Example 96 with Authority
use of com.yahoo.athenz.auth.Authority in project athenz by yahoo.
the class RsrcCtxWrapperTest method testAuthenticateException.
@Test
public void testAuthenticateException() {
HttpServletRequest reqMock = Mockito.mock(HttpServletRequest.class);
HttpServletResponse resMock = Mockito.mock(HttpServletResponse.class);
AuthorityList authListMock = new AuthorityList();
Authorizer authorizerMock = Mockito.mock(Authorizer.class);
Authority authMock = Mockito.mock(Authority.class);
Metric metricMock = Mockito.mock(Metric.class);
Object timerMetricMock = Mockito.mock(Object.class);
Mockito.when(authMock.getHeader()).thenReturn("testheader");
Mockito.when(reqMock.getHeader("testheader")).thenReturn("testcred");
Mockito.when(authMock.getCredSource()).thenReturn(com.yahoo.athenz.auth.Authority.CredSource.HEADER);
Mockito.when(authMock.authenticate(Mockito.any(), Mockito.any(), Mockito.any(), Mockito.any())).thenThrow(new com.yahoo.athenz.common.server.rest.ResourceException(403));
Mockito.when(reqMock.getRemoteAddr()).thenReturn("1.1.1.1");
Mockito.when(reqMock.getMethod()).thenReturn("POST");
authListMock.add(authMock);
RsrcCtxWrapper wrapper = new RsrcCtxWrapper(reqMock, resMock, authListMock, false, authorizerMock, metricMock, timerMetricMock, "apiName");
try {
wrapper.authenticate();
} catch (ResourceException ex) {
assertEquals(403, ex.getCode());
}
}
Also used :
Authority(com.yahoo.athenz.auth.Authority)
PrincipalAuthority(com.yahoo.athenz.auth.impl.PrincipalAuthority)
HttpServletResponse(javax.servlet.http.HttpServletResponse)
AuthorityList(com.yahoo.athenz.common.server.rest.Http.AuthorityList)
HttpServletRequest(javax.servlet.http.HttpServletRequest)
Authorizer(com.yahoo.athenz.auth.Authorizer)
Metric(com.yahoo.athenz.common.metrics.Metric)
Test(org.testng.annotations.Test)
Example 97 with Authority
use of com.yahoo.athenz.auth.Authority in project athenz by yahoo.
the class RsrcCtxWrapperTest method testLogPrincipalRoleName.
@Test
public void testLogPrincipalRoleName() {
HttpServletRequest reqMock = Mockito.mock(HttpServletRequest.class);
HttpServletResponse resMock = Mockito.mock(HttpServletResponse.class);
AuthorityList authListMock = new AuthorityList();
Authorizer authorizerMock = Mockito.mock(Authorizer.class);
Authority authMock = Mockito.mock(Authority.class);
Metric metricMock = Mockito.mock(Metric.class);
Object timerMetricMock = Mockito.mock(Object.class);
SimplePrincipal principal = (SimplePrincipal) SimplePrincipal.create("hockey", "kings", "v=S1,d=hockey;n=kings;s=sig", 0, new PrincipalAuthority());
principal.setRolePrincipalName("athenz.role");
Mockito.when(authMock.getHeader()).thenReturn("testheader");
Mockito.when(reqMock.getHeader("testheader")).thenReturn("testcred");
Mockito.when(authMock.getCredSource()).thenReturn(com.yahoo.athenz.auth.Authority.CredSource.HEADER);
Mockito.when(authMock.authenticate(Mockito.any(), Mockito.any(), Mockito.any(), Mockito.any())).thenReturn(principal);
Mockito.when(reqMock.getRemoteAddr()).thenReturn("1.1.1.1");
Mockito.when(reqMock.getMethod()).thenReturn("POST");
authListMock.add(authMock);
RsrcCtxWrapper wrapper = new RsrcCtxWrapper(reqMock, resMock, authListMock, false, authorizerMock, metricMock, timerMetricMock, "apiName");
wrapper.authenticate();
assertEquals("athenz.role", wrapper.logPrincipal());
assertEquals("hockey", wrapper.getPrincipalDomain());
}
Also used :
HttpServletRequest(javax.servlet.http.HttpServletRequest)
Authority(com.yahoo.athenz.auth.Authority)
PrincipalAuthority(com.yahoo.athenz.auth.impl.PrincipalAuthority)
Authorizer(com.yahoo.athenz.auth.Authorizer)
HttpServletResponse(javax.servlet.http.HttpServletResponse)
Metric(com.yahoo.athenz.common.metrics.Metric)
AuthorityList(com.yahoo.athenz.common.server.rest.Http.AuthorityList)
SimplePrincipal(com.yahoo.athenz.auth.impl.SimplePrincipal)
PrincipalAuthority(com.yahoo.athenz.auth.impl.PrincipalAuthority)
Test(org.testng.annotations.Test)
Example 98 with Authority
use of com.yahoo.athenz.auth.Authority in project athenz by yahoo.
the class ZTSAuthorizerTest method testAccessInvalidResourceDomain.
@Test
public void testAccessInvalidResourceDomain() {
ZTSAuthorizer authz = new ZTSAuthorizer(null);
Authority authority = Mockito.mock(Authority.class);
Mockito.when(authority.allowAuthorization()).thenReturn(true);
Principal principal = Mockito.mock(Principal.class);
Mockito.when(principal.getAuthority()).thenReturn(authority);
try {
authz.access("op", "invalid-resource", principal, null);
fail();
} catch (ResourceException ex) {
assertEquals(ex.getCode(), 404);
}
}Example 99 with Authority
use of com.yahoo.athenz.auth.Authority in project athenz by yahoo.
the class ZMSImplTest method testGetResourceAccessList.
@Test
public void testGetResourceAccessList() {
Authority principalAuthority = new com.yahoo.athenz.common.server.debug.DebugPrincipalAuthority();
Principal principal1 = principalAuthority.authenticate("v=U1;d=user;n=user1;s=signature", "10.11.12.13", "GET", null);
ResourceContext rsrcCtx1 = createResourceContext(principal1);
try {
zms.getResourceAccessList(rsrcCtx1, "principal", "UPDATE");
} catch (Exception ex) {
assertTrue(true);
}
}
Also used :
Authority(com.yahoo.athenz.auth.Authority)
PrincipalAuthority(com.yahoo.athenz.auth.impl.PrincipalAuthority)
SimplePrincipal(com.yahoo.athenz.auth.impl.SimplePrincipal)
Principal(com.yahoo.athenz.auth.Principal)
WebApplicationException(javax.ws.rs.WebApplicationException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
IOException(java.io.IOException)
Example 100 with Authority
use of com.yahoo.athenz.auth.Authority in project athenz by yahoo.
the class ZMSImplTest method testIsAllowedResourceLookForAllUsers.
@Test
public void testIsAllowedResourceLookForAllUsers() {
Authority principalAuthority = new com.yahoo.athenz.common.server.debug.DebugPrincipalAuthority();
Principal principal1 = principalAuthority.authenticate("v=U1;d=user;n=user1;s=signature", "10.11.12.13", "GET", null);
try {
zms.isAllowedResourceLookForAllUsers(principal1);
} catch (Exception ex) {
assertTrue(true);
}
}
Also used :
Authority(com.yahoo.athenz.auth.Authority)
PrincipalAuthority(com.yahoo.athenz.auth.impl.PrincipalAuthority)
SimplePrincipal(com.yahoo.athenz.auth.impl.SimplePrincipal)
Principal(com.yahoo.athenz.auth.Principal)
WebApplicationException(javax.ws.rs.WebApplicationException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
IOException(java.io.IOException)
Aggregations
Authority (com.yahoo.athenz.auth.Authority)193
Principal (com.yahoo.athenz.auth.Principal)124
Test (org.testng.annotations.Test)72
PrincipalAuthority (com.yahoo.athenz.auth.impl.PrincipalAuthority)32
SimplePrincipal (com.yahoo.athenz.auth.impl.SimplePrincipal)30
HttpServletRequest (javax.servlet.http.HttpServletRequest)24
AthenzDomain (com.yahoo.athenz.zms.store.AthenzDomain)21
HttpServletResponse (javax.servlet.http.HttpServletResponse)20
ObjectStoreConnection (com.yahoo.athenz.zms.store.ObjectStoreConnection)19
Authorizer (com.yahoo.athenz.auth.Authorizer)15
AuthorityList (com.yahoo.athenz.common.server.rest.Http.AuthorityList)13
ObjectStore (com.yahoo.athenz.zms.store.ObjectStore)11
ServerPrivateKey (com.yahoo.athenz.auth.ServerPrivateKey)9
Timestamp (com.yahoo.rdl.Timestamp)9
Metric (com.yahoo.athenz.common.metrics.Metric)8
IOException (java.io.IOException)8
Response (javax.ws.rs.core.Response)6
Struct (com.yahoo.rdl.Struct)5
UnsupportedEncodingException (java.io.UnsupportedEncodingException)5
WebApplicationException (javax.ws.rs.WebApplicationException)5
