Example 91 with Privilege
use of com.sun.identity.entitlement.Privilege in project OpenAM by OpenRock.
the class JsonPolicyParserTest method shouldNotAllowSettingLastModifiedDate.
@Test
public void shouldNotAllowSettingLastModifiedDate() throws Exception {
// Given
JsonValue content = buildJson(field("lastModifiedDate", "2014-01-01T00:00:00.000Z"));
// When
Privilege result = parser.parsePolicy(POLICY_NAME, content);
// Then
assertThat(result.getLastModifiedDate()).isEqualTo(0);
}
Also used :
JsonValue(org.forgerock.json.JsonValue)
OpenSSOPrivilege(com.sun.identity.entitlement.opensso.OpenSSOPrivilege)
Privilege(com.sun.identity.entitlement.Privilege)
Test(org.testng.annotations.Test)
Example 92 with Privilege
use of com.sun.identity.entitlement.Privilege in project OpenAM by OpenRock.
the class PrivilegePolicyStoreTest method shouldSendAllMatchingPoliciesToQueryHandler.
@Test
public void shouldSendAllMatchingPoliciesToQueryHandler() throws Exception {
// Given
QueryRequest request = mockQueryRequest(QueryFilter.alwaysTrue());
List<Privilege> policies = Arrays.<Privilege>asList(new StubPrivilege("one"), new StubPrivilege("two"), new StubPrivilege("three"));
given(mockManager.search(anySetOf(SearchFilter.class))).willReturn(policies);
// When
List<Privilege> result = testStore.query(request);
// Then
assertThat(result).isEqualTo(policies);
}
Also used :
QueryRequest(org.forgerock.json.resource.QueryRequest)
SearchFilter(com.sun.identity.entitlement.util.SearchFilter)
Privilege(com.sun.identity.entitlement.Privilege)
Test(org.testng.annotations.Test)
Example 93 with Privilege
use of com.sun.identity.entitlement.Privilege in project OpenAM by OpenRock.
the class PrivilegePolicyStoreTest method shouldAddPoliciesToPrivilegeManager.
@Test
public void shouldAddPoliciesToPrivilegeManager() throws Exception {
// Given
Privilege policy = new StubPrivilege();
// When
Privilege response = testStore.create(policy);
// Then
verify(mockManager).add(policy);
assertThat(response).isSameAs(policy);
}Example 94 with Privilege
use of com.sun.identity.entitlement.Privilege in project OpenAM by OpenRock.
the class PrivilegeUtilsTest method testPrivilegeToXACMLPolicy.
@Test
public void testPrivilegeToXACMLPolicy() throws Exception {
try {
UnittestLog.logMessage("PrivilegeUtils.testPrivilegeToXACMLPolicy():" + " entered");
Map<String, Boolean> actionValues = new HashMap<String, Boolean>();
actionValues.put("GET", Boolean.TRUE);
actionValues.put("POST", Boolean.FALSE);
// The port is required for passing equals test
// opensso policy would add default port if port not specified
String resourceName = "http://www.sun.com:80";
Entitlement entitlement = new Entitlement(SERVICE_NAME, resourceName, actionValues);
entitlement.setName("ent1");
String user11 = "id=user11,ou=user," + ServiceManager.getBaseDN();
String user12 = "id=user12,ou=user," + ServiceManager.getBaseDN();
UserSubject ua1 = new OpenSSOUserSubject();
ua1.setID(user11);
UserSubject ua2 = new OpenSSOUserSubject();
ua2.setID(user12);
Set<EntitlementSubject> subjects = new HashSet<EntitlementSubject>();
subjects.add(ua1);
subjects.add(ua2);
OrSubject os = new OrSubject(subjects);
Set<EntitlementCondition> conditions = new HashSet<EntitlementCondition>();
String startIp = "100.100.100.100";
String endIp = "200.200.200.200";
IPv4Condition ipc = new IPv4Condition();
ipc.setStartIpAndEndIp(startIp, endIp);
conditions.add(ipc);
OrCondition oc = new OrCondition(conditions);
AndCondition ac = new AndCondition(conditions);
StaticAttributes sa1 = new StaticAttributes();
Set<String> aValues = new HashSet<String>();
aValues.add("a10");
aValues.add("a20");
sa1.setPropertyName("a");
sa1.setPropertyValues(aValues);
sa1.setPResponseProviderName("sa");
StaticAttributes sa2 = new StaticAttributes();
Set<String> bValues = new HashSet<String>();
bValues.add("b10");
bValues.add("b20");
sa2.setPropertyName("b");
sa2.setPropertyValues(bValues);
sa2.setPResponseProviderName("sa");
UserAttributes uat1 = new UserAttributes();
uat1.setPropertyName("email");
uat1.setPResponseProviderName("ua");
UserAttributes uat2 = new UserAttributes();
uat2.setPropertyName("uid");
uat2.setPResponseProviderName("ua");
Set<ResourceAttribute> ra = new HashSet<ResourceAttribute>();
ra.add(sa1);
ra.add(sa2);
ra.add(uat1);
ra.add(uat2);
Privilege privilege = Privilege.getNewInstance();
privilege.setName(PRIVILEGE_NAME);
privilege.setEntitlement(entitlement);
privilege.setSubject(ua1);
privilege.setCondition(ipc);
privilege.setResourceAttributes(ra);
privilege.setCreatedBy("amadmin");
privilege.setLastModifiedBy("amadmin");
privilege.setCreationDate(System.currentTimeMillis());
privilege.setLastModifiedDate(System.currentTimeMillis());
UnittestLog.logMessage("PrivilegeUtils.testPrivilegeToXACMLPolicy():" + "Privilege=" + privilege.toString());
UnittestLog.logMessage("PrivilegeUtils.testPrivilegeToXACMLPolicy():" + "converting to xacml policy");
// TODO(jtb): not compiling
String xacmlString = XACMLPrivilegeUtils.toXACML(privilege);
UnittestLog.logMessage("xacml policy=" + xacmlString);
} catch (Throwable t) {
UnittestLog.logError("Throwable:", t);
UnittestLog.logMessage("Throwable:" + t.getMessage());
t.printStackTrace();
}
}
Also used :
EntitlementCondition(com.sun.identity.entitlement.EntitlementCondition)
HashMap(java.util.HashMap)
IPv4Condition(org.forgerock.openam.entitlement.conditions.environment.IPv4Condition)
OpenSSOUserSubject(com.sun.identity.entitlement.opensso.OpenSSOUserSubject)
StaticAttributes(com.sun.identity.entitlement.StaticAttributes)
OrSubject(com.sun.identity.entitlement.OrSubject)
AndCondition(com.sun.identity.entitlement.AndCondition)
UserAttributes(com.sun.identity.entitlement.UserAttributes)
EntitlementSubject(com.sun.identity.entitlement.EntitlementSubject)
OpenSSOUserSubject(com.sun.identity.entitlement.opensso.OpenSSOUserSubject)
UserSubject(com.sun.identity.entitlement.UserSubject)
OrCondition(com.sun.identity.entitlement.OrCondition)
Entitlement(com.sun.identity.entitlement.Entitlement)
ResourceAttribute(com.sun.identity.entitlement.ResourceAttribute)
Privilege(com.sun.identity.entitlement.Privilege)
HashSet(java.util.HashSet)
Test(org.testng.annotations.Test)
Example 95 with Privilege
use of com.sun.identity.entitlement.Privilege in project OpenAM by OpenRock.
the class RestTest method setup.
@BeforeClass
public void setup() throws Exception {
try {
PrivilegeManager pm = PrivilegeManager.getInstance(REALM, adminSubject);
Privilege privilege = Privilege.getNewInstance();
privilege.setName(PRIVILEGE_NAME);
Map<String, Boolean> actions = new HashMap<String, Boolean>();
actions.put("GET", true);
Entitlement entitlement = new Entitlement(RESOURCE_NAME + "/*", actions);
privilege.setEntitlement(entitlement);
EntitlementSubject sbj = new AuthenticatedUsers();
privilege.setSubject(sbj);
NumericAttributeCondition cond = new NumericAttributeCondition();
cond.setAttributeName(ATTR_NAME);
cond.setOperator(NumericAttributeCondition.Operator.EQUAL);
cond.setValue(ATTR_VAL);
privilege.setCondition(cond);
pm.add(privilege);
user = IdRepoUtils.createAgent(REALM, AGENT_NAME);
SSOToken ssoToken = AuthUtils.authenticate(REALM, AGENT_NAME, AGENT_NAME);
String userTokenId = ssoToken.getTokenID().toString();
hashedUserTokenId = Hash.hash(userTokenId);
userTokenIdHeader = RestServiceManager.SSOTOKEN_SUBJECT_PREFIX + RestServiceManager.SUBJECT_DELIMITER + userTokenId;
String cookieValue = userTokenId;
if (Boolean.parseBoolean(SystemProperties.get(Constants.AM_COOKIE_ENCODE, "false"))) {
cookieValue = URLEncoder.encode(userTokenId, "UTF-8");
}
cookie = new Cookie(SystemProperties.get(Constants.AM_COOKIE_NAME), cookieValue);
String serverURL = SystemProperties.getServerInstanceName();
decisionClient = Client.create().resource(serverURL + "/ws/1/entitlement/decision");
decisionsClient = Client.create().resource(serverURL + "/ws/1/entitlement/decisions");
entitlementClient = Client.create().resource(serverURL + "/ws/1/entitlement/entitlement");
entitlementsClient = Client.create().resource(serverURL + "/ws/1/entitlement/entitlements");
} catch (Exception e) {
UnittestLog.logError("RestTest.setup() failed:", e);
throw e;
}
}
Also used :
Cookie(javax.ws.rs.core.Cookie)
SSOToken(com.iplanet.sso.SSOToken)
NumericAttributeCondition(com.sun.identity.entitlement.NumericAttributeCondition)
HashMap(java.util.HashMap)
AuthenticatedUsers(org.forgerock.openam.entitlement.conditions.subject.AuthenticatedUsers)
PrivilegeManager(com.sun.identity.entitlement.PrivilegeManager)
UniformInterfaceException(com.sun.jersey.api.client.UniformInterfaceException)
EntitlementSubject(com.sun.identity.entitlement.EntitlementSubject)
Privilege(com.sun.identity.entitlement.Privilege)
JSONEntitlement(com.sun.identity.entitlement.JSONEntitlement)
Entitlement(com.sun.identity.entitlement.Entitlement)
BeforeClass(org.testng.annotations.BeforeClass)
Aggregations
Privilege (com.sun.identity.entitlement.Privilege)122
Test (org.testng.annotations.Test)76
JsonValue (org.forgerock.json.JsonValue)46
OpenSSOPrivilege (com.sun.identity.entitlement.opensso.OpenSSOPrivilege)39
HashSet (java.util.HashSet)30
ReferralPrivilege (com.sun.identity.entitlement.ReferralPrivilege)26
EntitlementException (com.sun.identity.entitlement.EntitlementException)23
IPrivilege (com.sun.identity.entitlement.IPrivilege)23
Entitlement (com.sun.identity.entitlement.Entitlement)19
EntitlementSubject (com.sun.identity.entitlement.EntitlementSubject)18
PrivilegeManager (com.sun.identity.entitlement.PrivilegeManager)17
HashMap (java.util.HashMap)15
EntitlementCondition (com.sun.identity.entitlement.EntitlementCondition)13
ApplicationPrivilege (com.sun.identity.entitlement.ApplicationPrivilege)11
PolicyCondition (com.sun.identity.entitlement.opensso.PolicyCondition)10
Set (java.util.Set)9
SSOToken (com.iplanet.sso.SSOToken)8
PolicySubject (com.sun.identity.entitlement.opensso.PolicySubject)8
Subject (javax.security.auth.Subject)8
ResourceResponse (org.forgerock.json.resource.ResourceResponse)8
