Example 76 with SecurityException
use of org.apache.directory.fortress.core.SecurityException in project directory-fortress-core by apache.
the class AccelMgrImplTest method createSessions.
/**
* @param msg
* @param uArray
* @param rArray
*/
public static void createSessions(String msg, String[][] uArray, String[][] rArray) {
LogUtil.logIt(msg);
try {
AccelMgr accelMgr = AccelMgrFactory.createInstance(TestUtils.getContext());
for (String[] usr : uArray) {
User user = UserTestData.getUser(usr);
Session session = accelMgr.createSession(user, false);
assertNotNull(session);
accelMgr.deleteSession(session);
// now try negative test case:
try {
User userBad = new User(user.getUserId(), "badpw");
accelMgr.createSession(userBad, false);
fail(CLS_NM + ".createSessions failed negative test");
} catch (SecurityException se) {
assertTrue(CLS_NM + "createSessions excep id check", se.getErrorId() == GlobalErrIds.USER_PW_INVLD);
// pass
}
}
LOG.debug("createSessions successful");
} catch (SecurityException ex) {
LOG.error("createSessions: failed with SecurityException rc=" + ex.getErrorId() + ", " + "msg=" + ex.getMessage(), ex);
fail(ex.getMessage());
}
}
Also used :
User(org.apache.directory.fortress.core.model.User)
AccelMgr(org.apache.directory.fortress.core.AccelMgr)
SecurityException(org.apache.directory.fortress.core.SecurityException)
Session(org.apache.directory.fortress.core.model.Session)
Example 77 with SecurityException
use of org.apache.directory.fortress.core.SecurityException in project directory-fortress-core by apache.
the class AccelMgrImplTest method addActiveRoles.
/**
* @param msg
* @param uArray
* @param rPosArray
* @param rNegArray
*/
public static void addActiveRoles(String msg, String[][] uArray, String[][] rPosArray, String[][] rNegArray) {
LogUtil.logIt(msg);
try {
AccelMgr accelMgr = AccelMgrFactory.createInstance(TestUtils.getContext());
for (String[] usr : uArray) {
User user = UserTestData.getUser(usr);
Session session = accelMgr.createSession(user, false);
assertNotNull(session);
// Attempt to activate roles that aren't assigned to user:
for (String[] badRle : rNegArray) {
try {
// Add Role (this better fail):
accelMgr.addActiveRole(session, new UserRole(user.getUserId(), RoleTestData.getName(badRle)));
String error = "addActiveRoles failed negative test 1 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(badRle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_ACTIVATE_FAILED);
// pass
}
}
// remove all roles from the user's session:
int ctr = rPosArray.length;
for (String[] rle : rPosArray) {
// Drop Role:
accelMgr.dropActiveRole(session, new UserRole(user.getUserId(), RoleTestData.getName(rle)));
// session)
try {
// Drop Role3 (this better fail):
accelMgr.dropActiveRole(session, new UserRole(user.getUserId(), RoleTestData.getName(rle)));
String error = "addActiveRoles failed negative test 2 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(rle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_NOT_ACTIVE);
}
}
// Now activate the list of assigned roles:
ctr = 0;
for (String[] rle : rPosArray) {
// Activate Role(s):
accelMgr.addActiveRole(session, new UserRole(user.getUserId(), RoleTestData.getName(rle)));
// TODO: this does not work with RAO - fix me.
try {
// Activate Role again (this should throw SecurityException):
accelMgr.addActiveRole(session, new UserRole(user.getUserId(), RoleTestData.getName(rle)));
String error = "addActiveRoles failed test 3 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(rle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_ALREADY_ACTIVE);
// this is good
}
}
accelMgr.deleteSession(session);
}
} catch (SecurityException ex) {
LOG.error("addActiveRoles: failed with SecurityException rc=" + ex.getErrorId() + ", " + "msg=" + ex.getMessage(), ex);
fail(ex.getMessage());
}
}
Also used :
User(org.apache.directory.fortress.core.model.User)
AccelMgr(org.apache.directory.fortress.core.AccelMgr)
UserRole(org.apache.directory.fortress.core.model.UserRole)
SecurityException(org.apache.directory.fortress.core.SecurityException)
Session(org.apache.directory.fortress.core.model.Session)
Example 78 with SecurityException
use of org.apache.directory.fortress.core.SecurityException in project directory-fortress-core by apache.
the class AccessMgrImplTest method authenticateLockedUsers.
/**
* @param msg
* @param uArray
*/
private static void authenticateLockedUsers(String msg, String[][] uArray) {
LogUtil.logIt(msg);
try {
AccessMgr accessMgr = AccessMgrFactory.createInstance(TestUtils.getContext());
for (String[] usr : uArray) {
User user = UserTestData.getUser(usr);
// now try negative test case:
try {
accessMgr.authenticate(user.getUserId(), user.getPassword());
fail(CLS_NM + ".authenticateLockedUsers failed test");
} catch (SecurityException se) {
assertTrue(CLS_NM + "authenticateLockedUsers reset excep id check", se.getErrorId() == GlobalErrIds.USER_PW_LOCKED);
// pass
// LOG.error("locked=" + se.getMsgid() + " msg=" + se.getMessage());
}
}
LOG.debug("authenticateLockedUsers successful");
} catch (SecurityException ex) {
LOG.error("authenticateLockedUsers: failed with SecurityException rc=" + ex.getErrorId() + ", msg=" + ex.getMessage(), ex);
fail(ex.getMessage());
}
}
Also used :
User(org.apache.directory.fortress.core.model.User)
AccessMgr(org.apache.directory.fortress.core.AccessMgr)
SecurityException(org.apache.directory.fortress.core.SecurityException)
Example 79 with SecurityException
use of org.apache.directory.fortress.core.SecurityException in project directory-fortress-core by apache.
the class AccessMgrImplTest method addActiveRoles.
/**
* @param msg
* @param uArray
* @param rPosArray
* @param rNegArray
*/
public static void addActiveRoles(String msg, String[][] uArray, String[][] rPosArray, String[][] rNegArray) {
LogUtil.logIt(msg);
try {
AccessMgr accessMgr = AccessMgrFactory.createInstance(TestUtils.getContext());
for (String[] usr : uArray) {
User user = UserTestData.getUser(usr);
Session session = accessMgr.createSession(user, false);
assertNotNull(session);
List<UserRole> uRoles = session.getRoles();
assertNotNull(uRoles);
assertEquals(CLS_NM + ".addActiveRoles failed list size user[" + user.getUserId() + "]", rPosArray.length, uRoles.size());
for (String[] rle : rPosArray) {
assertTrue(CLS_NM + ".addActiveRoles failed role search USER [" + user.getUserId() + "] ROLE [" + RoleTestData.getName(rle) + "] should be present", uRoles.contains(RoleTestData.getUserRole(UserTestData.getUserId(usr), rle)));
}
// Attempt to activate roles that aren't assigned to user:
for (String[] badRle : rNegArray) {
try {
// Add Role (this better fail):
accessMgr.addActiveRole(session, new UserRole(RoleTestData.getName(badRle)));
String error = "addActiveRoles failed negative test 1 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(badRle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_ACTIVATE_FAILED);
// pass
}
}
// remove all roles from the user's session:
int ctr = rPosArray.length;
for (String[] rle : rPosArray) {
// Drop Role:
accessMgr.dropActiveRole(session, new UserRole(RoleTestData.getName(rle)));
assertEquals(CLS_NM + ".addActiveRoles failed list size user[" + user.getUserId() + "]", (--ctr), session.getRoles().size());
assertTrue(CLS_NM + ".addActiveRoles failed role search USER [" + user.getUserId() + "] ROLE [" + RoleTestData.getName(rle) + "] should not contain role", !session.getRoles().contains(RoleTestData.getUserRole(UserTestData.getUserId(usr), rle)));
// Drop Role again: (This better fail because role has already been deactivated from user's session)
try {
// Drop Role3 (this better fail):
accessMgr.dropActiveRole(session, new UserRole(RoleTestData.getName(rle)));
String error = "addActiveRoles failed negative test 2 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(rle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_NOT_ACTIVE);
}
}
// Now activate the list of assigned roles:
ctr = 0;
for (String[] rle : rPosArray) {
// Activate Role(s):
accessMgr.addActiveRole(session, new UserRole(RoleTestData.getName(rle)));
uRoles = session.getRoles();
assertEquals(CLS_NM + ".addActiveRoles failed list size user [" + user.getUserId() + "]", ++ctr, uRoles.size());
assertTrue(CLS_NM + ".addActiveRoles failed role search USER [" + user.getUserId() + "] ROLE [" + RoleTestData.getName(rle) + "] should contain role", uRoles.contains(RoleTestData.getUserRole(UserTestData.getUserId(usr), rle)));
try {
// Activate Role again (this should throw SecurityException):
accessMgr.addActiveRole(session, new UserRole(RoleTestData.getName(rle)));
String error = "addActiveRoles failed test 3 User [" + user.getUserId() + "] Role [" + RoleTestData.getName(rle) + "]";
LOG.info(error);
fail(error);
} catch (SecurityException se) {
assertTrue(CLS_NM + "addActiveRoles excep id check", se.getErrorId() == GlobalErrIds.URLE_ALREADY_ACTIVE);
// this is good
}
}
}
} catch (SecurityException ex) {
LOG.error("addActiveRoles: failed with SecurityException rc=" + ex.getErrorId() + ", msg=" + ex.getMessage(), ex);
fail(ex.getMessage());
}
}
Also used :
User(org.apache.directory.fortress.core.model.User)
AccessMgr(org.apache.directory.fortress.core.AccessMgr)
UserRole(org.apache.directory.fortress.core.model.UserRole)
SecurityException(org.apache.directory.fortress.core.SecurityException)
Session(org.apache.directory.fortress.core.model.Session)
Example 80 with SecurityException
use of org.apache.directory.fortress.core.SecurityException in project directory-fortress-core by apache.
the class AccessMgrImplTest method getUserIds.
/**
* @param msg
* @param uArray
*/
public static void getUserIds(String msg, String[][] uArray) {
LogUtil.logIt(msg);
try {
AccessMgr accessMgr = AccessMgrFactory.createInstance(TestUtils.getContext());
for (String[] usr : uArray) {
User user = UserTestData.getUser(usr);
Session session = accessMgr.authenticate(user.getUserId(), user.getPassword());
assertNotNull(session);
String userId = accessMgr.getUserId(session);
assertTrue("getUserIds failed compare found userId [" + userId + "] valid userId [" + UserTestData.getUserId(usr) + "]", userId.equalsIgnoreCase(UserTestData.getUserId(usr)));
}
LOG.debug("getUserIds successful");
} catch (SecurityException ex) {
LOG.error("getUserIds: failed with SecurityException rc=" + ex.getErrorId() + ", msg=" + ex.getMessage(), ex);
fail(ex.getMessage());
}
}
Also used :
User(org.apache.directory.fortress.core.model.User)
AccessMgr(org.apache.directory.fortress.core.AccessMgr)
SecurityException(org.apache.directory.fortress.core.SecurityException)
Session(org.apache.directory.fortress.core.model.Session)
Aggregations
SecurityException (org.apache.directory.fortress.core.SecurityException)441
FortRequest (org.apache.directory.fortress.core.model.FortRequest)152
FortResponse (org.apache.directory.fortress.core.model.FortResponse)152
User (org.apache.directory.fortress.core.model.User)125
AdminMgr (org.apache.directory.fortress.core.AdminMgr)89
UserRole (org.apache.directory.fortress.core.model.UserRole)88
Role (org.apache.directory.fortress.core.model.Role)66
ReviewMgr (org.apache.directory.fortress.core.ReviewMgr)65
Session (org.apache.directory.fortress.core.model.Session)59
Permission (org.apache.directory.fortress.core.model.Permission)56
AccessMgr (org.apache.directory.fortress.core.AccessMgr)41
DelAdminMgr (org.apache.directory.fortress.core.DelAdminMgr)39
SDSet (org.apache.directory.fortress.core.model.SDSet)37
OrgUnit (org.apache.directory.fortress.core.model.OrgUnit)36
RoleConstraint (org.apache.directory.fortress.core.model.RoleConstraint)34
UserAdminRole (org.apache.directory.fortress.core.model.UserAdminRole)33
AdminRole (org.apache.directory.fortress.core.model.AdminRole)25
PermObj (org.apache.directory.fortress.core.model.PermObj)22
Group (org.apache.directory.fortress.core.model.Group)19
PwPolicyMgr (org.apache.directory.fortress.core.PwPolicyMgr)17
