Example 1 with Group
use of org.apache.jackrabbit.api.security.user.Group in project jackrabbit-oak by apache.
the class RemoveMembersTest method beforeSuite.
@Override
public void beforeSuite() throws Exception {
super.beforeSuite();
Session s = loginAdministrative();
try {
UserManager userManager = ((JackrabbitSession) s).getUserManager();
createUsers(userManager);
for (int i = 0; i <= GROUP_CNT; i++) {
Group g = userManager.createGroup(new PrincipalImpl(GROUP + i), REL_TEST_PATH);
groupPaths.add(g.getPath());
List<String> ids = new ArrayList<String>();
for (int j = 0; j <= numberOfMembers; j++) {
ids.add(USER + j);
}
g.addMembers(ids.toArray(new String[ids.size()]));
s.save();
}
} finally {
s.logout();
}
System.out.println("setup done");
}
Also used :
Group(org.apache.jackrabbit.api.security.user.Group)
UserManager(org.apache.jackrabbit.api.security.user.UserManager)
ArrayList(java.util.ArrayList)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Session(javax.jcr.Session)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
Example 2 with Group
use of org.apache.jackrabbit.api.security.user.Group in project jackrabbit-oak by apache.
the class TokenProviderImplTest method testCreateTokenFromGroupId.
@Test
public void testCreateTokenFromGroupId() throws Exception {
Group gr = getUserManager(root).createGroup("groupId");
assertNull(tokenProvider.createToken("groupId", Collections.<String, Object>emptyMap()));
}Example 3 with Group
use of org.apache.jackrabbit.api.security.user.Group in project jackrabbit-oak by apache.
the class TokenProviderImplTest method testGetTokenInfoFromGroup.
@Test
public void testGetTokenInfoFromGroup() throws Exception {
Group gr = getUserManager(root).createGroup("gr");
NodeUtil groupNode = new NodeUtil(root.getTree(gr.getPath()));
NodeUtil parent = groupNode.addChild(TokenConstants.TOKENS_NODE_NAME, TokenConstants.TOKENS_NT_NAME);
NodeUtil tokenNode = parent.addChild("tokenName", TokenConstants.TOKEN_NT_NAME);
String tokenUUID = UUID.randomUUID().toString();
tokenNode.setString(JcrConstants.JCR_UUID, tokenUUID);
String token = tokenUUID + "_generatedKey";
tokenNode.setString(TokenConstants.TOKEN_ATTRIBUTE_KEY, token);
assertNull(tokenProvider.getTokenInfo(token));
}Example 4 with Group
use of org.apache.jackrabbit.api.security.user.Group in project jackrabbit-oak by apache.
the class ExternalLoginModuleAutoMembershipTest method testLoginAfterSyncSetup1.
@Test
public void testLoginAfterSyncSetup1() throws Exception {
setup1.sync(USER_ID, false);
ContentSession cs = null;
try {
cs = login(new SimpleCredentials(USER_ID, new char[0]));
// the login must set the configured + existing auto-membership principals
// to the subject; non-existing auto-membership entries must be ignored.
Set<Principal> principals = cs.getAuthInfo().getPrincipals();
assertTrue(principals.contains(setup1.gr.getPrincipal()));
assertFalse(principals.contains(new PrincipalImpl(NON_EXISTING_NAME)));
assertFalse(principals.contains(setup2.gr.getPrincipal()));
assertFalse(principals.contains(setup3.gr.getPrincipal()));
// however, the existing auto-membership group must _not_ have changed
// and the test user must not be a stored member of this group.
root.refresh();
UserManager uMgr = getUserManager(root);
User user = uMgr.getAuthorizable(USER_ID, User.class);
Group gr = uMgr.getAuthorizable(setup1.gr.getID(), Group.class);
assertFalse(gr.isDeclaredMember(user));
assertFalse(gr.isMember(user));
} finally {
options.clear();
if (cs != null) {
cs.close();
}
}
}
Also used :
SimpleCredentials(javax.jcr.SimpleCredentials)
Group(org.apache.jackrabbit.api.security.user.Group)
User(org.apache.jackrabbit.api.security.user.User)
UserManager(org.apache.jackrabbit.api.security.user.UserManager)
ContentSession(org.apache.jackrabbit.oak.api.ContentSession)
EveryonePrincipal(org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)
Principal(java.security.Principal)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Test(org.junit.Test)
Example 5 with Group
use of org.apache.jackrabbit.api.security.user.Group in project jackrabbit-oak by apache.
the class DefaultSyncContextTest method testLostMembershipDifferentIDP.
@Test
public void testLostMembershipDifferentIDP() throws Exception {
// create a group in the repository which is marked as being external
// and associated with another IPD.
Group gr = createTestGroup();
setExternalID(gr, "differentIDP");
// sync an external user from the IDP into the repo and make it member
// of the test group
SyncResult result = syncCtx.sync(idp.listUsers().next());
User user = userManager.getAuthorizable(result.getIdentity().getId(), User.class);
gr.addMember(user);
root.commit();
// enforce synchronization of the user and it's group membership
syncCtx.setForceUserSync(true);
syncConfig.user().setMembershipExpirationTime(-1);
syncConfig.user().setMembershipNestingDepth(1);
assertEquals(SyncResult.Status.UPDATE, syncCtx.sync(user.getID()).getStatus());
// since the group is not associated with the test-IDP the group-membership
// must NOT be modified during the sync.
assertTrue(gr.isDeclaredMember(user));
}
Also used :
Group(org.apache.jackrabbit.api.security.user.Group)
ExternalGroup(org.apache.jackrabbit.oak.spi.security.authentication.external.ExternalGroup)
User(org.apache.jackrabbit.api.security.user.User)
ExternalUser(org.apache.jackrabbit.oak.spi.security.authentication.external.ExternalUser)
SyncResult(org.apache.jackrabbit.oak.spi.security.authentication.external.SyncResult)
AbstractExternalAuthTest(org.apache.jackrabbit.oak.spi.security.authentication.external.AbstractExternalAuthTest)
Test(org.junit.Test)
Aggregations
Group (org.apache.jackrabbit.api.security.user.Group)391
Test (org.junit.Test)205
Authorizable (org.apache.jackrabbit.api.security.user.Authorizable)119
User (org.apache.jackrabbit.api.security.user.User)119
UserManager (org.apache.jackrabbit.api.security.user.UserManager)87
Principal (java.security.Principal)71
RepositoryException (javax.jcr.RepositoryException)53
AbstractSecurityTest (org.apache.jackrabbit.oak.AbstractSecurityTest)35
ExternalGroup (org.apache.jackrabbit.oak.spi.security.authentication.external.ExternalGroup)33
ArrayList (java.util.ArrayList)31
Session (javax.jcr.Session)29
JackrabbitSession (org.apache.jackrabbit.api.JackrabbitSession)27
EveryonePrincipal (org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)26
AbstractExternalAuthTest (org.apache.jackrabbit.oak.spi.security.authentication.external.AbstractExternalAuthTest)22
PrincipalImpl (org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)22
HashSet (java.util.HashSet)21
Privilege (javax.jcr.security.Privilege)21
EveryonePrincipal (org.apache.jackrabbit.core.security.principal.EveryonePrincipal)21
Query (org.apache.jackrabbit.api.security.user.Query)19
TestPrincipal (org.apache.jackrabbit.core.security.TestPrincipal)18
