Example 1 with GetAccountRequest
use of com.zimbra.soap.admin.message.GetAccountRequest in project zm-mailbox by Zimbra.
the class TestDomainAdmin method testGetAccountInDiffDomain.
@Test
public void testGetAccountInDiffDomain() throws Exception {
Account acct = TestJaxbProvisioning.ensureAccountExists(DIFF_ACCT);
String acctId = acct.getId();
String domAdminId = createAdminConsoleStyleDomainAdmin(DOMADMIN);
SoapProvisioning domAdminSoapProv = getSoapProvisioning(DOMADMIN, TestUtil.DEFAULT_PASSWORD);
GetAccountRequest getAcctReq = new GetAccountRequest(AccountSelector.fromName(DIFF_ACCT), true);
try {
domAdminSoapProv.invokeJaxb(getAcctReq);
fail("GetAccountRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
domAdminSoapProv.invokeJaxbOnTargetAccount(getAcctReq, acctId);
fail("GetAccountRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
// try non-existent acct
getAcctReq = new GetAccountRequest(AccountSelector.fromName(DIFF_ACCT2), true);
try {
domAdminSoapProv.invokeJaxb(getAcctReq);
fail("GetAccountRequest succeeded for non-existent account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
GetMailboxRequest gmReq = new GetMailboxRequest(new MailboxByAccountIdSelector(acctId));
try {
domAdminSoapProv.invokeJaxb(gmReq);
fail("GetMailboxRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
domAdminSoapProv.invokeJaxbOnTargetAccount(gmReq, acctId);
fail("GetMailboxRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
AddAccountAliasResponse aaaResp;
try {
aaaResp = domAdminSoapProv.invokeJaxb(new AddAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT));
fail("AddAccountAliasRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
aaaResp = domAdminSoapProv.invokeJaxbOnTargetAccount(new AddAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT2), acctId);
fail("AddAccountAliasRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
aaaResp = adminSoapProv.invokeJaxb(new AddAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT));
assertNotNull("AddAccountAliasResponse for " + TARGET_ACCT + " as FULL ADMIN", aaaResp);
try {
domAdminSoapProv.invokeJaxb(new RemoveAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT));
fail("RemoveAccountAliasRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
domAdminSoapProv.invokeJaxb(new RenameAccountRequest(acctId, TARGET_ACCT_RENAMED));
fail("RenameAccountRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
domAdminSoapProv.invokeJaxb(new DeleteAccountRequest(acctId));
fail("DeleteAccountRequest succeeded for account in other domain!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
}
Also used :
Account(com.zimbra.cs.account.Account)
DeleteAccountRequest(com.zimbra.soap.admin.message.DeleteAccountRequest)
AddAccountAliasRequest(com.zimbra.soap.admin.message.AddAccountAliasRequest)
SoapProvisioning(com.zimbra.cs.account.soap.SoapProvisioning)
RemoveAccountAliasRequest(com.zimbra.soap.admin.message.RemoveAccountAliasRequest)
GetMailboxRequest(com.zimbra.soap.admin.message.GetMailboxRequest)
RenameAccountRequest(com.zimbra.soap.admin.message.RenameAccountRequest)
MailboxByAccountIdSelector(com.zimbra.soap.admin.type.MailboxByAccountIdSelector)
AddAccountAliasResponse(com.zimbra.soap.admin.message.AddAccountAliasResponse)
GetAccountRequest(com.zimbra.soap.admin.message.GetAccountRequest)
SoapFaultException(com.zimbra.common.soap.SoapFaultException)
Test(org.junit.Test)
Example 2 with GetAccountRequest
use of com.zimbra.soap.admin.message.GetAccountRequest in project zm-mailbox by Zimbra.
the class GetAccount method handle.
@Override
public Element handle(Element request, Map<String, Object> context) throws ServiceException {
ZimbraSoapContext zsc = getZimbraSoapContext(context);
Provisioning prov = Provisioning.getInstance();
GetAccountRequest req = zsc.elementToJaxb(request);
AccountSelector acctSel = req.getAccount();
if (acctSel == null) {
throw ServiceException.INVALID_REQUEST(String.format("missing <%s>", AdminConstants.E_ACCOUNT), null);
}
String accountSelectorKey = acctSel.getKey();
AccountBy by = acctSel.getBy().toKeyAccountBy();
Account account = prov.get(by, accountSelectorKey, zsc.getAuthToken());
defendAgainstAccountHarvesting(account, by, accountSelectorKey, zsc, Admin.R_getAccountInfo);
AdminAccessControl aac = checkAccountRight(zsc, account, AdminRight.PR_ALWAYS_ALLOW);
Element response = zsc.createElement(AdminConstants.GET_ACCOUNT_RESPONSE);
boolean applyCos = !Boolean.FALSE.equals(req.isApplyCos());
Set<String> reqAttrs = getReqAttrs(req.getAttrs(), AttributeClass.account);
ToXML.encodeAccount(response, account, applyCos, reqAttrs, aac.getAttrRightChecker(account));
return response;
}
Also used :
Account(com.zimbra.cs.account.Account)
ZimbraSoapContext(com.zimbra.soap.ZimbraSoapContext)
Element(com.zimbra.common.soap.Element)
AccountSelector(com.zimbra.soap.type.AccountSelector)
GetAccountRequest(com.zimbra.soap.admin.message.GetAccountRequest)
Provisioning(com.zimbra.cs.account.Provisioning)
AccountBy(com.zimbra.common.account.Key.AccountBy)
Example 3 with GetAccountRequest
use of com.zimbra.soap.admin.message.GetAccountRequest in project zm-mailbox by Zimbra.
the class TestUtil method deleteAccount.
/**
* Deletes the account for the given username. Consider using {@link deleteAccountIfExists} as alternative
* to reduce logging where the account may not exist.
*/
public static void deleteAccount(String username) throws ServiceException {
Provisioning prov = Provisioning.getInstance();
// so that both the account and mailbox are deleted.
if (!(prov instanceof SoapProvisioning)) {
prov = newSoapProvisioning();
}
SoapProvisioning soapProv = (SoapProvisioning) prov;
GetAccountRequest gaReq = new GetAccountRequest(AccountSelector.fromName(username), false, Lists.newArrayList(Provisioning.A_zimbraId));
try {
GetAccountResponse resp = soapProv.invokeJaxb(gaReq);
if (resp != null) {
String id = null;
for (Attr attr : resp.getAccount().getAttrList()) {
if (Provisioning.A_zimbraId.equals(attr.getKey())) {
id = attr.getValue();
break;
}
}
if (null == id) {
ZimbraLog.test.error("GetAccountResponse for '%s' did not contain the zimbraId", username);
return;
}
prov.deleteAccount(id);
}
} catch (SoapFaultException sfe) {
if (!sfe.getMessage().contains("no such account")) {
ZimbraLog.test.error("GetAccountResponse for '%s' hit unexpected problem", username, sfe);
}
}
}
Also used :
GetAccountResponse(com.zimbra.soap.admin.message.GetAccountResponse)
SoapProvisioning(com.zimbra.cs.account.soap.SoapProvisioning)
GetAccountRequest(com.zimbra.soap.admin.message.GetAccountRequest)
Provisioning(com.zimbra.cs.account.Provisioning)
SoapProvisioning(com.zimbra.cs.account.soap.SoapProvisioning)
QueueAttr(com.zimbra.cs.rmgmt.RemoteMailQueue.QueueAttr)
Attr(com.zimbra.soap.admin.type.Attr)
SoapFaultException(com.zimbra.common.soap.SoapFaultException)
Example 4 with GetAccountRequest
use of com.zimbra.soap.admin.message.GetAccountRequest in project zm-mailbox by Zimbra.
the class TestDomainAdmin method testGetAccountInDomAdminDomain.
@Test
public void testGetAccountInDomAdminDomain() throws Exception {
String domAdminId = createAdminConsoleStyleDomainAdmin(DOMADMIN);
SoapProvisioning domAdminSoapProv = getSoapProvisioning(DOMADMIN, TestUtil.DEFAULT_PASSWORD);
CreateAccountResponse caResp;
caResp = domAdminSoapProv.invokeJaxb(new CreateAccountRequest(TARGET_ACCT, TestUtil.DEFAULT_PASSWORD));
assertNotNull("CreateAccountResponse for " + TARGET_ACCT + " simple as domAdmin", caResp);
String acctId = caResp.getAccount().getId();
GetAccountRequest getAcctReq = new GetAccountRequest(AccountSelector.fromName(TARGET_ACCT), true);
GetAccountResponse getAcctResp = domAdminSoapProv.invokeJaxb(getAcctReq);
assertNotNull("GetAccountResponse for " + TARGET_ACCT + " simple as domAdmin", getAcctResp);
getAcctResp = domAdminSoapProv.invokeJaxbOnTargetAccount(getAcctReq, acctId);
assertNotNull("GetAccountResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", getAcctResp);
GetMailboxRequest gmReq = new GetMailboxRequest(new MailboxByAccountIdSelector(acctId));
GetMailboxResponse gmResp = domAdminSoapProv.invokeJaxb(gmReq);
assertNotNull("GetMailboxResponse for " + TARGET_ACCT + " simple as domAdmin", gmResp);
gmResp = domAdminSoapProv.invokeJaxbOnTargetAccount(gmReq, acctId);
assertNotNull("GetMailboxResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", gmResp);
AddAccountAliasResponse aaaResp;
aaaResp = domAdminSoapProv.invokeJaxb(new AddAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT));
assertNotNull("AddAccountAliasResponse for " + TARGET_ACCT + " simple as domAdmin", aaaResp);
aaaResp = domAdminSoapProv.invokeJaxbOnTargetAccount(new AddAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT2), acctId);
assertNotNull("AddAccountAliasResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", aaaResp);
RemoveAccountAliasResponse daaResp;
daaResp = domAdminSoapProv.invokeJaxb(new RemoveAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT));
assertNotNull("RemoveAccountAliasResponse for " + TARGET_ACCT + " simple as domAdmin", daaResp);
daaResp = domAdminSoapProv.invokeJaxbOnTargetAccount(new RemoveAccountAliasRequest(acctId, ALIAS_FOR_TARGET_ACCT2), acctId);
assertNotNull("RemoveAccountAliasResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", daaResp);
RenameAccountResponse renAResp;
renAResp = domAdminSoapProv.invokeJaxb(new RenameAccountRequest(acctId, TARGET_ACCT_RENAMED));
assertNotNull("RenameAccountResponse for " + TARGET_ACCT + " simple as domAdmin", renAResp);
renAResp = domAdminSoapProv.invokeJaxb(new RenameAccountRequest(acctId, TARGET_ACCT));
assertNotNull("RenameAccountResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", renAResp);
DeleteAccountRequest delAcctReq;
DeleteAccountResponse delAcctResp;
delAcctReq = new DeleteAccountRequest(null);
try {
delAcctResp = domAdminSoapProv.invokeJaxbOnTargetAccount(delAcctReq, acctId);
fail("DeleteAccountRequest succeeded in spite of having no 'id' specified!!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "invalid request: missing required attribute: id");
}
delAcctReq = new DeleteAccountRequest(acctId);
delAcctResp = domAdminSoapProv.invokeJaxbOnTargetAccount(delAcctReq, acctId);
assertNotNull("DeleteAccountResponse for " + TARGET_ACCT + " as domAdmin specifying target acct", delAcctResp);
try {
getAcctResp = domAdminSoapProv.invokeJaxb(getAcctReq);
fail("GetAccountRequest succeeded after delete!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "no such account: ");
}
try {
getAcctResp = domAdminSoapProv.invokeJaxb(new GetAccountRequest(AccountSelector.fromId(acctId), true));
fail("GetAccountRequest succeeded after delete!");
} catch (SoapFaultException sfe) {
// because by id not name
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
getAcctResp = domAdminSoapProv.invokeJaxbOnTargetAccount(getAcctReq, acctId);
fail("GetAccountRequest succeeded after delete!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
gmResp = domAdminSoapProv.invokeJaxb(gmReq);
fail("GetMailboxRequest succeeded after delete!");
} catch (SoapFaultException sfe) {
// because by id
checkSoapReason(sfe, "permission denied: can not access account ");
}
try {
gmResp = domAdminSoapProv.invokeJaxbOnTargetAccount(gmReq, acctId);
fail("GetMailboxRequest succeeded after delete!");
} catch (SoapFaultException sfe) {
checkSoapReason(sfe, "permission denied: can not access account ");
}
}
Also used :
CreateAccountResponse(com.zimbra.soap.admin.message.CreateAccountResponse)
DeleteAccountRequest(com.zimbra.soap.admin.message.DeleteAccountRequest)
AddAccountAliasRequest(com.zimbra.soap.admin.message.AddAccountAliasRequest)
RemoveAccountAliasRequest(com.zimbra.soap.admin.message.RemoveAccountAliasRequest)
DeleteAccountResponse(com.zimbra.soap.admin.message.DeleteAccountResponse)
RenameAccountRequest(com.zimbra.soap.admin.message.RenameAccountRequest)
GetMailboxResponse(com.zimbra.soap.admin.message.GetMailboxResponse)
MailboxByAccountIdSelector(com.zimbra.soap.admin.type.MailboxByAccountIdSelector)
GetAccountRequest(com.zimbra.soap.admin.message.GetAccountRequest)
SoapFaultException(com.zimbra.common.soap.SoapFaultException)
GetAccountResponse(com.zimbra.soap.admin.message.GetAccountResponse)
RemoveAccountAliasResponse(com.zimbra.soap.admin.message.RemoveAccountAliasResponse)
CreateAccountRequest(com.zimbra.soap.admin.message.CreateAccountRequest)
SoapProvisioning(com.zimbra.cs.account.soap.SoapProvisioning)
GetMailboxRequest(com.zimbra.soap.admin.message.GetMailboxRequest)
RenameAccountResponse(com.zimbra.soap.admin.message.RenameAccountResponse)
AddAccountAliasResponse(com.zimbra.soap.admin.message.AddAccountAliasResponse)
Test(org.junit.Test)
Aggregations
GetAccountRequest (com.zimbra.soap.admin.message.GetAccountRequest)4
SoapFaultException (com.zimbra.common.soap.SoapFaultException)3
SoapProvisioning (com.zimbra.cs.account.soap.SoapProvisioning)3
Account (com.zimbra.cs.account.Account)2
Provisioning (com.zimbra.cs.account.Provisioning)2
AddAccountAliasRequest (com.zimbra.soap.admin.message.AddAccountAliasRequest)2
AddAccountAliasResponse (com.zimbra.soap.admin.message.AddAccountAliasResponse)2
DeleteAccountRequest (com.zimbra.soap.admin.message.DeleteAccountRequest)2
GetAccountResponse (com.zimbra.soap.admin.message.GetAccountResponse)2
GetMailboxRequest (com.zimbra.soap.admin.message.GetMailboxRequest)2
RemoveAccountAliasRequest (com.zimbra.soap.admin.message.RemoveAccountAliasRequest)2
RenameAccountRequest (com.zimbra.soap.admin.message.RenameAccountRequest)2
MailboxByAccountIdSelector (com.zimbra.soap.admin.type.MailboxByAccountIdSelector)2
Test (org.junit.Test)2
AccountBy (com.zimbra.common.account.Key.AccountBy)1
Element (com.zimbra.common.soap.Element)1
QueueAttr (com.zimbra.cs.rmgmt.RemoteMailQueue.QueueAttr)1
ZimbraSoapContext (com.zimbra.soap.ZimbraSoapContext)1
CreateAccountRequest (com.zimbra.soap.admin.message.CreateAccountRequest)1
CreateAccountResponse (com.zimbra.soap.admin.message.CreateAccountResponse)1
