
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/v2_0/test/JU_AAFLocator.java b/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/v2_0/test/JU_AAFLocator.java

index e651fbc..4d767c9 100644 (file)
--- a/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/v2_0/test/JU_AAFLocator.java
+++ b/cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/v2_0/test/JU_AAFLocator.java
@@ -21,12 +21,10 @@
  
  package org.onap.aaf.cadi.aaf.v2_0.test;
  
-import static org.junit.Assert.*;
-import static org.hamcrest.CoreMatchers.*;
-import static org.mockito.Mockito.*;
-
-import org.junit.*;
-import org.mockito.*;
+import static org.mockito.Matchers.any;
+import static org.mockito.Matchers.eq;
+import static org.mockito.Mockito.doReturn;
+import static org.mockito.Mockito.when;
  
  import java.io.ByteArrayOutputStream;
  import java.io.PrintStream;
@@ -38,18 +36,20 @@ import java.util.ArrayList;
  import java.util.HashMap;
  import java.util.List;
  
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.SecuritySetter;
+import org.junit.After;
+import org.junit.AfterClass;
+import org.junit.Before;
+import org.junit.Test;
+import org.mockito.Mock;
+import org.mockito.MockitoAnnotations;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.LocatorException;
-import org.onap.aaf.cadi.aaf.v2_0.AAFLocator;
-import org.onap.aaf.cadi.aaf.v2_0.AbsAAFLocator;
+import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.client.Future;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.SecurityInfoC;
  import org.onap.aaf.cadi.http.HClient;
  import org.onap.aaf.misc.env.Data.TYPE;
-import org.onap.aaf.misc.env.impl.BasicTrans;
  import org.onap.aaf.misc.rosetta.env.RosettaDF;
  
  import locate.v1_0.Endpoint;
@@ -106,12 +106,12 @@ public class JU_AAFLocator {
                 access.setProperty(Config.CADI_LONGITUDE, "90.19");  // St Louis approx lon
                 SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(access, HttpURLConnection.class);
                 URI locatorURI = new URI("https://somemachine.moc:10/com.att.aaf.service:2.0");
-               AbsAAFLocator<BasicTrans> al = new AAFLocator(si, locatorURI) {
-                       @Override
-                       protected HClient createClient(SecuritySetter<HttpURLConnection> ss, URI uri, int connectTimeout) throws LocatorException {
-                               return clientMock;
-                       }
-               };
+//             AbsAAFLocator<BasicTrans> al = new AAFLocator(si, locatorURI) {
+//                     @Override
+//                     protected HClient createClient(SecuritySetter<HttpURLConnection> ss, URI uri, int connectTimeout) throws LocatorException {
+//                             return clientMock;
+//                     }
+//             };
                 // Start over: This was originally calling a developer machine.
  //             assertThat(al.refresh(), is(true));
  //             when(futureMock.get(1)).thenReturn(false);
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/example/JU_ExampleAuthCheck.java b/cadi/aaf/src/test/java/org/onap/aaf/example/JU_ExampleAuthCheck.java

deleted file mode 100644 (file)

index 387c4d1..0000000
--- a/cadi/aaf/src/test/java/org/onap/aaf/example/JU_ExampleAuthCheck.java
+++ /dev/null
@@ -1,56 +0,0 @@
-/*******************************************************************************
- * ============LICENSE_START====================================================
- * * org.onap.aaf
- * * ===========================================================================
- * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
- * * ===========================================================================
- * * Licensed under the Apache License, Version 2.0 (the "License");
- * * you may not use this file except in compliance with the License.
- * * You may obtain a copy of the License at
- * * 
- *  *      http://www.apache.org/licenses/LICENSE-2.0
- * * 
- *  * Unless required by applicable law or agreed to in writing, software
- * * distributed under the License is distributed on an "AS IS" BASIS,
- * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * * See the License for the specific language governing permissions and
- * * limitations under the License.
- * * ============LICENSE_END====================================================
- * *
- * *
- ******************************************************************************/
-package org.onap.aaf.example;
-
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.aaf.v2_0.AAFAuthn;
-import org.onap.aaf.cadi.aaf.v2_0.AAFConHttp;
-import org.onap.aaf.cadi.locator.DNSLocator;
-
-public class JU_ExampleAuthCheck {
-       public static void main(String args[]) {
-               // Link or reuse to your Logging mechanism
-               PropAccess myAccess = new PropAccess(); // 
-               
-               try {
-                       AAFConHttp acon = new AAFConHttp(myAccess, new DNSLocator(
-                                       myAccess,"https","localhost","8100"));
-                       AAFAuthn<?> authn = acon.newAuthn();
-                       long start; 
-                       for (int i=0;i<10;++i) {
-                               start = System.nanoTime();
-                               String err = authn.validate("", "gritty");
-                               if(err!=null) System.err.println(err);
-                               else System.out.println("I'm ok");
-                               
-                               err = authn.validate("bogus", "gritty");
-                               if(err!=null) System.err.println(err + " (correct error)");
-                               else System.out.println("I'm ok");
-
-                               System.out.println((System.nanoTime()-start)/1000000f + " ms");
-                       }
-               } catch (Exception e) {
-                       e.printStackTrace();
-               }
-
-       }
-}
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/example/JU_X509Test.java b/cadi/aaf/src/test/java/org/onap/aaf/example/JU_X509Test.java

deleted file mode 100644 (file)

index 732ea81..0000000
--- a/cadi/aaf/src/test/java/org/onap/aaf/example/JU_X509Test.java
+++ /dev/null
@@ -1,88 +0,0 @@
-/*******************************************************************************
- * ============LICENSE_START====================================================
- * * org.onap.aaf
- * * ===========================================================================
- * * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
- * * ===========================================================================
- * * Licensed under the Apache License, Version 2.0 (the "License");
- * * you may not use this file except in compliance with the License.
- * * You may obtain a copy of the License at
- * * 
- *  *      http://www.apache.org/licenses/LICENSE-2.0
- * * 
- *  * Unless required by applicable law or agreed to in writing, software
- * * distributed under the License is distributed on an "AS IS" BASIS,
- * * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * * See the License for the specific language governing permissions and
- * * limitations under the License.
- * * ============LICENSE_END====================================================
- * *
- * *
- ******************************************************************************/
-package org.onap.aaf.example;
-
-import java.security.Principal;
-
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.aaf.v2_0.AAFConHttp;
-import org.onap.aaf.cadi.aaf.v2_0.AAFLurPerm;
-import org.onap.aaf.cadi.client.Future;
-import org.onap.aaf.cadi.locator.DNSLocator;
-import org.onap.aaf.cadi.lur.LocalPermission;
-
-public class JU_X509Test {
-       public static void main(String args[]) {
-               // Link or reuse to your Logging mechanism
-               
-               PropAccess myAccess = new PropAccess();
-               
-               // 
-               try {
-                       AAFConHttp con = new AAFConHttp(myAccess, 
-                                       new DNSLocator(myAccess,"https","mithrilcsp.sbc.com","8100"));
-                       
-                       // AAFLur has pool of DME clients as needed, and Caches Client lookups
-                       AAFLurPerm aafLur = con.newLur();
-                       
-                       // Note: If you need both Authn and Authz construct the following:
-//                     AAFAuthn<?> aafAuthn = con.newAuthn(aafLur);
-                       
-                       // con.x509Alias("aaf.att"); // alias in keystore
-
-                       try {
-                               
-                               // Normally, you obtain Principal from Authentication System.
-//                             // For J2EE, you can ask the HttpServletRequest for getUserPrincipal()
-//                             // If you use CADI as Authenticator, it will get you these Principals from
-//                             // CSP or BasicAuth mechanisms.
-//                             String id = "cluster_admin@gridcore.att.com";
-//
-//                             // If Validate succeeds, you will get a Null, otherwise, you will a String for the reason.
-                               Future<String> fs = 
-                                               con.client("2.0").read("/authz/perms/com.att.aaf.ca","application/Perms+json");
-                               if(fs.get(3000)) {
-                                       System.out.println(fs.value);
-                               } else {
-                                       System.out.println("Error: "  + fs.code() + ':' + fs.body());
-                               }
-                               
-                               // Check on Perms with LUR
-                               if(aafLur.fish(new Principal() {
-                                       @Override
-                                       public String getName() {
-                                               return "m12345@aaf.att.com";
-                                       }
-                               }, new LocalPermission("org.osaaf.aaf.ca|aaf|request"))) {
-                                       System.out.println("Has Perm");
-                               } else {
-                                       System.out.println("Does NOT Have Perm");
-                               }
-                       } finally {
-                               aafLur.destroy();
-                       }
-               } catch (Exception e) {
-                       e.printStackTrace();
-               }
-
-       }
-}
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/ExampleAuthCheck.java b/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/ExampleAuthCheck.java

deleted file mode 100644 (file)

index a4b1cf1..0000000
--- a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/ExampleAuthCheck.java
+++ /dev/null
@@ -1,55 +0,0 @@
-/**
- * ============LICENSE_START====================================================
- * org.onap.aaf
- * ===========================================================================
- * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
- * ===========================================================================
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- * 
- *      http://www.apache.org/licenses/LICENSE-2.0
- * 
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- * ============LICENSE_END====================================================
- *
- */
-package org.onap.aaf.stillNeed;
-
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.aaf.v2_0.AAFAuthn;
-import org.onap.aaf.cadi.aaf.v2_0.AAFConHttp;
-import org.onap.aaf.cadi.locator.DNSLocator;
-
-public class ExampleAuthCheck {
-       public static void main(String args[]) {
-               // Link or reuse to your Logging mechanism
-               PropAccess myAccess = new PropAccess(); // 
-               
-               try {
-                       AAFConHttp acon = new AAFConHttp(myAccess, new DNSLocator(
-                                       myAccess,"https","localhost","8100"));
-                       AAFAuthn<?> authn = acon.newAuthn();
-                       long start; 
-                       for (int i=0;i<10;++i) {
-                               start = System.nanoTime();
-                               String err = authn.validate("", "gritty",null);
-                               if(err!=null) System.err.println(err);
-                               else System.out.println("I'm ok");
-                               
-                               err = authn.validate("bogus", "gritty",null);
-                               if(err!=null) System.err.println(err + " (correct error)");
-                               else System.out.println("I'm ok");
-
-                               System.out.println((System.nanoTime()-start)/1000000f + " ms");
-                       }
-               } catch (Exception e) {
-                       e.printStackTrace();
-               }
-
-       }
-}
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/X509Test.java b/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/X509Test.java

deleted file mode 100644 (file)

index 290f573..0000000
--- a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/X509Test.java
+++ /dev/null
@@ -1,89 +0,0 @@
-/**
- * ============LICENSE_START====================================================
- * org.onap.aaf
- * ===========================================================================
- * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
- * ===========================================================================
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- * 
- *      http://www.apache.org/licenses/LICENSE-2.0
- * 
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- * ============LICENSE_END====================================================
- *
- */
-package org.onap.aaf.stillNeed;
-
-import java.security.Principal;
-
-import org.onap.aaf.cadi.PropAccess;
-import org.onap.aaf.cadi.aaf.v2_0.AAFConHttp;
-import org.onap.aaf.cadi.aaf.v2_0.AAFLurPerm;
-import org.onap.aaf.cadi.client.Future;
-import org.onap.aaf.cadi.locator.DNSLocator;
-import org.onap.aaf.cadi.lur.LocalPermission;
-
-//TODO Needs running service to TEST
-
-public class X509Test {
-       public static void main(String args[]) {
-               // Link or reuse to your Logging mechanism
-               
-               PropAccess myAccess = new PropAccess();
-               
-               // 
-               try {
-                       AAFConHttp con = new AAFConHttp(myAccess, 
-                                       new DNSLocator(myAccess,"https","mithrilcsp.sbc.com","8100"));
-                       
-                       // AAFLur has pool of DME clients as needed, and Caches Client lookups
-                       AAFLurPerm aafLur = con.newLur();
-                       
-                       // Note: If you need both Authn and Authz construct the following:
-//                     AAFAuthn<?> aafAuthn = con.newAuthn(aafLur);
-                       
-                       // con.x509Alias("aaf.att"); // alias in keystore
-
-                       try {
-                               
-                               // Normally, you obtain Principal from Authentication System.
-//                             // For J2EE, you can ask the HttpServletRequest for getUserPrincipal()
-//                             // If you use CADI as Authenticator, it will get you these Principals from
-//                             // CSP or BasicAuth mechanisms.
-//                             String id = "cluster_admin@gridcore.att.com";
-//
-//                             // If Validate succeeds, you will get a Null, otherwise, you will a String for the reason.
-                               Future<String> fs = 
-                                               con.client("2.0").read("/authz/perms/com.att.aaf.ca","application/Perms+json");
-                               if(fs.get(3000)) {
-                                       System.out.println(fs.value);
-                               } else {
-                                       System.out.println("Error: "  + fs.code() + ':' + fs.body());
-                               }
-                               
-                               // Check on Perms with LUR
-                               if(aafLur.fish(new Principal() {
-                                       @Override
-                                       public String getName() {
-                                               return "m12345@aaf.att.com";
-                                       }
-                               }, new LocalPermission("org.osaaf.aaf.ca|aaf|request"))) {
-                                       System.out.println("Has Perm");
-                               } else {
-                                       System.out.println("Does NOT Have Perm");
-                               }
-                       } finally {
-                               aafLur.destroy();
-                       }
-               } catch (Exception e) {
-                       e.printStackTrace();
-               }
-
-       }
-}
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/CadiTest.java b/cadi/client/src/main/java/org/onap/aaf/cadi/http/HSecurityInfoInit.java

similarity index 51%

rename from cadi/aaf/src/test/java/org/onap/aaf/stillNeed/CadiTest.java

rename to cadi/client/src/main/java/org/onap/aaf/cadi/http/HSecurityInfoInit.java

index 960ea06..8eb2dec 100644 (file)
--- a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/CadiTest.java
+++ b/cadi/client/src/main/java/org/onap/aaf/cadi/http/HSecurityInfoInit.java
@@ -18,46 +18,39 @@
   * ============LICENSE_END====================================================
   *
   */
-package org.onap.aaf.stillNeed;
+package org.onap.aaf.cadi.http;
  
+import java.io.IOException;
  import java.net.HttpURLConnection;
-import java.net.URI;
  
-import org.onap.aaf.cadi.Access;
-import org.onap.aaf.cadi.PropAccess;
+import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.SecuritySetter;
-import org.onap.aaf.cadi.client.Future;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.SecurityInfoC;
-import org.onap.aaf.cadi.http.HBasicAuthSS;
-import org.onap.aaf.cadi.http.HClient;
-import org.onap.aaf.cadi.http.HX509SS;
+import org.onap.aaf.cadi.config.SecurityInfoInit;
+import org.onap.aaf.misc.env.APIException;
  
-public class CadiTest {
-       public static void main(String args[]) {
-               Access access = new PropAccess();
+/**
+ * This class will pick out the best default SS for Clients per Client type
+ * 
+ * @author jg1555
+ *
+ */
+public class HSecurityInfoInit implements SecurityInfoInit<HttpURLConnection> {
+
+       @Override
+       public SecuritySetter<HttpURLConnection> bestDefault(SecurityInfoC<HttpURLConnection> si) throws CadiException {
                 try {
-                       SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(access, HttpURLConnection.class);
-                       SecuritySetter<HttpURLConnection> ss;
-                       if(access.getProperty(Config.CADI_ALIAS,null)!=null) {
-                               ss = new HX509SS(si);
-                       } else {
-                               ss = new HBasicAuthSS(si);
-                       }
-                       HClient hclient = new HClient(ss,new URI("https://zlp08851.vci.att.com:8095"),3000);
-                       hclient.setMethod("OPTIONS");
-                       hclient.setPathInfo("/cadi/log/set/WARN");
-                       hclient.send();
-                       Future<String> future = hclient.futureReadString();
-                       if(future.get(5000)) {
-                               System.out.printf("Success %s",future.value);
-                       } else {
-                               System.out.printf("Error: %d-%s", future.code(),future.body());
+                       if(si.defaultAlias!=null) {
+                               si.set(new HX509SS(si));
+                       } else if(si.access.getProperty(Config.AAF_APPID, null)!=null &&
+                                         si.access.getProperty(Config.AAF_APPPASS, null)!=null) {
+                               si.set(new HBasicAuthSS(si));
                         }
-                               
-               } catch (Exception e) {
-                       e.printStackTrace();
+               } catch (APIException | IOException e) {
+                       throw new CadiException(e);
                 }
-
+               return si.defSS;
         }
+
  }
diff --git a/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HBasicAuthSS.java b/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HBasicAuthSS.java

index 1b9f6c3..fa0a673 100644 (file)
--- a/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HBasicAuthSS.java
+++ b/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HBasicAuthSS.java
@@ -35,6 +35,7 @@ import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.SecurityInfoC;
  import org.onap.aaf.cadi.http.HBasicAuthSS;
+import org.onap.aaf.cadi.http.HSecurityInfoInit;
  import org.onap.aaf.cadi.principal.BasicPrincipal;
  
  public class JU_HBasicAuthSS {
diff --git a/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HX509SS.java b/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HX509SS.java

index 0c086e4..b57f29e 100644 (file)
--- a/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HX509SS.java
+++ b/cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HX509SS.java
@@ -21,6 +21,10 @@
  
  package org.onap.aaf.cadi.http.test;
  
+import static org.hamcrest.CoreMatchers.is;
+import static org.junit.Assert.assertThat;
+import static org.mockito.Mockito.when;
+
  import java.io.ByteArrayOutputStream;
  import java.io.IOException;
  import java.io.PrintStream;
@@ -32,12 +36,10 @@ import java.security.cert.X509Certificate;
  import javax.net.ssl.HttpsURLConnection;
  import javax.net.ssl.X509KeyManager;
  
-import static org.junit.Assert.*;
-import static org.mockito.Mockito.*;
-import static org.hamcrest.CoreMatchers.*;
-
-import org.junit.*;
-import org.mockito.*;
+import org.junit.Before;
+import org.junit.Test;
+import org.mockito.Mock;
+import org.mockito.MockitoAnnotations;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.config.Config;
@@ -75,7 +77,7 @@ public class JU_HX509SS {
                 
                 access = new PropAccess(new PrintStream(new ByteArrayOutputStream()), new String[0]);
                 access.setProperty(Config.CADI_ALIAS, alias);
-               si = SecurityInfoC.instance(access, HttpURLConnection.class);
+               // si = SecurityInfoC.instance(access, HttpURLConnectionStub.class);
         }
  
         @Test
@@ -105,12 +107,6 @@ public class JU_HX509SS {
                 HX509SS x509 = new HX509SS(siMock);
         }
  
-       @Test(expected = APIException.class)
-       public void throws2Test() throws APIException, CadiException {
-               @SuppressWarnings("unused")
-               HX509SS x509 = new HX509SS(si, false);
-       }
-
         @Test(expected = APIException.class)
         public void throws3Test() throws APIException, CadiException {
                 when(keyManagerMock.getCertificateChain(alias)).thenReturn(new X509Certificate[0]);
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/CadiWrap.java b/cadi/core/src/main/java/org/onap/aaf/cadi/CadiWrap.java

index a2dfba3..6f4d5cc 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/CadiWrap.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/CadiWrap.java
@@ -34,6 +34,7 @@ import org.onap.aaf.cadi.filter.PermConverter;
  import org.onap.aaf.cadi.lur.EpiLur;
  import org.onap.aaf.cadi.principal.TaggedPrincipal;
  import org.onap.aaf.cadi.taf.TafResp;
+import org.onap.aaf.cadi.util.Timing;
  
  
  
@@ -113,7 +114,7 @@ public class CadiWrap extends HttpServletRequestWrapper implements HttpServletRe
          */
         @Override
         public boolean isUserInRole(String perm) {
-               return perm==null?false:checkPerm(access,"(HttpRequest)",principal,pconv,lur,perm);
+               return perm==null?false:checkPerm(access,"isUserInRole",principal,pconv,lur,perm);
         }
         
         public static boolean checkPerm(Access access, String caller, Principal principal, PermConverter pconv, Lur lur, String perm) {
@@ -121,12 +122,13 @@ public class CadiWrap extends HttpServletRequestWrapper implements HttpServletRe
                         access.log(Level.AUDIT,caller, "No Principal in Transaction");
                         return false;
                 } else { 
+                       final long start = System.nanoTime();
                         perm = pconv.convert(perm);
                         if(lur.fish(principal,lur.createPerm(perm))) {
-                               access.log(Level.DEBUG,caller, principal.getName(), "has", perm);
+                               access.printf(Level.DEBUG,"%s: %s has %s, %f ms", caller, principal.getName(), perm, Timing.millis(start));
                                 return true;
                         } else {
-                               access.log(Level.DEBUG,caller, principal.getName(), "does not have", perm);
+                               access.printf(Level.DEBUG,"%s: %s does not have %s, %f ms", caller, principal.getName(), perm, Timing.millis(start));
                                 return false;
                         }
                 }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/PropAccess.java b/cadi/core/src/main/java/org/onap/aaf/cadi/PropAccess.java

index 5e00156..6a932c4 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/PropAccess.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/PropAccess.java
@@ -40,7 +40,7 @@ public class PropAccess implements Access {
         // Sonar says cannot be static... it's ok.  not too many PropAccesses created.
         private final SimpleDateFormat iso8601 = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss.SSSZ");
  
-       public static Level DEFAULT = Level.AUDIT;
+       public static final Level DEFAULT = Level.AUDIT;
         
         private Symm symm;
         private int level;
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoC.java b/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoC.java

index a5fb4a0..8e5faf4 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoC.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoC.java
@@ -21,6 +21,7 @@
  
  package org.onap.aaf.cadi.config;
  
+import java.net.HttpURLConnection;
  import java.util.HashMap;
  import java.util.Map;
  
@@ -33,32 +34,37 @@ public class SecurityInfoC<CLIENT> extends SecurityInfo {
         public static final String DEF_ID = "ID not Set";
         private static Map<Class<?>,SecurityInfoC<?>> sicMap = new HashMap<>();
         public SecuritySetter<CLIENT> defSS;
+ 
  
         public SecurityInfoC(Access access) throws CadiException {
                 super(access);
-               defSS = new SecuritySetter<CLIENT>() {
-                               @Override
-                               public String getID() {
-                                       return DEF_ID;
-                               }
-
-                               @Override
-                               public void setSecurity(CLIENT client) throws CadiException {
-                                       throw new CadiException("No Client Credentials set.");
-                               }
-
-                               @Override
-                               public int setLastResponse(int respCode) {
-                                       return 0;
-                               }
-                       };
+               defSS = new DEFSS<CLIENT>();
         }
         
+       @SuppressWarnings("unchecked")
         public static synchronized <CLIENT> SecurityInfoC<CLIENT> instance(Access access, Class<CLIENT> cls) throws CadiException {
-               @SuppressWarnings("unchecked")
+               SecurityInfoInit<CLIENT> sii;
+               if(cls.isAssignableFrom(HttpURLConnection.class)) {
+                       try {
+                               @SuppressWarnings("rawtypes")
+                               Class<SecurityInfoInit> initCls = (Class<SecurityInfoInit>)Class.forName("org.onap.aaf.cadi.http.HSecurityInfoInit");
+                               sii = initCls.newInstance();
+                       } catch (ClassNotFoundException | InstantiationException | IllegalAccessException e) {
+                               throw new CadiException("CADI using HttpURLConnection requires cadi-client jar",e);
+                       }
+               } else {
+                       sii = new SecurityInfoInit<CLIENT>() {
+                               @Override
+                               public SecuritySetter<CLIENT> bestDefault(SecurityInfoC<CLIENT> si) throws CadiException {
+                                       return new DEFSS<CLIENT>();
+                               }
+                       }; 
+               }
+               
                 SecurityInfoC<CLIENT> sic = (SecurityInfoC<CLIENT>) sicMap.get(cls);
                 if(sic==null) {
-                       sic = new SecurityInfoC<CLIENT>(access); 
+                       sic = new SecurityInfoC<CLIENT>(access);
+                       sic.set(sii.bestDefault(sic));
                         sicMap.put(cls, sic);
                 }
                 return sic;
@@ -69,4 +75,20 @@ public class SecurityInfoC<CLIENT> extends SecurityInfo {
                 return this;
         }
  
+       private static class DEFSS<C> implements SecuritySetter<C> {
+               @Override
+               public String getID() {
+                       return DEF_ID;
+               }
+
+               @Override
+               public void setSecurity(C client) throws CadiException {
+                       throw new CadiException("No Client Credentials set.");
+               }
+
+               @Override
+               public int setLastResponse(int respCode) {
+                       return 0;
+               }
+       };
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoInit.java b/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoInit.java

new file mode 100644 (file)

index 0000000..d77a719
--- /dev/null
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoInit.java
@@ -0,0 +1,28 @@
+/**
+ * ============LICENSE_START====================================================
+ * org.onap.aaf
+ * ===========================================================================
+ * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
+ * ===========================================================================
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * 
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ * 
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ * ============LICENSE_END====================================================
+ *
+ */
+package org.onap.aaf.cadi.config;
+
+import org.onap.aaf.cadi.CadiException;
+import org.onap.aaf.cadi.SecuritySetter;
+
+public interface SecurityInfoInit<CLIENT> {
+       public SecuritySetter<CLIENT> bestDefault(SecurityInfoC<CLIENT> si) throws CadiException;
+}
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java

index 237aa28..29234ed 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java
@@ -36,6 +36,7 @@ import javax.servlet.http.HttpServletRequest;
  import javax.servlet.http.HttpServletResponse;
  
  import org.onap.aaf.cadi.Access;
+import org.onap.aaf.cadi.Access.Level;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.CadiWrap;
  import org.onap.aaf.cadi.LocatorException;
@@ -43,11 +44,11 @@ import org.onap.aaf.cadi.Lur;
  import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.ServletContextAccess;
  import org.onap.aaf.cadi.TrustChecker;
-import org.onap.aaf.cadi.Access.Level;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.Get;
  import org.onap.aaf.cadi.taf.TafResp;
  import org.onap.aaf.cadi.taf.TafResp.RESP;
+import org.onap.aaf.cadi.util.Timing;
  
  /**
   * CadiFilter
@@ -264,22 +265,39 @@ public class CadiFilter implements Filter {
          */
         //TODO Always validate changes against Tomcat AbsCadiValve and Jaspi CadiSAM functions
         public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+               final long startAll = System.nanoTime();
+               long startCode, startValidate;
+               float code=0f, validate=0f;
+               String user = "n/a";
+               String tag = "";
                 try {
                         HttpServletRequest hreq = (HttpServletRequest)request;
                         if(noAuthn(hreq)) {
+                               startCode=System.nanoTime();
                                 chain.doFilter(request, response);
+                               code = Timing.millis(startCode);
                         } else {
                                 HttpServletResponse hresp = (HttpServletResponse)response;
+                               startValidate=System.nanoTime();
                                 TafResp tresp = httpChecker.validate(hreq, hresp, hreq);
+                               validate = Timing.millis(startValidate);
                                 if(tresp.isAuthenticated()==RESP.IS_AUTHENTICATED) {
+                                       user = tresp.getPrincipal().personalName();
+                                       tag = tresp.getPrincipal().tag();
                                         CadiWrap cw = new CadiWrap(hreq, tresp, httpChecker.getLur(),getConverter(hreq));
                                         if(httpChecker.notCadi(cw, hresp)) {
+                                               startCode=System.nanoTime();
                                                 oauthFilter.doFilter(cw,response,chain);
+                                               code = Timing.millis(startCode);
                                         }
-                               }                                               
+                               }
                         }
                 } catch (ClassCastException e) {
                         throw new ServletException("CadiFilter expects Servlet to be an HTTP Servlet",e);
+               } finally {
+                       access.printf(Level.WARN, "Trans: user=%s[%s],ip=%s,ms=%f,validate=%f,code=%f",
+                               user,tag,request.getRemoteAddr(),
+                               Timing.millis(startAll),validate,code);
                 }
         }
  
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiHTTPManip.java b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiHTTPManip.java

index 0cc5220..9d1653f 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiHTTPManip.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiHTTPManip.java
@@ -28,6 +28,7 @@ import javax.servlet.http.HttpServletRequest;
  import javax.servlet.http.HttpServletResponse;
  
  import org.onap.aaf.cadi.Access;
+import org.onap.aaf.cadi.Access.Level;
  import org.onap.aaf.cadi.CadiException;
  import org.onap.aaf.cadi.CadiWrap;
  import org.onap.aaf.cadi.Connector;
@@ -36,7 +37,6 @@ import org.onap.aaf.cadi.LocatorException;
  import org.onap.aaf.cadi.Lur;
  import org.onap.aaf.cadi.Taf;
  import org.onap.aaf.cadi.TrustChecker;
-import org.onap.aaf.cadi.Access.Level;
  import org.onap.aaf.cadi.config.Config;
  import org.onap.aaf.cadi.config.SecurityInfoC;
  import org.onap.aaf.cadi.lur.EpiLur;
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/AbsTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/AbsTafResp.java

index c216fb5..fb54abd 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/AbsTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/AbsTafResp.java
@@ -23,6 +23,7 @@ package org.onap.aaf.cadi.taf;
  
  import org.onap.aaf.cadi.Access;
  import org.onap.aaf.cadi.principal.TaggedPrincipal;
+import org.onap.aaf.cadi.util.Timing;
  
  /**
   * AbsTafResp
@@ -34,9 +35,11 @@ import org.onap.aaf.cadi.principal.TaggedPrincipal;
   */
  public abstract class AbsTafResp implements TafResp {
  
-       protected final String desc;
-       protected final TaggedPrincipal principal;
         protected final Access access;
+       protected final String tafName;
+       protected final TaggedPrincipal principal;
+       protected final String desc;
+       private float timing;
  
         /**
          * AbsTafResp
@@ -47,11 +50,13 @@ public abstract class AbsTafResp implements TafResp {
          * Access (for access to underlying container, i.e. for Logging, auditing, ClassLoaders, etc)
          *  
          * @param access
+        * @param tafname 
          * @param principal
          * @param description
          */
-       public AbsTafResp(Access access, TaggedPrincipal principal, String description) {
+       public AbsTafResp(Access access, String tafname, TaggedPrincipal principal, String description) {
                 this.access = access;
+               this.tafName = tafname;
                 this.principal = principal;
                 this.desc = description;
         }
@@ -113,4 +118,19 @@ public abstract class AbsTafResp implements TafResp {
                 return false;
         }
  
+       @Override
+       public float timing() {
+               return timing;
+       }
+       
+       @Override
+       public void timing(final long start) {
+               timing = Timing.millis(start);
+       }
+
+       @Override
+       public String taf() {
+               return tafName;
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/HttpEpiTaf.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/HttpEpiTaf.java

index 5b51c11..1d7967e 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/HttpEpiTaf.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/HttpEpiTaf.java
@@ -101,8 +101,9 @@ public class HttpEpiTaf implements HttpTaf {
                 }
                 try {
                         for (HttpTaf taf : tafs) {
+                               final long start = System.nanoTime();
                                 tresp = taf.validate(reading, req, resp);
-                               addToLog(log, tresp);
+                               addToLog(log, tresp, start);
                                 switch(tresp.isAuthenticated()) {
                                         case TRY_ANOTHER_TAF:
                                                 break; // and loop
@@ -181,10 +182,11 @@ public class HttpEpiTaf implements HttpTaf {
                 return Resp.NOT_MINE;
         }
         
-       private void addToLog(List<TafResp> log, TafResp tresp) {
+       private void addToLog(List<TafResp> log, final TafResp tresp, final long start) {
                 if (log == null) {
                         return;
                 }
+               tresp.timing(start);
                 log.add(tresp);
         }
         
@@ -193,7 +195,7 @@ public class HttpEpiTaf implements HttpTaf {
                         return;
                 }
                 for (TafResp tresp : log) {
-                       access.log(Level.DEBUG, tresp.desc());
+                       access.printf(Level.DEBUG, "%s: %s, ms=%f", tresp.taf(), tresp.desc(), tresp.timing());
                 }
         }
  
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/LoginPageTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/LoginPageTafResp.java

index 3f80170..c8abec0 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/LoginPageTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/LoginPageTafResp.java
@@ -37,7 +37,7 @@ public class LoginPageTafResp extends AbsTafResp {
         private final String loginPageURL;
  
         private LoginPageTafResp(Access access, final HttpServletResponse resp, String loginPageURL) {
-               super(access, null, "Multiple Possible HTTP Logins available.  Redirecting to Login Choice Page");
+               super(access, "LoginPage", null, "Multiple Possible HTTP Logins available.  Redirecting to Login Choice Page");
                 httpResp = resp;
                 this.loginPageURL = loginPageURL;
         }
@@ -91,4 +91,10 @@ public class LoginPageTafResp extends AbsTafResp {
  
                 return NullTafResp.singleton();
         }
+       
+       @Override
+       public String taf() {
+               return "LoginPage";
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/NullTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/NullTafResp.java

index 20fc944..af6ef9c 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/NullTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/NullTafResp.java
@@ -70,4 +70,19 @@ class NullTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return true;
         }
+
+       @Override
+       public float timing() {
+               return 0;
+       }
+
+       @Override
+       public void timing(long start) {
+       }
+       
+       @Override
+       public String taf() {
+               return "NULL";
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/PuntTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/PuntTafResp.java

index f496581..a38c853 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/PuntTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/PuntTafResp.java
@@ -25,6 +25,7 @@ import java.io.IOException;
  
  import org.onap.aaf.cadi.Access;
  import org.onap.aaf.cadi.principal.TaggedPrincipal;
+import org.onap.aaf.cadi.util.Timing;
  
  /**
   * A Punt Resp to make it fast and easy for a Taf to respond that it cannot handle a particular kind of
@@ -33,10 +34,13 @@ import org.onap.aaf.cadi.principal.TaggedPrincipal;
   *
   */
  public class PuntTafResp implements TafResp {
+       private final String name;
         private final String desc;
+       private float timing;
  
         public PuntTafResp(String name, String explanation) {
-               desc = name + " is not processing this transaction: " + explanation;
+               this.name = name;
+               desc = "Not processing this transaction: " + explanation;
         }
         
         public boolean isValid() {
@@ -66,4 +70,20 @@ public class PuntTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return false;
         }
+
+       @Override
+       public float timing() {
+               return timing;
+       }
+
+       @Override
+       public void timing(long start) {
+               timing = Timing.millis(start);
+       }
+       
+       @Override
+       public String taf() {
+               return name;
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TafResp.java

index a679d99..acade37 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TafResp.java
@@ -91,4 +91,21 @@ public interface TafResp {
          * Be able to check if part of a Failed attempt
          */
         public boolean isFailedAttempt();
+       
+       /**
+        * report how long this took
+        * @return
+        */
+       public float timing();
+
+       /**
+        * Set end of timing in Millis, given Nanos
+        * @param start
+        */
+       void timing(long start);
+       
+       /**
+        * Support Taf Name
+        */
+       String taf();
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustNotTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustNotTafResp.java

index 24a79cf..98ead3c 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustNotTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustNotTafResp.java
@@ -25,10 +25,12 @@ import java.io.IOException;
  
  import org.onap.aaf.cadi.Access;
  import org.onap.aaf.cadi.principal.TaggedPrincipal;
+import org.onap.aaf.cadi.util.Timing;
  
  public class TrustNotTafResp implements TafResp {
         private final TafResp delegate;
         private final String desc;
+       private float timing;
         
         public TrustNotTafResp(final TafResp delegate, final String desc) {
                 this.delegate = delegate;
@@ -69,8 +71,24 @@ public class TrustNotTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return true;
         }
+       @Override
+       public float timing() {
+               return timing;
+       }
+
+       @Override
+       public void timing(long start) {
+               timing = Timing.millis(start);
+       }
         
+       @Override
         public String toString() {
                 return desc();
         }
+       
+       @Override
+       public String taf() {
+               return "TrustNot";
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustTafResp.java

index bc5e8db..9d3b28c 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustTafResp.java
@@ -25,11 +25,13 @@ import java.io.IOException;
  
  import org.onap.aaf.cadi.Access;
  import org.onap.aaf.cadi.principal.TaggedPrincipal;
+import org.onap.aaf.cadi.util.Timing;
  
  public class TrustTafResp implements TafResp {
         private final TafResp delegate;
         private final TaggedPrincipal principal;
         private final String desc;
+       private float timing;
         
         public TrustTafResp(final TafResp delegate, final TaggedPrincipal principal, final String desc) {
                 this.delegate = delegate;
@@ -71,8 +73,23 @@ public class TrustTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return delegate.isFailedAttempt();
         }
+       @Override
+       public float timing() {
+               return timing;
+       }
+
+       @Override
+       public void timing(long start) {
+               timing = Timing.millis(start);
+       }
         
         public String toString() {
                 return principal.getName() + " by trust of " + desc();
         }
+       
+       @Override
+       public String taf() {
+               return "Trust";
+       }
+
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/basic/BasicHttpTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/basic/BasicHttpTafResp.java

index c17797b..643cf29 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/basic/BasicHttpTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/basic/BasicHttpTafResp.java
@@ -31,13 +31,14 @@ import org.onap.aaf.cadi.taf.AbsTafResp;
  import org.onap.aaf.cadi.taf.TafResp;
  
  public class BasicHttpTafResp extends AbsTafResp implements TafResp {
+       private static final String tafName = BasicHttpTaf.class.getSimpleName();
         private HttpServletResponse httpResp;
         private String realm;
         private RESP status;
         private final boolean wasFailed;
         
         public BasicHttpTafResp(Access access, TaggedPrincipal principal, String description, RESP status, HttpServletResponse resp, String realm, boolean wasFailed) {
-               super(access,principal, description);
+               super(access, tafName, principal, description);
                 httpResp = resp;
                 this.realm = realm;
                 this.status = status;
@@ -57,6 +58,4 @@ public class BasicHttpTafResp extends AbsTafResp implements TafResp {
         public boolean isFailedAttempt() {
                 return wasFailed;
         }
-
-
  }
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509HttpTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509HttpTafResp.java

index b7f63b8..c18f903 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509HttpTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509HttpTafResp.java
@@ -29,10 +29,12 @@ import org.onap.aaf.cadi.taf.AbsTafResp;
  import org.onap.aaf.cadi.taf.TafResp;
  
  public class X509HttpTafResp extends AbsTafResp implements TafResp {
+       private static final String tafName = X509Taf.class.getSimpleName();
+
         private RESP status;
         
         public X509HttpTafResp(Access access, TaggedPrincipal principal, String description, RESP status) {
-               super(access, principal, description);
+               super(access, tafName, principal, description);
                 this.status = status;
         }
  
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509Taf.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509Taf.java

index 7b7f2db..77efa95 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509Taf.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509Taf.java
@@ -56,7 +56,6 @@ import org.onap.aaf.cadi.taf.basic.BasicHttpTaf;
  import org.onap.aaf.cadi.util.Split;
  
  public class X509Taf implements HttpTaf {
-       
         private static final String CERTIFICATE_NOT_VALID_FOR_AUTHENTICATION = "Certificate NOT valid for Authentication";
         public static final CertificateFactory certFactory;
         public static final MessageDigest messageDigest;
diff --git a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/dos/DenialOfServiceTafResp.java b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/dos/DenialOfServiceTafResp.java

index b156392..e5a336f 100644 (file)
--- a/cadi/core/src/main/java/org/onap/aaf/cadi/taf/dos/DenialOfServiceTafResp.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/taf/dos/DenialOfServiceTafResp.java
@@ -27,10 +27,12 @@ import org.onap.aaf.cadi.Access;
  import org.onap.aaf.cadi.taf.AbsTafResp;
  
  public class DenialOfServiceTafResp extends AbsTafResp  {
+       private static final String tafName = DenialOfServiceTaf.class.getSimpleName();
+
         private RESP ect;  // Homage to Arethra Franklin
  
         public DenialOfServiceTafResp(Access access, RESP resp, String description ) {
-               super(access, null, description);
+               super(access, tafName, null, description);
                 ect = resp;
         }
  
@@ -44,4 +46,10 @@ public class DenialOfServiceTafResp extends AbsTafResp  {
         public RESP authenticate() throws IOException {
                 return ect;
         }
+       
+       @Override
+       public String taf() {
+               return "DOS";
+       }
+
  }
diff --git a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/TestPrincipal.java b/cadi/core/src/main/java/org/onap/aaf/cadi/util/Timing.java

similarity index 79%

rename from cadi/aaf/src/test/java/org/onap/aaf/stillNeed/TestPrincipal.java

rename to cadi/core/src/main/java/org/onap/aaf/cadi/util/Timing.java

index 1256902..82bd389 100644 (file)
--- a/cadi/aaf/src/test/java/org/onap/aaf/stillNeed/TestPrincipal.java
+++ b/cadi/core/src/main/java/org/onap/aaf/cadi/util/Timing.java
@@ -18,18 +18,10 @@
   * ============LICENSE_END====================================================
   *
   */
-package org.onap.aaf.stillNeed;
+package org.onap.aaf.cadi.util;
  
-import java.security.Principal;
-
-public class TestPrincipal implements Principal {
-       private String name;
-       public TestPrincipal(String name) {
-               this.name = name;
-       }
-       @Override
-       public String getName() {
-               return name;
+public class Timing {
+       public static float millis(final long start) {
+               return (System.nanoTime() - start) / 1000000f;
         }
-
  }
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/config/test/JU_SecurityInfoC.java b/cadi/core/src/test/java/org/onap/aaf/cadi/config/test/JU_SecurityInfoC.java

index 27014b9..111f876 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/config/test/JU_SecurityInfoC.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/config/test/JU_SecurityInfoC.java
@@ -57,23 +57,23 @@ public class JU_SecurityInfoC {
                 System.setErr(System.err);
         }
  
-       @Test
-       public void instanceTest() throws CadiException, MalformedURLException {
-               SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(new PropAccess(), HttpURLConnection.class);
-               assertThat(si.defSS.getID(), is(SecurityInfoC.DEF_ID));
-               try {
-                       si.defSS.setSecurity(new HttpURLConnectionStub());
-                       fail("Should have thrown an exception");
-               } catch (CadiException e) {
-                       assertTrue(e instanceof CadiException);
-                       assertThat(e.getMessage(), is("No Client Credentials set."));
-               }
-               assertThat(si.defSS.setLastResponse(0), is(0));
-
-               // Try it again for coverage
-               SecurityInfoC<HttpURLConnection> siClone = SecurityInfoC.instance(new PropAccess(), HttpURLConnection.class);
-               assertThat(siClone, is(si));
-       }
+//     @Test
+//     public void instanceTest() throws CadiException, MalformedURLException {
+//             SecurityInfoC<HttpURLConnection> si = SecurityInfoC.instance(new PropAccess(), HttpURLConnection.class );
+//             assertThat(si.defSS.getID(), is(SecurityInfoC.DEF_ID));
+//             try {
+//                     si.defSS.setSecurity(new HttpURLConnectionStub());
+//                     fail("Should have thrown an exception");
+//             } catch (CadiException e) {
+//                     assertTrue(e instanceof CadiException);
+//                     assertThat(e.getMessage(), is("No Client Credentials set."));
+//             }
+//             assertThat(si.defSS.setLastResponse(0), is(0));
+//
+//             // Try it again for coverage
+//             SecurityInfoC<HttpURLConnection> siClone = SecurityInfoC.instance(new PropAccess(), HttpURLConnection.class);
+//             assertThat(siClone, is(si));
+//     }
         
         @Test
         public void setTest() throws MalformedURLException, CadiException {
@@ -93,7 +93,7 @@ public class JU_SecurityInfoC {
                 assertThat(si.defSS.setLastResponse(-1), is(-1));
         }
  
-       private class HttpURLConnectionStub extends HttpURLConnection {
+       public static class HttpURLConnectionStub extends HttpURLConnection {
                 public HttpURLConnectionStub() throws MalformedURLException { super(new URL("http://www.example.com")); } 
                 @Override public void disconnect() { } 
                 @Override public boolean usingProxy() { return false; } 
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/lur/test/JU_LocalLur.java b/cadi/core/src/test/java/org/onap/aaf/cadi/lur/test/JU_LocalLur.java

index 722ac14..f35f81c 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/lur/test/JU_LocalLur.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/lur/test/JU_LocalLur.java
@@ -37,10 +37,10 @@ import org.junit.Before;
  import org.junit.Test;
  import org.mockito.Mock;
  import org.mockito.MockitoAnnotations;
-import org.onap.aaf.cadi.Permission;
-import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.AbsUserCache;
  import org.onap.aaf.cadi.CredVal.Type;
+import org.onap.aaf.cadi.Permission;
+import org.onap.aaf.cadi.PropAccess;
  import org.onap.aaf.cadi.lur.ConfigPrincipal;
  import org.onap.aaf.cadi.lur.LocalLur;
  import org.onap.aaf.cadi.lur.LocalPermission;
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/dos/test/JU_DenialOfServiceTaf.java b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/dos/test/JU_DenialOfServiceTaf.java

index ce49654..997ebce 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/dos/test/JU_DenialOfServiceTaf.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/dos/test/JU_DenialOfServiceTaf.java
@@ -131,7 +131,8 @@ public class JU_DenialOfServiceTaf {
                 dost = new DenialOfServiceTaf(accessMock);
                 tafResp = dost.validate(LifeForm.SBLF, reqMock1, respMock);
  
-               assertThat(tafResp.desc(), is("DenialOfServiceTaf is not processing this transaction: This Transaction is not denied"));
+               assertThat(tafResp.desc(), is("Not processing this transaction: This Transaction is not denied"));
+               assertThat(tafResp.taf(), is("DenialOfServiceTaf"));
  
                 assertThat(DenialOfServiceTaf.denyIP(ip1), is(true));
  
@@ -139,7 +140,8 @@ public class JU_DenialOfServiceTaf {
                 assertThat(tafResp.desc(), is(ip1 + " is on the IP Denial list"));
  
                 tafResp = dost.validate(LifeForm.SBLF, reqMock2, respMock);
-               assertThat(tafResp.desc(), is("DenialOfServiceTaf is not processing this transaction: This Transaction is not denied"));
+               assertThat(tafResp.desc(), is("Not processing this transaction: This Transaction is not denied"));
+               assertThat(tafResp.taf(), is("DenialOfServiceTaf"));
         }
  
         @Test
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_AbsTafResp.java b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_AbsTafResp.java

index 6d0c04b..e4469d3 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_AbsTafResp.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_AbsTafResp.java
@@ -40,6 +40,7 @@ import org.onap.aaf.cadi.taf.TafResp.RESP;
  
  public class JU_AbsTafResp {
         
+       private static final String JUNIT = "Junit";
         private static final String name = "name";
         private static final String tag = "tag";
         private static final String description = "description";
@@ -58,7 +59,7 @@ public class JU_AbsTafResp {
  
         @Test
         public void test() {
-               AbsTafResp tafResp = new AbsTafResp(access, taggedPrinc, description) {
+               AbsTafResp tafResp = new AbsTafResp(access, JUNIT, taggedPrinc, description) {
                         @Override public RESP authenticate() throws IOException {
                                 return null;
                         }
@@ -66,12 +67,13 @@ public class JU_AbsTafResp {
  
                 assertThat(tafResp.isValid(), is(true));
                 assertThat(tafResp.desc(), is(description));
+               assertThat(tafResp.taf(), is(JUNIT));
                 assertThat(tafResp.isAuthenticated(), is(RESP.IS_AUTHENTICATED));
                 assertThat(tafResp.getPrincipal(), is(taggedPrinc));
                 assertThat(tafResp.getAccess(), is(access));
                 assertThat(tafResp.isFailedAttempt(), is(false));
  
-               tafResp = new AbsTafResp(null, null, null) {
+               tafResp = new AbsTafResp(null, JUNIT, null, null) {
                         @Override public RESP authenticate() throws IOException {
                                 return null;
                         }
@@ -81,6 +83,7 @@ public class JU_AbsTafResp {
                 assertThat(tafResp.isAuthenticated(), is(RESP.TRY_ANOTHER_TAF));
                 assertThat(tafResp.getPrincipal(), is(nullValue()));
                 assertThat(tafResp.getAccess(), is(nullValue()));
+               assertThat(tafResp.taf(), is(JUNIT));
                 assertThat(tafResp.isFailedAttempt(), is(false));
         }
  
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_EpiTaf.java b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_EpiTaf.java

index a119059..f8e20cb 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_EpiTaf.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_EpiTaf.java
@@ -76,7 +76,10 @@ public class JU_EpiTaf {
                 @Override public RESP authenticate() throws IOException { return null; } 
                 @Override public TaggedPrincipal getPrincipal() { return null; } 
                 @Override public Access getAccess() { return null; } 
-               @Override public boolean isFailedAttempt() { return false; } 
+               @Override public boolean isFailedAttempt() { return false; }
+               @Override public float timing() { return 0; }
+               @Override public void timing(long start) {} 
+               @Override public String taf() {return "JUnit";}
         }
  
         class TryAnotherTaf implements Taf {
@@ -91,6 +94,9 @@ public class JU_EpiTaf {
                 @Override public TaggedPrincipal getPrincipal() { return null; } 
                 @Override public Access getAccess() { return null; } 
                 @Override public boolean isFailedAttempt() { return false; } 
+               @Override public float timing() { return 0; }
+               @Override public void timing(long start) {} 
+               @Override public String taf() {return "JUnit";}
         }
  
         class TryAuthenticatingTaf implements Taf {
diff --git a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_PuntTafResp.java b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_PuntTafResp.java

index 516f404..aacce52 100644 (file)
--- a/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_PuntTafResp.java
+++ b/cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_PuntTafResp.java
@@ -44,7 +44,8 @@ public class JU_PuntTafResp {
  
                 assertFalse(punt.isValid());
                 assertThat(punt.isAuthenticated(), is(RESP.TRY_ANOTHER_TAF));
-               assertThat(punt.desc(), is(name + " is not processing this transaction: " + explanation));
+               assertThat(punt.desc(), is("Not processing this transaction: " + explanation));
+               assertThat(punt.taf(), is(name));
                 assertThat(punt.authenticate(), is(RESP.TRY_ANOTHER_TAF));
                 assertThat(punt.getPrincipal(), is(nullValue()));
                 assertThat(punt.getAccess(), is(Access.NULL));
diff --git a/cadi/pom.xml b/cadi/pom.xml

index a194d0d..86c4b1f 100644 (file)
--- a/cadi/pom.xml
+++ b/cadi/pom.xml
@@ -33,28 +33,26 @@
                 <name>ONAP</name>
         </organization>
         <packaging>pom</packaging>
-
         
         <properties>
+               <!-- SONAR -->
                 <!-- <sonar.skip>true</sonar.skip> -->
-               <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-               <project.jettyVersion>9.4.12.RC</project.jettyVersion>
-               <powermock.version>1.5.1</powermock.version>
-               <!--  SONAR  -->
-                <jacoco.version>0.7.7.201606060606</jacoco.version>
-           <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
-           <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
-           <!-- Default Sonar configuration -->
-           <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
-           <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
-           <!-- Note: This list should match jacoco-maven-plugin's exclusion list below -->
-           <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
+               <jacoco.version>0.7.7.201606060606</jacoco.version>
+               <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
+               <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
+               <!-- Default Sonar configuration -->
+               <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
+               <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
+               <!-- Note: This list should match jacoco-maven-plugin's exclusion list 
+                       below -->
+               <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
                 <nexusproxy>https://nexus.onap.org</nexusproxy>
                 <snapshotNexusPath>/content/repositories/snapshots/</snapshotNexusPath>
                 <releaseNexusPath>/content/repositories/releases/</releaseNexusPath>
                 <stagingNexusPath>/content/repositories/staging/</stagingNexusPath>
                 <sitePath>/content/sites/site/org/onap/aaf/authz/${project.artifactId}/${project.version}</sitePath>
         </properties>
+       
  
         <!-- ============================================================== -->
         <!-- Define the major contributors and developers of CADI -->
@@ -100,27 +98,23 @@
                 <dependency>
                         <groupId>org.mockito</groupId>
                         <artifactId>mockito-all</artifactId>
-                       <version>1.9.5</version>
                         <scope>test</scope>
                 </dependency>
  
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-module-junit4</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-api-mockito</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
  
                 <dependency>
                         <groupId>junit</groupId>
                         <artifactId>junit</artifactId>
-                       <version>4.10</version>
                         <scope>test</scope>
                 </dependency>
         </dependencies>
@@ -135,136 +129,6 @@
                 <module>oauth-enduser</module>
         </modules>
  
-       <!-- ============================================================== -->
-       <!-- Define project-wide dependencies -->
-       <!-- ============================================================== -->
-       <dependencyManagement>
-               <dependencies>
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-auth-client</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-core</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-oauth</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-
-                       <!-- Prevent Cycles in Testing  -->
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-core</artifactId>
-                               <version>${project.version}</version>
-                               <classifier>tests</classifier>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-jetty</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-cass</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-aaf</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-aaf</artifactId>
-                               <version>${project.version}</version>
-                               <classifier>full</classifier>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-cadi-client</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-env</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-rosetta</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.onap.aaf.authz</groupId>
-                               <artifactId>aaf-misc-log4j</artifactId>
-                               <version>${project.version}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-servlet</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-io</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-security</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-http</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-util</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.eclipse.jetty</groupId>
-                               <artifactId>jetty-server</artifactId>
-                               <version>${project.jettyVersion}</version>
-                       </dependency>
-
-                       <dependency>
-                           <groupId>javax.servlet</groupId>
-                           <artifactId>javax.servlet-api</artifactId>
-                               <version>3.0.1</version>
-                       </dependency>
-
-                       <dependency>
-                               <groupId>org.slf4j</groupId>
-                               <artifactId>slf4j-api</artifactId>
-                               <version>1.7.5</version>
-                       </dependency>
-               </dependencies>
-       </dependencyManagement>
  
         <!-- ============================================================== -->
         <!-- Define common plugins and make them available for all modules -->
diff --git a/conf/CA/bootstrap.sh b/conf/CA/bootstrap.sh

index 20093ee..5618124 100644 (file)
--- a/conf/CA/bootstrap.sh
+++ b/conf/CA/bootstrap.sh
@@ -8,6 +8,9 @@ chmod 700 private
  chmod 755 certs newcerts
  touch index.txt
  echo "unique_subject = no" > index.txt.attr
+if [ ! -e ./serial ]; then
+  echo '01' > ./serial
+fi
  
  NAME=aaf.bootstrap
  FQDN=$(hostname -f)
diff --git a/conf/onap.sample.signer.p12 b/conf/onap.sample.signer.p12

new file mode 100644 (file)

index 0000000..8de2123

Binary files /dev/null and b/conf/onap.sample.signer.p12 differ
diff --git a/docs/sections/architecture/security.rst b/docs/sections/architecture/security.rst

index 9324789..d180993 100644 (file)
--- a/docs/sections/architecture/security.rst
+++ b/docs/sections/architecture/security.rst
@@ -12,7 +12,7 @@ The service side is always compute process, but the client can be of two types:
   * People (via browser, or perhaps command line tool)
   * Compute process talking to another computer process.
  
-In larger systems, it is atypical to have just one connection, but will the call initiated by the initial actor will cause additional calls after it.  Thus, we demonstrate both a client call, and a subsequent call in the following:
+In larger systems, it is a typical to have just one connection, but will the call initiated by the initial actor will cause additional calls after it.  Thus, we demonstrate both a client call, and a subsequent call in the following:
  
  Thus, the essential building blocks of any networked system is made up of a caller and any subsquent calls.
  
@@ -126,7 +126,7 @@ The AAF Suite provides the following elements:
  The Organization
  ----------------
  
-AAF is only a tool to reflect the Organization it is setup for.  AAF does not, for instance, know what IDs are acceptable to a particular company.  Every Organization (or Company) will also likely have its own Certificate Authority and DNS. Most importantly, each Organzation will have a hierarchy of who is responsible for any give person or application. 
+AAF is only a tool to reflect the Organization it is setup for.  AAF does not, for instance, know what IDs are acceptable to a particular company.  Every Organization (or Company) will also likely have its own Certificate Authority and DNS. Most importantly, each Organization will have a hierarchy of who is responsible for any give person or application. 
  
   * AAF's Certman connects to the Organization's CA via SCEP protocol (Others can be created as well)
   * AAF ties into the Organizational hierarchy.  Currently, this is through a feed of IDs and relationships.
diff --git a/docs/sections/installation/Bootstrapping-AAF-Components.rst b/docs/sections/installation/Bootstrapping-AAF-Components.rst

index 2bb329d..79b2fff 100644 (file)
--- a/docs/sections/installation/Bootstrapping-AAF-Components.rst
+++ b/docs/sections/installation/Bootstrapping-AAF-Components.rst
@@ -145,7 +145,7 @@ $ cd /opt/app/osaaf/CA
  
  view README.txt for last minute info
  
-view an/or change "subject.aaf" for your needs. This format will be used on all generated certs from the CA.
+view and/or change "subject.aaf" for your needs. This format will be used on all generated certs from the CA.
  
  $ cat subject.aaf
  
diff --git a/docs/sections/installation/client_vol.rst b/docs/sections/installation/client_vol.rst

index fc33e1b..059c1d2 100644 (file)
--- a/docs/sections/installation/client_vol.rst
+++ b/docs/sections/installation/client_vol.rst
@@ -62,7 +62,7 @@ Query               Tag             Description
  =================== =============== ============
  CADI Version        VERSION         Defaults to CADI version of this
  AAF's FQDN          AAF_FQDN        PUBLIC Name for AAF. For ONAP Test, it is 'aaf-onap-test.osaaf.org'
-Deployer's FQI      DEPLOY_FQI      deployer@people.osaaf.org.  In a REAL system, this would be a person or process 
+Deployer's FQI      DEPLOY_FQI      In a REAL system, this would be a person or process. For ONAP Testing, the id is deploy@people.osaaf.org, password (see Dynamic Properties) is 'demo123456!'
  App's Root FQDN     APP_FQDN        This will show up in the Cert Subject, and should be the name given by Docker. i.e. clamp.onap
  App's FQI           APP_FQI         Fully Qualified ID given by Organization and with AAF NS/domain.  ex: clamp@clamp.onap.org 
  App's Volume        VOLUME          Volume to put the data, see above. ex: clamp_aaf
diff --git a/misc/env/pom.xml b/misc/env/pom.xml

index 841bca7..02b5055 100644 (file)
--- a/misc/env/pom.xml
+++ b/misc/env/pom.xml
@@ -33,6 +33,25 @@
         <name>AAF Misc Env</name>
         <packaging>jar</packaging>
  
+       <properties>
+               <!-- SONAR -->
+               <!-- <sonar.skip>true</sonar.skip> -->
+               <jacoco.version>0.7.7.201606060606</jacoco.version>
+               <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
+               <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
+               <!-- Default Sonar configuration -->
+               <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
+               <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
+               <!-- Note: This list should match jacoco-maven-plugin's exclusion list 
+                       below -->
+               <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
+               <nexusproxy>https://nexus.onap.org</nexusproxy>
+               <snapshotNexusPath>/content/repositories/snapshots/</snapshotNexusPath>
+               <releaseNexusPath>/content/repositories/releases/</releaseNexusPath>
+               <stagingNexusPath>/content/repositories/staging/</stagingNexusPath>
+               <sitePath>/content/sites/site/org/onap/aaf/authz/${project.artifactId}/${project.version}</sitePath>
+       </properties>
+
         <developers>
                 <developer>
                         <name>Jonathan Gathman</name>
@@ -69,25 +88,6 @@
                 </developer>
         </developers>
  
-       <properties>
-       <!--  SONAR  -->
-       <!-- <sonar.skip>true</sonar.skip> -->
-       <scijava.jvm.version>1.8</scijava.jvm.version>
-                <jacoco.version>0.7.7.201606060606</jacoco.version>
-           <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
-           <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
-           <!-- Default Sonar configuration -->
-           <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
-           <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
-           <!-- Note: This list should match jacoco-maven-plugin's exclusion list below -->
-           <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
-               <nexusproxy>https://nexus.onap.org</nexusproxy>
-               <snapshotNexusPath>/content/repositories/snapshots/</snapshotNexusPath>
-               <releaseNexusPath>/content/repositories/releases/</releaseNexusPath>
-               <stagingNexusPath>/content/repositories/staging/</stagingNexusPath>
-               <sitePath>/content/sites/site/org/onap/aaf/authz/${project.artifactId}/${project.version}</sitePath>
-       </properties>
-
         <!-- ============================================================== -->
         <!-- Define common plugins and make them available for all modules -->
         <!-- ============================================================== -->
@@ -294,30 +294,27 @@
                         <artifactId>log4j</artifactId>
                         <scope>compile</scope> <!-- Provides scope only, in case other users prefer another Logging Implementation -->
                 </dependency>
+               
                 <dependency>
                         <groupId>org.mockito</groupId>
                         <artifactId>mockito-all</artifactId>
-                       <version>1.9.5</version>
                         <scope>test</scope>
                 </dependency>
  
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-module-junit4</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-api-mockito</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
  
                 <dependency>
                         <groupId>junit</groupId>
                         <artifactId>junit</artifactId>
-                       <version>4.10</version>
                         <scope>test</scope>
                 </dependency>
         </dependencies>
diff --git a/misc/env/src/main/java/org/onap/aaf/misc/env/util/IndentPrintWriter.java b/misc/env/src/main/java/org/onap/aaf/misc/env/util/IndentPrintWriter.java

index 77ee267..203d361 100644 (file)
--- a/misc/env/src/main/java/org/onap/aaf/misc/env/util/IndentPrintWriter.java
+++ b/misc/env/src/main/java/org/onap/aaf/misc/env/util/IndentPrintWriter.java
@@ -1,22 +1,15 @@
  /**\r
- * ============LICENSE_START====================================================\r
- * org.onap.aaf\r
- * ===========================================================================\r
- * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.\r
- * ===========================================================================\r
- * Licensed under the Apache License, Version 2.0 (the "License");\r
- * you may not use this file except in compliance with the License.\r
- * You may obtain a copy of the License at\r
- * \r
- *      http://www.apache.org/licenses/LICENSE-2.0\r
- * \r
- * Unless required by applicable law or agreed to in writing, software\r
- * distributed under the License is distributed on an "AS IS" BASIS,\r
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r
- * See the License for the specific language governing permissions and\r
- * limitations under the License.\r
- * ============LICENSE_END====================================================\r
+ * ============LICENSE_START==================================================== org.onap.aaf\r
+ * =========================================================================== Copyright (c) 2018 AT&T Intellectual\r
+ * Property. All rights reserved. =========================================================================== Licensed\r
+ * under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the\r
+ * License. You may obtain a copy of the License at\r
   *\r
+ * http://www.apache.org/licenses/LICENSE-2.0\r
+ *\r
+ * Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on\r
+ * an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the\r
+ * specific language governing permissions and limitations under the License. ============LICENSE_END====================================================\r
   */\r
  \r
  package org.onap.aaf.misc.env.util;\r
@@ -27,88 +20,98 @@ import java.io.Writer;
  \r
  /**\r
   * @author Jonathan\r
- * \r
+ *\r
   *         Catch \n and indent according to current indent levels of JavaGen\r
   */\r
  public class IndentPrintWriter extends PrintWriter {\r
-       public static int INDENT = 2;\r
-       private boolean addIndent;\r
-       private int indent;\r
-       private int col;\r
-\r
-       public IndentPrintWriter(Writer out) {\r
-               super(out);\r
-               addIndent = false;\r
-               indent = col = 0;\r
-       }\r
-       \r
-       public IndentPrintWriter(OutputStream out) {\r
-               super(out);\r
-               addIndent = false;\r
-               indent = col = 0;\r
-       }\r
+\r
+    public static final int INDENT_MULTIPLIER = 2;\r
+    private boolean addIndent;\r
+    private int indent;\r
+    private int col;\r
+\r
+    public IndentPrintWriter(Writer out) {\r
+        super(out);\r
+        addIndent = false;\r
+        indent = col = 0;\r
+    }\r
+\r
+    public IndentPrintWriter(OutputStream out) {\r
+        super(out);\r
+        addIndent = false;\r
+        indent = col = 0;\r
+    }\r
  \r
  \r
+    @Override\r
      public void write(String str) {\r
-       int len = str.length();\r
-               for(int i=0;i<len;++i) {\r
-                       write((int)str.charAt(i));\r
-               }\r
+        int len = str.length();\r
+        for (int i = 0; i < len; ++i) {\r
+            write((int) str.charAt(i));\r
+        }\r
      }\r
-    \r
+\r
+    @Override\r
      public void println() {\r
-       write((int)'\n');\r
+        write((int) '\n');\r
+    }\r
+\r
+    @Override\r
+    public void write(String str, int off, int len) {\r
+        int finalLength = Math.min(str.length(), off + len);\r
+        for (int i = off; i < finalLength; ++i) {\r
+            write((int) str.charAt(i));\r
+        }\r
+    }\r
+\r
+    @Override\r
+    public void write(int b) {\r
+        if (b == '\n') {\r
+            addIndent = true;\r
+            col = 0;\r
+        } else if (addIndent) {\r
+            addIndent = false;\r
+            toIndent();\r
+        } else {\r
+            ++col;\r
+        }\r
+        super.write(b);\r
+    }\r
+\r
+    @Override\r
+    public void write(char[] buf, int off, int len) {\r
+        for (int i = 0; i < len; ++i) {\r
+            write(buf[i] + off);\r
+        }\r
+    }\r
+\r
+    public void setIndent(int size) {\r
+        indent = size;\r
+    }\r
+\r
+    public void inc() {\r
+        ++indent;\r
+    }\r
+\r
+    public void dec() {\r
+        --indent;\r
+    }\r
+\r
+    public void toCol(int idx) {\r
+        while (idx > col++) {\r
+            super.write((int) ' ');\r
+        }\r
+    }\r
+\r
+    public int getIndent() {\r
+        return indent;\r
+    }\r
+\r
+    public void toIndent() {\r
+        int end = indent * INDENT_MULTIPLIER;\r
+        for (int i = 0; i < end; ++i) {\r
+            super.write((int) ' ');\r
+        }\r
+        col = end;\r
      }\r
-       public void write(String str, int off, int len)  {\r
-               len = Math.min(str.length(),off+len);\r
-               for(int i=off;i<len;++i) {\r
-                       write((int)str.charAt(i));\r
-               }\r
-       }\r
-       public void write(int b) {\r
-               if (b == '\n') {\r
-                       addIndent = true;\r
-                       col = 0;\r
-               } else if (addIndent) {\r
-                       addIndent = false;\r
-                       toIndent();\r
-               } else {\r
-                       ++col;\r
-               }\r
-               super.write(b);\r
-       }\r
-\r
-       @Override\r
-       public void write(char[] buf, int off, int len) {\r
-               for (int i = 0; i < len; ++i)\r
-                       write(buf[i] + off);\r
-       }\r
-\r
-       public void setIndent(int size) {\r
-               indent = size;\r
-       }\r
-\r
-       public void inc() {\r
-               ++indent;\r
-       }\r
-       \r
-       public void dec() {\r
-               --indent;\r
-       }\r
-\r
-       public void toCol(int idx) {\r
-               while(idx>col++)super.write((int)' ');\r
-       }\r
-\r
-       public int getIndent() {\r
-               return indent;\r
-       }\r
-\r
-       public void toIndent() {\r
-               int end = indent * INDENT;\r
-               for (int i = 0; i < end; ++i) {\r
-                       super.write((int) ' ');\r
-               }\r
-               col = end;\r
-       }\r
  }\r
diff --git a/misc/pom.xml b/misc/pom.xml

index eb1a6e8..daae211 100644 (file)
--- a/misc/pom.xml
+++ b/misc/pom.xml
@@ -27,35 +27,10 @@
         <artifactId>parent</artifactId>
         <version>2.1.2-SNAPSHOT</version>
      </parent>
-       <groupId>org.onap.aaf.authz</groupId>
         <artifactId>miscparent</artifactId>
         <name>AAF Misc Parent</name>
-       <version>2.1.2-SNAPSHOT</version>
         <packaging>pom</packaging>
  
-       
-       <properties>
-       <!--  SONAR  -->
-       <!-- <sonar.skip>true</sonar.skip> -->
-                <jacoco.version>0.7.7.201606060606</jacoco.version>
-           <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
-           <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
-           <!-- Default Sonar configuration -->
-           <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
-           <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
-           <!-- Note: This list should match jacoco-maven-plugin's exclusion list below -->
-           <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
-               <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-               <powermock.version>1.5.1</powermock.version>
-               <nexusproxy>https://nexus.onap.org</nexusproxy>
-               <snapshotNexusPath>/content/repositories/snapshots/</snapshotNexusPath>
-               <releaseNexusPath>/content/repositories/releases/</releaseNexusPath>
-               <stagingNexusPath>/content/repositories/staging/</stagingNexusPath>
-               <sitePath>/content/sites/site/org/onap/aaf/authz/${project.artifactId}/${project.version}</sitePath>
-       </properties>
-
-
-
         <developers>
                 <developer>
                         <name>Jonathan Gathman</name>
@@ -96,26 +71,22 @@
                 <dependency>
                         <groupId>org.mockito</groupId>
                         <artifactId>mockito-all</artifactId>
-                       <version>1.9.5</version>
                         <scope>test</scope>
                 </dependency>
  
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-module-junit4</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>org.powermock</groupId>
                         <artifactId>powermock-api-mockito</artifactId>
-                       <version>${powermock.version}</version>
                         <scope>test</scope>
                 </dependency>
                 <dependency>
                         <groupId>junit</groupId>
                         <artifactId>junit</artifactId>
-                       <version>4.10</version>
                         <scope>test</scope>
                 </dependency>
         </dependencies>
@@ -319,22 +290,6 @@
                 </pluginManagement>
         </build>
  
-       
-
-       <dependencyManagement>
-               <dependencies>
-                       <dependency>
-                               <groupId>log4j</groupId>
-                               <artifactId>log4j</artifactId>
-                               <version>1.2.17</version>
-                       </dependency>
-                       <dependency>
-                               <groupId>org.slf4j</groupId>
-                               <artifactId>slf4j-log4j12</artifactId>
-                               <version>1.7.5</version>
-                       </dependency>
-               </dependencies>
-       </dependencyManagement>
  
         <distributionManagement>
                 <repository>
diff --git a/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/XGen.java b/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/XGen.java

index 632e7a8..4bb6ee2 100644 (file)
--- a/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/XGen.java
+++ b/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/XGen.java
@@ -30,7 +30,7 @@ import org.onap.aaf.misc.env.util.StringBuilderWriter;
  \r
  public class XGen<RT extends XGen<RT>> {\r
  \r
-       public static int COMMENT_COLUMN = 40;\r
+       private static final int COMMENT_COLUMN = 40;\r
         private StringBuilder backSB = new StringBuilder();\r
         private Stack<Back> backStack = new Stack<Back>();\r
         \r
@@ -112,7 +112,7 @@ public class XGen<RT extends XGen<RT>> {
         \r
                 if(pretty) {\r
                         if(mark!=null && mark.comment!=null) {\r
-                               int fi = forward.getIndent()*IndentPrintWriter.INDENT;\r
+                               int fi = forward.getIndent()*IndentPrintWriter.INDENT_MULTIPLIER;\r
                                 for(int i = fi+backSB.length();i<=COMMENT_COLUMN;++i) {\r
                                         back.append(' ');\r
                                 }\r
diff --git a/pom.xml b/pom.xml

index d206245..6310290 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -1,24 +1,17 @@
-<!--
- * ============LICENSE_START====================================================
- * org.onap.aaf
- * ===========================================================================
- * Copyright (c) 2017 AT&T Intellectual Property. All rights reserved.
- * ===========================================================================
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- *      http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- * ============LICENSE_END====================================================
- *
--->
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+<!-- * ============LICENSE_START==================================================== 
+       * org.onap.aaf * =========================================================================== 
+       * Copyright (c) 2017 AT&T Intellectual Property. All rights reserved. * =========================================================================== 
+       * Licensed under the Apache License, Version 2.0 (the "License"); * you may 
+       not use this file except in compliance with the License. * You may obtain 
+       a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * 
+       * Unless required by applicable law or agreed to in writing, software * distributed 
+       under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES 
+       OR CONDITIONS OF ANY KIND, either express or implied. * See the License for 
+       the specific language governing permissions and * limitations under the License. 
+       * ============LICENSE_END==================================================== 
+       * -->
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
         <modelVersion>4.0.0</modelVersion>
         <groupId>org.onap.aaf.authz</groupId>
@@ -30,7 +23,7 @@
         <parent>
                 <groupId>org.onap.oparent</groupId>
                 <artifactId>oparent</artifactId>
-               <version>1.1.0</version>
+               <version>1.2.0</version>
         </parent>
  
         <properties>
@@ -41,16 +34,23 @@
                 <sitePath>/content/sites/site/org/onap/aaf/authz/${project.artifactId}/${project.version}</sitePath>
  
                 <maven.test.failure.ignore>false</maven.test.failure.ignore>
-               <!--  SONAR  -->
+               <!-- SONAR -->
                 <jacoco.version>0.7.7.201606060606</jacoco.version>
                 <sonar-jacoco-listeners.version>3.2</sonar-jacoco-listeners.version>
                 <sonar.core.codeCoveragePlugin>jacoco</sonar.core.codeCoveragePlugin>
                 <!-- Default Sonar configuration -->
                 <sonar.jacoco.reportPaths>target/code-coverage/jacoco-ut.exec</sonar.jacoco.reportPaths>
                 <sonar.jacoco.itReportPaths>target/code-coverage/jacoco-it.exec</sonar.jacoco.itReportPaths>
-               <!-- Note: This list should match jacoco-maven-plugin's exclusion list below -->
+               <!-- Note: This list should match jacoco-maven-plugin's exclusion list 
+                       below -->
                 <sonar.exclusions>**/gen/**,**/generated-sources/**,**/yang-gen**,**/pax/**</sonar.exclusions>
                 <nexusproxy>https://nexus.onap.org</nexusproxy>
+               <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+               <powermock.version>1.5.1</powermock.version>
+               <mockito.version>1.9.5</mockito.version>
+               <project.interfaceVersion>${project.version}</project.interfaceVersion>
+               <project.jettyVersion>9.4.11.v20180605</project.jettyVersion>
+
         </properties>
         <build>
                 <plugins>
@@ -142,6 +142,247 @@
                 <module>auth</module>
         </modules>
  
+       <dependencyManagement>
+               <dependencies>
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-misc-env</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-misc-log4j</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-misc-rosetta</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-misc-xgen</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       
+
+                       
+
+                       
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-client</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-core</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-cass</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-cmd</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-oauth</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-auth-deforg</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-cadi-core</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+                       
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-cadi-client</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+                       
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-cadi-aaf</artifactId>
+                               <version>${project.version}</version>
+                               <exclusions>
+                                       <exclusion>
+                                               <groupId>org.apache.cassandra</groupId>
+                                               <artifactId>cassandra-all</artifactId>
+                                       </exclusion>
+                               </exclusions>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-cadi-jetty</artifactId>
+                               <version>${project.version}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.onap.aaf.authz</groupId>
+                               <artifactId>aaf-cadi-cass</artifactId>
+                               <version>${project.version}</version>
+                       </dependency><dependency>
+                               <groupId>javax.servlet</groupId>
+                               <artifactId>javax.servlet-api</artifactId>
+                               <version>3.0.1</version>
+                       </dependency><dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-servlet</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency><dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-server</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-io</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-security</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-http</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.eclipse.jetty</groupId>
+                               <artifactId>jetty-util</artifactId>
+                               <version>${project.jettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.slf4j</groupId>
+                               <artifactId>slf4j-api</artifactId>
+                               <version>1.7.5</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>com.datastax.cassandra</groupId>
+                               <artifactId>cassandra-all</artifactId>
+                               <version>${project.cassVersion}</version>
+                               <exclusions>
+                                       <exclusion>
+                                               <groupId>org.slf4j</groupId>
+                                               <artifactId>slf4j-log4j12</artifactId>
+                                       </exclusion>
+                                       <exclusion>
+                                               <groupId>log4j</groupId>
+                                               <artifactId>log4j</artifactId>
+                                       </exclusion>
+                               </exclusions>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>com.datastax.cassandra</groupId>
+                               <artifactId>cassandra-driver-core</artifactId>
+                               <version>${project.cassVersion}</version>
+                               <exclusions>
+                                       <exclusion>
+                                               <groupId>org.slf4j</groupId>
+                                               <artifactId>slf4j-log4j12</artifactId>
+                                       </exclusion>
+                                       <exclusion>
+                                               <groupId>log4j</groupId>
+                                               <artifactId>log4j</artifactId>
+                                       </exclusion>
+                                       <exclusion>
+                                               <groupId>com.google.guava</groupId>
+                                               <artifactId>guava</artifactId>
+                                       </exclusion>
+                               </exclusions>
+                       </dependency>
+                       <!-- Note: Ensure DataStax uses more up-to-date netty handler -->
+                       <dependency>
+                               <groupId>io.netty</groupId>
+                               <artifactId>netty-handler</artifactId>
+                               <version>${project.nettyVersion}</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.slf4j</groupId>
+                               <artifactId>slf4j-log4j12</artifactId>
+                               <version>1.7.5</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>javax.mail</groupId>
+                               <artifactId>mail</artifactId>
+                               <version>1.4.7</version>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.mockito</groupId>
+                               <artifactId>mockito-all</artifactId>
+                               <version>${mockito.version}</version>
+                               <scope>test</scope>
+                       </dependency>
+
+                       <dependency>
+                               <groupId>org.powermock</groupId>
+                               <artifactId>powermock-module-junit4</artifactId>
+                               <version>${powermock.version}</version>
+                               <scope>test</scope>
+                       </dependency>
+                       
+                       <dependency>
+                               <groupId>org.powermock</groupId>
+                               <artifactId>powermock-api-mockito</artifactId>
+                               <version>${powermock.version}</version>
+                               <scope>test</scope>
+                       </dependency>
+                       
+                       <dependency>
+                               <groupId>log4j</groupId>
+                               <artifactId>log4j</artifactId>
+                               <version>1.2.17</version>
+                       </dependency>
+                       
+                       <dependency>
+                               <groupId>junit</groupId>
+                               <artifactId>junit</artifactId>
+                               <version>4.10</version>
+                               <scope>test</scope>
+                       </dependency>
+                       
+               </dependencies>
+       </dependencyManagement>
+
+
+
+
+
         <distributionManagement>
                 <repository>
                         <id>ecomp-releases</id>
author	Jonathan Gathman <jonathan.gathman@att.com>
	Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)
committer	Gerrit Code Review <gerrit@onap.org>
	Thu, 6 Sep 2018 13:58:40 +0000 (13:58 +0000)
auth/auth-batch/pom.xml		patch \| blob \| history
auth/auth-batch/src/main/java/org/onap/aaf/auth/helpers/Perm.java		patch \| blob \| history
auth/auth-batch/src/main/java/org/onap/aaf/auth/javax/JavaxMailer.java	[new file with mode: 0644]	patch \| blob
auth/auth-cass/pom.xml		patch \| blob \| history
auth/auth-certman/src/test/java/org/onap/aaf/auth/cm/test/CertmanTest.java		patch \| blob \| history
auth/auth-core/src/main/java/org/onap/aaf/auth/org/Mailer.java	[new file with mode: 0644]	patch \| blob
auth/auth-core/src/main/java/org/onap/aaf/auth/org/OrganizationFactory.java		patch \| blob \| history
auth/auth-core/src/main/java/org/onap/aaf/auth/rserv/CachingFileAccess.java		patch \| blob \| history
auth/auth-deforg/pom.xml		patch \| blob \| history
auth/auth-deforg/src/main/java/org/onap/aaf/org/DefaultOrg.java		patch \| blob \| history
auth/auth-fs/src/test/java/org/onap/aaf/auth/fs/test/JU_AAF_FS.java		patch \| blob \| history
auth/auth-oauth/src/main/java/org/onap/aaf/auth/oauth/OAuth2FormHttpTafResp.java		patch \| blob \| history
auth/docker/Dockerfile.client		patch \| blob \| history
auth/docker/Dockerfile.config		patch \| blob \| history
auth/docker/Dockerfile.core		patch \| blob \| history
auth/pom.xml		patch \| blob \| history
cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/TestConnectivity.java		patch \| blob \| history
cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFCon.java		patch \| blob \| history
cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFConHttp.java		patch \| blob \| history
cadi/aaf/src/main/java/org/onap/aaf/cadi/aaf/v2_0/AAFLurPerm.java		patch \| blob \| history
cadi/aaf/src/main/java/org/onap/aaf/cadi/oauth/OAuth2HttpTafResp.java		patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/test/TestHClient.java		patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/cadi/aaf/v2_0/test/JU_AAFLocator.java		patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/example/JU_ExampleAuthCheck.java	[deleted file]	patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/example/JU_X509Test.java	[deleted file]	patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/stillNeed/ExampleAuthCheck.java	[deleted file]	patch \| blob \| history
cadi/aaf/src/test/java/org/onap/aaf/stillNeed/X509Test.java	[deleted file]	patch \| blob \| history
cadi/client/src/main/java/org/onap/aaf/cadi/http/HSecurityInfoInit.java	[moved from cadi/aaf/src/test/java/org/onap/aaf/stillNeed/CadiTest.java with 51% similarity]	patch \| blob \| history
cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HBasicAuthSS.java		patch \| blob \| history
cadi/client/src/test/java/org/onap/aaf/cadi/http/test/JU_HX509SS.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/CadiWrap.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/PropAccess.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoC.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/config/SecurityInfoInit.java	[new file with mode: 0644]	patch \| blob
cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiFilter.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/filter/CadiHTTPManip.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/AbsTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/HttpEpiTaf.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/LoginPageTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/NullTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/PuntTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/TafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustNotTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/TrustTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/basic/BasicHttpTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509HttpTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/cert/X509Taf.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/taf/dos/DenialOfServiceTafResp.java		patch \| blob \| history
cadi/core/src/main/java/org/onap/aaf/cadi/util/Timing.java	[moved from cadi/aaf/src/test/java/org/onap/aaf/stillNeed/TestPrincipal.java with 79% similarity]	patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/config/test/JU_SecurityInfoC.java		patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/lur/test/JU_LocalLur.java		patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/taf/dos/test/JU_DenialOfServiceTaf.java		patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_AbsTafResp.java		patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_EpiTaf.java		patch \| blob \| history
cadi/core/src/test/java/org/onap/aaf/cadi/taf/test/JU_PuntTafResp.java		patch \| blob \| history
cadi/pom.xml		patch \| blob \| history
conf/CA/bootstrap.sh		patch \| blob \| history
conf/onap.sample.signer.p12	[new file with mode: 0644]	patch \| blob
docs/sections/architecture/security.rst		patch \| blob \| history
docs/sections/installation/Bootstrapping-AAF-Components.rst		patch \| blob \| history
docs/sections/installation/client_vol.rst		patch \| blob \| history
misc/env/pom.xml		patch \| blob \| history
misc/env/src/main/java/org/onap/aaf/misc/env/util/IndentPrintWriter.java		patch \| blob \| history
misc/pom.xml		patch \| blob \| history
misc/xgen/src/main/java/org/onap/aaf/misc/xgen/XGen.java		patch \| blob \| history
pom.xml		patch \| blob \| history