Example 46 with AccountBO
use of com.nexblocks.authguard.service.model.AccountBO in project AuthGuard by AuthGuard.
the class JwtTokenVerifierTest method validateWithJti.
@Test
void validateWithJti() {
final StrategyConfig strategyConfig = strategyConfig(true);
final JwtConfig jwtConfig = jwtConfig();
final JwtTokenVerifier jwtTokenVerifier = newVerifierInstance(strategyConfig);
final String jti = UUID.randomUUID().toString();
Mockito.when(jtiProvider.next()).thenReturn(jti);
Mockito.when(jtiProvider.validate(jti)).thenReturn(true);
final AccountBO account = RANDOM.nextObject(AccountBO.class);
final AuthResponseBO tokens = generateToken(jwtConfig, account, jti);
final Either<Exception, DecodedJWT> validatedToken = jwtTokenVerifier.verify(tokens.getToken().toString());
assertThat(validatedToken.isRight()).isTrue();
verifyToken(validatedToken.get(), account.getId(), jti, null, null);
}
Also used :
AccountBO(com.nexblocks.authguard.service.model.AccountBO)
JwtConfig(com.nexblocks.authguard.service.config.JwtConfig)
StrategyConfig(com.nexblocks.authguard.service.config.StrategyConfig)
AuthResponseBO(com.nexblocks.authguard.service.model.AuthResponseBO)
DecodedJWT(com.auth0.jwt.interfaces.DecodedJWT)
ServiceAuthorizationException(com.nexblocks.authguard.service.exceptions.ServiceAuthorizationException)
Test(org.junit.jupiter.api.Test)
Example 47 with AccountBO
use of com.nexblocks.authguard.service.model.AccountBO in project AuthGuard by AuthGuard.
the class RefreshToAccessTokenTest method exchangeWithRestrictions.
@Test
void exchangeWithRestrictions() {
// data
final String accountId = "account";
final String refreshToken = "refresh_token";
final String restrictionPermission = "permission.read";
final AuthRequestBO authRequest = AuthRequestBO.builder().token(refreshToken).build();
final AccountTokenDO accountToken = AccountTokenDO.builder().token(refreshToken).associatedAccountId(accountId).expiresAt(OffsetDateTime.now().plusMinutes(1)).tokenRestrictions(TokenRestrictionsDO.builder().permissions(Collections.singleton(restrictionPermission)).scopes(Collections.emptySet()).build()).build();
final AccountBO account = AccountBO.builder().id(accountId).build();
final AuthResponseBO newTokens = AuthResponseBO.builder().token("new_token").refreshToken("new_refresh_token").build();
// mock
Mockito.when(accountTokensRepository.getByToken(authRequest.getToken())).thenReturn(CompletableFuture.completedFuture(Optional.of(accountToken)));
Mockito.when(accountsService.getById(accountId)).thenReturn(Optional.of(account));
Mockito.when(accessTokenProvider.generateToken(account, TokenRestrictionsBO.builder().addPermissions(restrictionPermission).build())).thenReturn(newTokens);
// do
final Either<Exception, AuthResponseBO> actual = refreshToAccessToken.exchange(authRequest);
// assert
assertThat(actual.isRight()).isTrue();
assertThat(actual.right().get()).isEqualTo(newTokens);
Mockito.verify(accountTokensRepository).deleteToken(refreshToken);
}
Also used :
AccountBO(com.nexblocks.authguard.service.model.AccountBO)
AccountTokenDO(com.nexblocks.authguard.dal.model.AccountTokenDO)
AuthResponseBO(com.nexblocks.authguard.service.model.AuthResponseBO)
AuthRequestBO(com.nexblocks.authguard.service.model.AuthRequestBO)
ServiceAuthorizationException(com.nexblocks.authguard.service.exceptions.ServiceAuthorizationException)
Test(org.junit.jupiter.api.Test)
Example 48 with AccountBO
use of com.nexblocks.authguard.service.model.AccountBO in project AuthGuard by AuthGuard.
the class AccountsApiTest method createWithCredentialsAllExist.
@Test
void createWithCredentialsAllExist() {
final CreateAccountRequestDTO accountRequest = CreateAccountRequestDTO.builder().externalId("external").email(AccountEmailDTO.builder().email("email@server.com").build()).domain("main").build();
final CreateCredentialsRequestDTO credentialsRequest = CreateCredentialsRequestDTO.builder().plainPassword("password").addIdentifiers(UserIdentifierDTO.builder().identifier("username").type(UserIdentifier.Type.USERNAME).build()).build();
final CreateCompleteAccountRequestDTO completeRequest = CreateCompleteAccountRequestDTO.builder().account(accountRequest).credentials(credentialsRequest).build();
final RequestContextBO requestContext = RequestContextBO.builder().idempotentKey(UUID.randomUUID().toString()).build();
final AccountBO accountBO = mapper().toBO(accountRequest);
final AccountBO accountResponse = accountBO.withId(UUID.randomUUID().toString());
final CredentialsBO credentialsBO = mapper().toBO(credentialsRequest).withAccountId(accountResponse.getId());
final CredentialsBO credentialsResponse = credentialsBO.withId(UUID.randomUUID().toString());
Mockito.when(accountsService.create(Mockito.eq(accountBO), Mockito.any())).thenThrow(new CompletionException(new IdempotencyException(IdempotentRecordBO.builder().entityId(accountResponse.getId()).build())));
Mockito.when(credentialsService.create(Mockito.eq(credentialsBO), Mockito.any())).thenThrow(new CompletionException(new IdempotencyException(IdempotentRecordBO.builder().entityId(credentialsResponse.getId()).build())));
LOG.info("Request {}", accountRequest);
final ValidatableResponse httpResponse = given().body(completeRequest).contentType(ContentType.JSON).header(IdempotencyHeader.HEADER_NAME, requestContext.getIdempotentKey()).post(url("complete")).then().statusCode(201).contentType(ContentType.JSON);
final CreateCompleteAccountResponseDTO response = httpResponse.extract().response().getBody().as(CreateCompleteAccountResponseDTO.class);
assertThat(response.getAccountId()).isEqualTo(accountResponse.getId());
assertThat(response.getCredentialsId()).isEqualTo(credentialsResponse.getId());
}
Also used :
AccountBO(com.nexblocks.authguard.service.model.AccountBO)
CredentialsBO(com.nexblocks.authguard.service.model.CredentialsBO)
ValidatableResponse(io.restassured.response.ValidatableResponse)
RequestContextBO(com.nexblocks.authguard.service.model.RequestContextBO)
CreateAccountRequestDTO(com.nexblocks.authguard.api.dto.requests.CreateAccountRequestDTO)
CompletionException(java.util.concurrent.CompletionException)
IdempotencyException(com.nexblocks.authguard.service.exceptions.IdempotencyException)
CreateCompleteAccountResponseDTO(com.nexblocks.authguard.api.dto.requests.CreateCompleteAccountResponseDTO)
CreateCompleteAccountRequestDTO(com.nexblocks.authguard.api.dto.requests.CreateCompleteAccountRequestDTO)
CreateCredentialsRequestDTO(com.nexblocks.authguard.api.dto.requests.CreateCredentialsRequestDTO)
Test(org.junit.jupiter.api.Test)
Example 49 with AccountBO
use of com.nexblocks.authguard.service.model.AccountBO in project AuthGuard by AuthGuard.
the class AuthorizationHandler method populateBasicActor.
private void populateBasicActor(final Context context, final String base64Credentials) {
final Either<Exception, AccountBO> actorAccount = basicAuth.authenticateAndGetAccount(base64Credentials);
if (actorAccount.isRight()) {
LOG.info("Authenticated actor {} with basic credentials", actorAccount.get().getId());
context.attribute("actor", actorAccount.get());
} else {
LOG.info("Failed to authenticate actor with basic credentials");
context.status(401).json(new Error("401", "Failed to authenticate with basic scheme"));
}
}
Also used :
AccountBO(com.nexblocks.authguard.service.model.AccountBO)
Error(com.nexblocks.authguard.api.dto.entities.Error)
ServiceException(com.nexblocks.authguard.service.exceptions.ServiceException)
Example 50 with AccountBO
use of com.nexblocks.authguard.service.model.AccountBO in project AuthGuard by AuthGuard.
the class UnboundLdapServiceTest method authenticate.
@Test
void authenticate() {
final AccountBO user = ldapService.authenticate("bob", "bobspassword");
assertThat(user).isNotNull();
}Aggregations
AccountBO (com.nexblocks.authguard.service.model.AccountBO)55
Test (org.junit.jupiter.api.Test)43
AccountTokenDO (com.nexblocks.authguard.dal.model.AccountTokenDO)21
Message (com.nexblocks.authguard.emb.model.Message)15
AuthResponseBO (com.nexblocks.authguard.service.model.AuthResponseBO)15
OtpMessageBody (com.nexblocks.authguard.basic.otp.OtpMessageBody)8
PasswordlessMessageBody (com.nexblocks.authguard.basic.passwordless.PasswordlessMessageBody)8
OneTimePasswordBO (com.nexblocks.authguard.service.model.OneTimePasswordBO)8
ServiceAuthorizationException (com.nexblocks.authguard.service.exceptions.ServiceAuthorizationException)7
DecodedJWT (com.auth0.jwt.interfaces.DecodedJWT)6
ImmutableTextMessage (com.nexblocks.authguard.external.sms.ImmutableTextMessage)6
RequestContextBO (com.nexblocks.authguard.service.model.RequestContextBO)6
ImmutableEmail (com.nexblocks.authguard.external.email.ImmutableEmail)5
JwtConfig (com.nexblocks.authguard.service.config.JwtConfig)5
StrategyConfig (com.nexblocks.authguard.service.config.StrategyConfig)5
ServiceException (com.nexblocks.authguard.service.exceptions.ServiceException)5
AuthRequestBO (com.nexblocks.authguard.service.model.AuthRequestBO)5
CreateAccountRequestDTO (com.nexblocks.authguard.api.dto.requests.CreateAccountRequestDTO)4
OtpConfig (com.nexblocks.authguard.basic.config.OtpConfig)4
CreateCompleteAccountRequestDTO (com.nexblocks.authguard.api.dto.requests.CreateCompleteAccountRequestDTO)3
