use of org.springframework.security.oauth.provider.filter.ProtectedResourceProcessingFilter in project spring-security-oauth by spring-projects.
the class ProtectedResourceProcessingFilterTests method testOnValidSignature.
/**
* test onValidSignature
*/
@Test
public void testOnValidSignature() throws Exception {
ProtectedResourceProcessingFilter filter = new ProtectedResourceProcessingFilter();
HttpServletRequest request = mock(HttpServletRequest.class);
HttpServletResponse response = mock(HttpServletResponse.class);
FilterChain chain = mock(FilterChain.class);
ConsumerCredentials creds = new ConsumerCredentials("key", "sig", "meth", "base", "tok");
ConsumerAuthentication authentication = new ConsumerAuthentication(mock(ConsumerDetails.class), creds);
authentication.setAuthenticated(true);
SecurityContextHolder.getContext().setAuthentication(authentication);
OAuthProviderTokenServices tokenServices = mock(OAuthProviderTokenServices.class);
OAuthAccessProviderToken token = mock(OAuthAccessProviderToken.class);
filter.setTokenServices(tokenServices);
when(tokenServices.getToken("tok")).thenReturn(token);
when(token.isAccessToken()).thenReturn(true);
Authentication userAuthentication = mock(Authentication.class);
when(token.getUserAuthentication()).thenReturn(userAuthentication);
filter.onValidSignature(request, response, chain);
verify(chain).doFilter(request, response);
assertSame(userAuthentication, SecurityContextHolder.getContext().getAuthentication());
SecurityContextHolder.getContext().setAuthentication(null);
}
Aggregations