use of eu.bcvsolutions.idm.core.security.api.dto.LoginDto in project CzechIdMng by bcvsolutions.
the class RoleRequestByIdentityEvaluatorIntegrationTest method testCannotReadRoleRequestByIdentity.
@Test(expected = ForbiddenEntityException.class)
public void testCannotReadRoleRequestByIdentity() {
IdmIdentityDto identityOne = helper.createIdentity();
IdmIdentityDto identityTwo = helper.createIdentity();
//
IdmRoleDto role = helper.createRole();
helper.createIdentityRole(identityTwo, role);
IdmRoleRequestDto roleRequest = helper.assignRoles(helper.getPrimeContract(identityOne.getId()), role);
//
try {
loginService.login(new LoginDto(identityTwo.getUsername(), identityTwo.getPassword()));
//
roleRequestService.get(roleRequest.getId(), IdmBasePermission.READ);
} finally {
logout();
}
}
use of eu.bcvsolutions.idm.core.security.api.dto.LoginDto in project CzechIdMng by bcvsolutions.
the class RoleRequestByIdentityEvaluatorIntegrationTest method testCreateRoleRequestForOtherIdentity.
@Test
public void testCreateRoleRequestForOtherIdentity() {
IdmIdentityDto identityOne = helper.createIdentity();
IdmIdentityDto identityTwo = helper.createIdentity();
// create policy
IdmRoleDto role = helper.createRole();
helper.createUuidPolicy(role.getId(), identityTwo.getId(), IdentityBasePermission.CHANGEPERMISSION);
helper.createIdentityRole(identityOne, role);
// assign default role
helper.createIdentityRole(identityOne, roleService.getByCode(InitDemoData.DEFAULT_ROLE_NAME));
//
try {
loginService.login(new LoginDto(identityOne.getUsername(), identityOne.getPassword()));
//
IdmRoleRequestDto roleRequest = new IdmRoleRequestDto();
roleRequest.setApplicant(identityTwo.getId());
roleRequest.setRequestedByType(RoleRequestedByType.MANUALLY);
roleRequest = roleRequestService.save(roleRequest, IdmBasePermission.CREATE);
//
Assert.notNull(roleRequest.getId());
} finally {
logout();
}
}
use of eu.bcvsolutions.idm.core.security.api.dto.LoginDto in project CzechIdMng by bcvsolutions.
the class RoleTransitiveEvaluatorsIntegrationTest method testCreateAutomaticRole.
@Test(expected = ForbiddenEntityException.class)
public void testCreateAutomaticRole() {
IdmIdentityDto identity = createIdentityWithRole(true);
//
try {
loginService.login(new LoginDto(identity.getUsername(), identity.getPassword()));
//
IdmRoleDto role = roleService.get(TEST_ROLE_ID, IdmBasePermission.READ);
IdmRoleTreeNodeDto roleTreeNode = new IdmRoleTreeNodeDto();
roleTreeNode.setRole(role.getId());
roleTreeNode.setTreeNode(helper.createTreeNode().getId());
roleTreeNodeService.save(roleTreeNode, IdmBasePermission.UPDATE);
} finally {
logout();
}
}
use of eu.bcvsolutions.idm.core.security.api.dto.LoginDto in project CzechIdMng by bcvsolutions.
the class RoleTransitiveEvaluatorsIntegrationTest method testReadRoleWithoutTransitiveEvaluators.
@Test
public void testReadRoleWithoutTransitiveEvaluators() {
IdmIdentityDto identity = createIdentityWithRole(false);
//
try {
loginService.login(new LoginDto(identity.getUsername(), identity.getPassword()));
//
IdmRoleDto readRole = roleService.get(TEST_ROLE_ID, IdmBasePermission.READ);
assertEquals(TEST_ROLE_ID, readRole.getId());
assertEquals(1, roleService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(0, roleTreeNodeService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(0, authorizationPolicyService.find(null, IdmBasePermission.READ).getTotalElements());
} finally {
logout();
}
}
use of eu.bcvsolutions.idm.core.security.api.dto.LoginDto in project CzechIdMng by bcvsolutions.
the class RoleTransitiveEvaluatorsIntegrationTest method testDisabledEvaluator.
@Test
public void testDisabledEvaluator() {
IdmIdentityDto identity = createIdentityWithRole(true);
IdmRoleDto role = null;
// before disbale
try {
loginService.login(new LoginDto(identity.getUsername(), identity.getPassword()));
//
role = roleService.get(TEST_ROLE_ID, IdmBasePermission.READ);
assertEquals(TEST_ROLE_ID, role.getId());
assertEquals(1, roleService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(1, roleTreeNodeService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(3, authorizationPolicyService.find(null, IdmBasePermission.READ).getTotalElements());
} finally {
logout();
}
//
// disable policy
loginAsAdmin(InitTestData.TEST_ADMIN_USERNAME);
// TODO: disable configurable api
CodeableEvaluator evaluator = new CodeableEvaluator();
configurationService.setBooleanValue(evaluator.getConfigurationPropertyName(ConfigurationService.PROPERTY_ENABLED), false);
logout();
// after disable
try {
loginService.login(new LoginDto(identity.getUsername(), identity.getPassword()));
//
assertEquals(0, roleService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(0, roleTreeNodeService.find(null, IdmBasePermission.READ).getTotalElements());
assertEquals(0, authorizationPolicyService.find(null, IdmBasePermission.READ).getTotalElements());
} finally {
logout();
// enable policy
loginAsAdmin(InitTestData.TEST_ADMIN_USERNAME);
// TODO: disable configurable api
configurationService.setBooleanValue(evaluator.getConfigurationPropertyName(ConfigurationService.PROPERTY_ENABLED), true);
logout();
}
}
Aggregations