use of com.baidu.hugegraph.structure.auth.TokenPayload in project incubator-hugegraph-toolchain by apache.
the class AuthManagerTest method testAuth.
@Test
public void testAuth() {
User user = new User();
user.name("bob");
user.password("123456");
user = auth().createUser(user);
Group group = new Group();
group.name("managers");
group = auth().createGroup(group);
Target gremlin = new Target();
gremlin.name("gremlin");
gremlin.graph("hugegraph");
gremlin.url("127.0.0.1:8080");
gremlin.resources(new HugeResource(HugeResourceType.GREMLIN));
gremlin = auth().createTarget(gremlin);
Target task = new Target();
task.name("task");
task.graph("hugegraph");
task.url("127.0.0.1:8080");
task.resources(new HugeResource(HugeResourceType.TASK));
task = auth().createTarget(task);
Belong belong = new Belong();
belong.user(user);
belong.group(group);
belong = auth().createBelong(belong);
Access access1 = new Access();
access1.group(group);
access1.target(gremlin);
access1.permission(HugePermission.EXECUTE);
access1 = auth().createAccess(access1);
Access access2 = new Access();
access2.group(group);
access2.target(task);
access2.permission(HugePermission.READ);
access2 = auth().createAccess(access2);
Project project1 = new Project("test");
project1 = auth().createProject(project1);
Assert.assertEquals("test", project1.name());
Project project2 = new Project("test2");
project2 = auth().createProject(project2);
Assert.assertEquals("test2", project2.name());
Project newProject1 = auth().getProject(project1);
Assert.assertEquals(newProject1.id(), project1.id());
Assert.assertTrue(CollectionUtils.isEmpty(newProject1.graphs()));
List<Project> projects = auth().listProjects();
Assert.assertNotNull(projects);
Assert.assertEquals(2, projects.size());
Set<String> graphs = ImmutableSet.of("graph1", "graph2");
newProject1 = auth().projectAddGraphs(project1, graphs);
Assert.assertNotNull(newProject1);
Assert.assertEquals(graphs, newProject1.graphs());
graphs = ImmutableSet.of("graph2");
newProject1 = auth().projectRemoveGraphs(project1, ImmutableSet.of("graph1"));
Assert.assertNotNull(newProject1);
Assert.assertEquals(graphs, newProject1.graphs());
Object project1Id = project1.id();
project1 = new Project(project1Id);
project1.description("test description");
newProject1 = auth().updateProject(project1);
Assert.assertEquals(newProject1.description(), project1.description());
auth().deleteProject(project2);
projects.remove(project2);
List<Project> newProjects = auth().listProjects();
Assert.assertEquals(newProjects, projects);
UserRole role = auth().getUserRole(user);
String r = "{\"roles\":{\"hugegraph\":" + "{\"READ\":[{\"type\":\"TASK\",\"label\":\"*\",\"properties\":null}]," + "\"EXECUTE\":[{\"type\":\"GREMLIN\",\"label\":\"*\",\"properties\":null}]}}}";
Assert.assertEquals(r, role.toString());
Login login = new Login();
login.name("bob");
login.password("123456");
LoginResult result = auth().login(login);
String token = result.token();
HugeClient client = baseClient();
client.setAuthContext("Bearer " + token);
TokenPayload payload = auth().verifyToken();
Assert.assertEquals("bob", payload.username());
Assert.assertEquals(user.id(), payload.userId());
auth().logout();
client.resetAuthContext();
}
use of com.baidu.hugegraph.structure.auth.TokenPayload in project incubator-hugegraph-toolchain by apache.
the class TokenApiTest method testVerify.
@Test
public void testVerify() {
User user1 = new User();
user1.name("user1");
user1.password("p1");
User user = userAPI.create(user1);
Login login = new Login();
login.name("user1");
login.password("p1");
LoginResult result = loginAPI.login(login);
Assert.assertNotNull(result);
Assert.assertNotNull(result.token());
// Client will set Authentication Header use Basic
Assert.assertThrows(ServerException.class, () -> {
tokenAPI.verifyToken();
}, e -> {
Assert.assertContains("Only HTTP Bearer authentication is supported", e.getMessage());
});
String token = result.token();
RestClient client = Whitebox.getInternalState(tokenAPI, "client");
client.setAuthContext("Bearer " + token);
TokenPayload payload = tokenAPI.verifyToken();
Assert.assertEquals("user1", payload.username());
Assert.assertEquals(user.id(), payload.userId());
client.setAuthContext("Bearer qweqwaasa");
Assert.assertThrows(ServerException.class, () -> {
tokenAPI.verifyToken();
}, e -> {
Assert.assertContains("Invalid token", e.getMessage());
});
RestClient client2 = Whitebox.getInternalState(logoutAPI, "client");
Assert.assertThrows(ServerException.class, () -> {
logoutAPI.logout();
}, e -> {
Assert.assertContains("Only HTTP Bearer authentication is supported", e.getMessage());
});
client2.setAuthContext("Bearer " + token);
logoutAPI.logout();
}
Aggregations