Example 11 with GoUserPrinciple
use of com.thoughtworks.go.server.security.userdetail.GoUserPrinciple in project gocd by gocd.
the class PluginAuthenticationProviderTest method shouldBeAbleToAuthenticateUserUsingAnyOfTheAuthorizationPlugins.
@Test
public void shouldBeAbleToAuthenticateUserUsingAnyOfTheAuthorizationPlugins() {
String pluginId1 = "plugin-id-1";
String pluginId2 = "plugin-id-2";
addPluginSupportingPasswordBasedAuthentication(pluginId1);
addPluginSupportingPasswordBasedAuthentication(pluginId2);
securityConfig.securityAuthConfigs().add(new SecurityAuthConfig("github", pluginId2));
securityConfig.addRole(new PluginRoleConfig("admin", "github", ConfigurationPropertyMother.create("foo")));
when(authorizationExtension.authenticateUser(pluginId1, "username", "password", securityConfig.securityAuthConfigs().findByPluginId(pluginId1), null)).thenReturn(NULL_AUTH_RESPONSE);
AuthenticationResponse response = new AuthenticationResponse(new User("username", "display-name", "test@test.com"), Collections.emptyList());
when(authorizationExtension.authenticateUser(pluginId2, "username", "password", securityConfig.securityAuthConfigs().findByPluginId(pluginId2), securityConfig.getPluginRoles(pluginId2))).thenReturn(response);
UserDetails userDetails = provider.retrieveUser("username", authenticationToken);
assertThat(userDetails, is(instanceOf(GoUserPrinciple.class)));
GoUserPrinciple goUserPrincipal = (GoUserPrinciple) userDetails;
assertThat(goUserPrincipal.getUsername(), is("username"));
assertThat(goUserPrincipal.getDisplayName(), is("display-name"));
assertThat(goUserPrincipal.getAuthorities().length, is(1));
assertThat(goUserPrincipal.getAuthorities()[0], is(userAuthority));
}
Also used :
SecurityAuthConfig(com.thoughtworks.go.config.SecurityAuthConfig)
User(com.thoughtworks.go.plugin.access.authorization.models.User)
UserDetails(org.springframework.security.userdetails.UserDetails)
CaseInsensitiveString(com.thoughtworks.go.config.CaseInsensitiveString)
GoUserPrinciple(com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)
PluginRoleConfig(com.thoughtworks.go.config.PluginRoleConfig)
AuthenticationResponse(com.thoughtworks.go.plugin.access.authorization.models.AuthenticationResponse)
Test(org.junit.Test)
Example 12 with GoUserPrinciple
use of com.thoughtworks.go.server.security.userdetail.GoUserPrinciple in project gocd by gocd.
the class PluginAuthenticationProviderTest method reuthenticationUsingAuthorizationPlugins_shouldUseTheLoginNameAvailableInGoUserPrinciple.
@Test
public void reuthenticationUsingAuthorizationPlugins_shouldUseTheLoginNameAvailableInGoUserPrinciple() throws Exception {
String pluginId1 = "cd.go.ldap";
securityConfig.securityAuthConfigs().add(new SecurityAuthConfig("ldap", "cd.go.ldap"));
addPluginSupportingPasswordBasedAuthentication(pluginId1);
when(authorizationExtension.authenticateUser(pluginId1, "foo@bar.com", "password", securityConfig.securityAuthConfigs().findByPluginId(pluginId1), securityConfig.getPluginRoles(pluginId1))).thenReturn(new AuthenticationResponse(new User("username", "bob", "bob@example.com"), Arrays.asList("blackbird", "admins")));
GoUserPrinciple principal = new GoUserPrinciple("username", "Display", "password", true, true, true, true, new GrantedAuthority[] {}, "foo@bar.com");
UserDetails userDetails = provider.retrieveUser("username", new UsernamePasswordAuthenticationToken(principal, "password"));
assertThat(userDetails, is(instanceOf(GoUserPrinciple.class)));
GoUserPrinciple goUserPrincipal = (GoUserPrinciple) userDetails;
assertThat(goUserPrincipal.getUsername(), is("username"));
assertThat(goUserPrincipal.getLoginName(), is("foo@bar.com"));
verify(pluginRoleService).updatePluginRoles("cd.go.ldap", "username", CaseInsensitiveString.caseInsensitiveStrings(Arrays.asList("blackbird", "admins")));
}
Also used :
SecurityAuthConfig(com.thoughtworks.go.config.SecurityAuthConfig)
User(com.thoughtworks.go.plugin.access.authorization.models.User)
UserDetails(org.springframework.security.userdetails.UserDetails)
UsernamePasswordAuthenticationToken(org.springframework.security.providers.UsernamePasswordAuthenticationToken)
CaseInsensitiveString(com.thoughtworks.go.config.CaseInsensitiveString)
GoUserPrinciple(com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)
AuthenticationResponse(com.thoughtworks.go.plugin.access.authorization.models.AuthenticationResponse)
Test(org.junit.Test)
Example 13 with GoUserPrinciple
use of com.thoughtworks.go.server.security.userdetail.GoUserPrinciple in project gocd by gocd.
the class PreAuthenticatedAuthenticationProviderTest method authenticate_shouldReturnAuthTokenWithUserDetails.
@Test
public void authenticate_shouldReturnAuthTokenWithUserDetails() {
Map<String, String> credentials = Collections.singletonMap("access_token", "some_token");
PreAuthenticatedAuthenticationToken authenticationToken = new PreAuthenticatedAuthenticationToken(null, credentials, pluginId);
PreAuthenticatedAuthenticationToken authenticate = (PreAuthenticatedAuthenticationToken) authenticationProvider.authenticate(authenticationToken);
GoUserPrinciple principal = (GoUserPrinciple) authenticate.getPrincipal();
assertThat(principal.getDisplayName(), is(user.getDisplayName()));
assertThat(principal.getUsername(), is(user.getUsername()));
assertThat(principal.getAuthorities(), is(authorities));
}
Also used :
PreAuthenticatedAuthenticationToken(com.thoughtworks.go.server.security.tokens.PreAuthenticatedAuthenticationToken)
CaseInsensitiveString(com.thoughtworks.go.config.CaseInsensitiveString)
GoUserPrinciple(com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)
Test(org.junit.Test)
Example 14 with GoUserPrinciple
use of com.thoughtworks.go.server.security.userdetail.GoUserPrinciple in project gocd by gocd.
the class PreAuthenticatedAuthenticationProviderTest method authenticate_shouldEnsureUserDetailsInAuthTokenHasDisplayName.
@Test
public void authenticate_shouldEnsureUserDetailsInAuthTokenHasDisplayName() {
Map<String, String> credentials = Collections.singletonMap("access_token", "some_token");
PreAuthenticatedAuthenticationToken authenticationToken = new PreAuthenticatedAuthenticationToken(null, credentials, pluginId);
AuthenticationResponse authenticationResponse = new AuthenticationResponse(new User("username", null, "email"), asList("admin"));
when(authorizationExtension.authenticateUser(any(String.class), any(Map.class), any(List.class), any(List.class))).thenReturn(authenticationResponse);
PreAuthenticatedAuthenticationToken authenticate = (PreAuthenticatedAuthenticationToken) authenticationProvider.authenticate(authenticationToken);
GoUserPrinciple principal = (GoUserPrinciple) authenticate.getPrincipal();
assertThat(principal.getDisplayName(), is(authenticationResponse.getUser().getUsername()));
}
Also used :
User(com.thoughtworks.go.plugin.access.authorization.models.User)
PreAuthenticatedAuthenticationToken(com.thoughtworks.go.server.security.tokens.PreAuthenticatedAuthenticationToken)
Arrays.asList(java.util.Arrays.asList)
List(java.util.List)
CaseInsensitiveString(com.thoughtworks.go.config.CaseInsensitiveString)
GoUserPrinciple(com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)
AuthenticationResponse(com.thoughtworks.go.plugin.access.authorization.models.AuthenticationResponse)
Map(java.util.Map)
Test(org.junit.Test)
Example 15 with GoUserPrinciple
use of com.thoughtworks.go.server.security.userdetail.GoUserPrinciple in project gocd by gocd.
the class ReAuthenticationFilterTest method setupAuthentication.
private Authentication setupAuthentication(boolean authenticatedUsingAuthorizationPlugin) {
GrantedAuthority[] authorities = {};
Authentication authentication = new TestingAuthenticationToken(new GoUserPrinciple("user", "displayName", "password", true, true, true, true, authorities, "loginName"), null, authorities);
SecurityContextHolder.getContext().setAuthentication(authentication);
authentication.setAuthenticated(true);
return authentication;
}
Also used :
Authentication(org.springframework.security.Authentication)
GrantedAuthority(org.springframework.security.GrantedAuthority)
GoUserPrinciple(com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)
TestingAuthenticationToken(org.springframework.security.providers.TestingAuthenticationToken)
Aggregations
GoUserPrinciple (com.thoughtworks.go.server.security.userdetail.GoUserPrinciple)15
Test (org.junit.Test)11
CaseInsensitiveString (com.thoughtworks.go.config.CaseInsensitiveString)10
AuthenticationResponse (com.thoughtworks.go.plugin.access.authorization.models.AuthenticationResponse)5
User (com.thoughtworks.go.plugin.access.authorization.models.User)5
UserDetails (org.springframework.security.userdetails.UserDetails)5
SecurityAuthConfig (com.thoughtworks.go.config.SecurityAuthConfig)4
User (com.thoughtworks.go.plugin.access.authentication.models.User)4
PluginRoleConfig (com.thoughtworks.go.config.PluginRoleConfig)2
Username (com.thoughtworks.go.server.domain.Username)2
AuthorityGranter (com.thoughtworks.go.server.security.AuthorityGranter)2
PreAuthenticatedAuthenticationToken (com.thoughtworks.go.server.security.tokens.PreAuthenticatedAuthenticationToken)2
Authentication (org.springframework.security.Authentication)2
GrantedAuthority (org.springframework.security.GrantedAuthority)2
TestingAuthenticationToken (org.springframework.security.providers.TestingAuthenticationToken)2
UsernamePasswordAuthenticationToken (org.springframework.security.providers.UsernamePasswordAuthenticationToken)2
DefaultGoApiResponse (com.thoughtworks.go.plugin.api.response.DefaultGoApiResponse)1
GoApiResponse (com.thoughtworks.go.plugin.api.response.GoApiResponse)1
Arrays.asList (java.util.Arrays.asList)1
List (java.util.List)1
