Example 6 with Policy
use of com.yahoo.athenz.zms.Policy in project athenz by yahoo.
the class FileConnection method deleteAssertion.
@Override
public boolean deleteAssertion(String domainName, String policyName, Long assertionId) {
DomainStruct domainStruct = getDomainStruct(domainName);
if (domainStruct == null) {
throw ZMSUtils.error(ResourceException.NOT_FOUND, "domain not found", "deleteAssertion");
}
Policy policy = getPolicyObject(domainStruct, policyName);
if (policy == null) {
throw ZMSUtils.error(ResourceException.NOT_FOUND, "policy not found", "insertAssertion");
}
List<Assertion> assertions = policy.getAssertions();
boolean deleted = false;
for (int i = 0; i < assertions.size(); i++) {
if (assertions.get(i).getId().equals(assertionId)) {
assertions.remove(i);
deleted = true;
break;
}
}
putDomainStruct(domainName, domainStruct);
return deleted;
}Example 7 with Policy
use of com.yahoo.athenz.zms.Policy in project athenz by yahoo.
the class FileConnection method updatePolicyModTimestamp.
@Override
public boolean updatePolicyModTimestamp(String domainName, String policyName) {
DomainStruct domainStruct = getDomainStruct(domainName);
if (domainStruct == null) {
throw ZMSUtils.error(ResourceException.NOT_FOUND, "domain not found", "updatePolicyModTimestamp");
}
Policy policy = getPolicyObject(domainStruct, policyName);
if (policy == null) {
throw ZMSUtils.error(ResourceException.NOT_FOUND, "policy not found", "updatePolicyModTimestamp");
}
policy.setModified(Timestamp.fromCurrentTime());
putDomainStruct(domainName, domainStruct);
return true;
}
Also used :
Policy(com.yahoo.athenz.zms.Policy)
Example 8 with Policy
use of com.yahoo.athenz.zms.Policy in project athenz by yahoo.
the class JDBCConnectionTest method testInsertPolicyException.
@Test
public void testInsertPolicyException() throws Exception {
JDBCConnection jdbcConn = new JDBCConnection(mockConn, true);
Policy policy = new Policy().setName("my-domain:policy.policy1");
Mockito.when(mockResultSet.next()).thenReturn(true);
// return domain id
Mockito.doReturn(5).when(mockResultSet).getInt(1);
Mockito.when(mockPrepStmt.executeUpdate()).thenThrow(new SQLException("failed operation", "state", 1001));
try {
jdbcConn.insertPolicy("my-domain", policy);
fail();
} catch (Exception ex) {
assertTrue(true);
}
jdbcConn.close();
}
Also used :
Policy(com.yahoo.athenz.zms.Policy)
SQLException(java.sql.SQLException)
JDBCConnection(com.yahoo.athenz.zms.store.jdbc.JDBCConnection)
ResourceException(com.yahoo.athenz.zms.ResourceException)
SQLException(java.sql.SQLException)
Test(org.testng.annotations.Test)
Example 9 with Policy
use of com.yahoo.athenz.zms.Policy in project athenz by yahoo.
the class JDBCConnectionTest method testUpdatePolicyException.
@Test
public void testUpdatePolicyException() throws Exception {
JDBCConnection jdbcConn = new JDBCConnection(mockConn, true);
Policy policy = new Policy().setName("my-domain:policy.policy1");
Mockito.doReturn(1).when(mockPrepStmt).executeUpdate();
Mockito.when(mockResultSet.next()).thenReturn(true);
// return domain id
Mockito.doReturn(5).when(mockResultSet).getInt(1);
Mockito.when(mockPrepStmt.executeUpdate()).thenThrow(new SQLException("failed operation", "state", 1001));
try {
jdbcConn.updatePolicy("my-domain", policy);
fail();
} catch (Exception ex) {
assertTrue(true);
}
jdbcConn.close();
}
Also used :
Policy(com.yahoo.athenz.zms.Policy)
SQLException(java.sql.SQLException)
JDBCConnection(com.yahoo.athenz.zms.store.jdbc.JDBCConnection)
ResourceException(com.yahoo.athenz.zms.ResourceException)
SQLException(java.sql.SQLException)
Test(org.testng.annotations.Test)
Example 10 with Policy
use of com.yahoo.athenz.zms.Policy in project athenz by yahoo.
the class ZTSImplTest method signedBootstrapTenantDomain.
private SignedDomain signedBootstrapTenantDomain(String provider, String domainName, String serviceName, String awsAccount) {
SignedDomain signedDomain = new SignedDomain();
List<Role> roles = new ArrayList<>();
Role role = new Role();
role.setName(generateRoleName(domainName, "providers"));
List<RoleMember> members = new ArrayList<>();
members.add(new RoleMember().setMemberName(provider));
role.setRoleMembers(members);
roles.add(role);
List<com.yahoo.athenz.zms.Policy> policies = new ArrayList<>();
com.yahoo.athenz.zms.Policy policy = new com.yahoo.athenz.zms.Policy();
com.yahoo.athenz.zms.Assertion assertion = new com.yahoo.athenz.zms.Assertion();
assertion.setResource(domainName + ":service." + serviceName);
assertion.setAction("launch");
assertion.setRole(generateRoleName(domainName, "providers"));
List<com.yahoo.athenz.zms.Assertion> assertions = new ArrayList<>();
assertions.add(assertion);
policy.setAssertions(assertions);
policy.setName(generatePolicyName(domainName, "providers"));
policies.add(policy);
com.yahoo.athenz.zms.DomainPolicies domainPolicies = new com.yahoo.athenz.zms.DomainPolicies();
domainPolicies.setDomain(domainName);
domainPolicies.setPolicies(policies);
com.yahoo.athenz.zms.SignedPolicies signedPolicies = new com.yahoo.athenz.zms.SignedPolicies();
signedPolicies.setContents(domainPolicies);
signedPolicies.setSignature(Crypto.sign(SignUtils.asCanonicalString(domainPolicies), privateKey));
signedPolicies.setKeyId("0");
DomainData domain = new DomainData();
domain.setName(domainName);
domain.setRoles(roles);
domain.setAccount(awsAccount);
domain.setPolicies(signedPolicies);
domain.setModified(Timestamp.fromCurrentTime());
signedDomain.setDomain(domain);
signedDomain.setSignature(Crypto.sign(SignUtils.asCanonicalString(domain), privateKey));
signedDomain.setKeyId("0");
return signedDomain;
}
Also used :
Policy(com.yahoo.athenz.zms.Policy)
Policy(com.yahoo.athenz.zms.Policy)
ArrayList(java.util.ArrayList)
Assertion(com.yahoo.athenz.zms.Assertion)
DomainData(com.yahoo.athenz.zms.DomainData)
Assertion(com.yahoo.athenz.zms.Assertion)
Role(com.yahoo.athenz.zms.Role)
SignedDomain(com.yahoo.athenz.zms.SignedDomain)
RoleMember(com.yahoo.athenz.zms.RoleMember)
Aggregations
Policy (com.yahoo.athenz.zms.Policy)46
Assertion (com.yahoo.athenz.zms.Assertion)24
Test (org.testng.annotations.Test)24
Role (com.yahoo.athenz.zms.Role)22
ArrayList (java.util.ArrayList)18
DomainData (com.yahoo.athenz.zms.DomainData)16
RoleMember (com.yahoo.athenz.zms.RoleMember)13
DataCache (com.yahoo.athenz.zts.cache.DataCache)13
SignedDomain (com.yahoo.athenz.zms.SignedDomain)8
JDBCConnection (com.yahoo.athenz.zms.store.jdbc.JDBCConnection)7
HashMap (java.util.HashMap)7
Domain (com.yahoo.athenz.zms.Domain)6
ResourceException (com.yahoo.athenz.zms.ResourceException)4
ServiceIdentity (com.yahoo.athenz.zms.ServiceIdentity)4
SQLException (java.sql.SQLException)4
Principal (com.yahoo.athenz.auth.Principal)3
SimplePrincipal (com.yahoo.athenz.auth.impl.SimplePrincipal)3
Array (com.yahoo.rdl.Array)2
Struct (com.yahoo.rdl.Struct)2
PreparedStatement (java.sql.PreparedStatement)2
