Example 1 with PrincipalImpl
use of org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl in project jackrabbit-oak by apache.
the class RemoveMembersTest method beforeSuite.
@Override
public void beforeSuite() throws Exception {
super.beforeSuite();
Session s = loginAdministrative();
try {
UserManager userManager = ((JackrabbitSession) s).getUserManager();
createUsers(userManager);
for (int i = 0; i <= GROUP_CNT; i++) {
Group g = userManager.createGroup(new PrincipalImpl(GROUP + i), REL_TEST_PATH);
groupPaths.add(g.getPath());
List<String> ids = new ArrayList<String>();
for (int j = 0; j <= numberOfMembers; j++) {
ids.add(USER + j);
}
g.addMembers(ids.toArray(new String[ids.size()]));
s.save();
}
} finally {
s.logout();
}
System.out.println("setup done");
}
Also used :
Group(org.apache.jackrabbit.api.security.user.Group)
UserManager(org.apache.jackrabbit.api.security.user.UserManager)
ArrayList(java.util.ArrayList)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Session(javax.jcr.Session)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
Example 2 with PrincipalImpl
use of org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl in project jackrabbit-oak by apache.
the class AbstractExternalTest method beforeSuite.
@Override
protected void beforeSuite() throws Exception {
Set<String> autoMembership = syncConfig.user().getAutoMembership();
if (!autoMembership.isEmpty()) {
Session s = systemLogin();
UserManager userManager = ((JackrabbitSession) s).getUserManager();
for (String groupId : autoMembership) {
userManager.createGroup(groupId, new PrincipalImpl(groupId), PATH_PREFIX);
}
s.save();
}
}
Also used :
UserManager(org.apache.jackrabbit.api.security.user.UserManager)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Session(javax.jcr.Session)
JackrabbitSession(org.apache.jackrabbit.api.JackrabbitSession)
Example 3 with PrincipalImpl
use of org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl in project jackrabbit-oak by apache.
the class ExternalLoginModuleAutoMembershipTest method testLoginAfterSyncSetup5.
@Test
public void testLoginAfterSyncSetup5() throws Exception {
setup5.sync(USER_ID, false);
ContentSession cs = null;
try {
cs = login(new SimpleCredentials(USER_ID, new char[0]));
// the login must not set any auto-membership principals to the subject
// as auto-membership is not configured on this setup.
Set<Principal> principals = cs.getAuthInfo().getPrincipals();
Set<Principal> expected = ImmutableSet.of(EveryonePrincipal.getInstance(), userManager.getAuthorizable(USER_ID).getPrincipal());
assertEquals(expected, principals);
assertFalse(principals.contains(new PrincipalImpl(NON_EXISTING_NAME)));
assertFalse(principals.contains(setup1.gr.getPrincipal()));
assertFalse(principals.contains(setup2.gr.getPrincipal()));
assertFalse(principals.contains(setup3.gr.getPrincipal()));
assertFalse(principals.contains(setup4.gr.getPrincipal()));
} finally {
options.clear();
if (cs != null) {
cs.close();
}
}
}
Also used :
SimpleCredentials(javax.jcr.SimpleCredentials)
ContentSession(org.apache.jackrabbit.oak.api.ContentSession)
EveryonePrincipal(org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)
Principal(java.security.Principal)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Test(org.junit.Test)
Example 4 with PrincipalImpl
use of org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl in project jackrabbit-oak by apache.
the class ExternalLoginModuleAutoMembershipTest method testLoginAfterSyncSetup1.
@Test
public void testLoginAfterSyncSetup1() throws Exception {
setup1.sync(USER_ID, false);
ContentSession cs = null;
try {
cs = login(new SimpleCredentials(USER_ID, new char[0]));
// the login must set the configured + existing auto-membership principals
// to the subject; non-existing auto-membership entries must be ignored.
Set<Principal> principals = cs.getAuthInfo().getPrincipals();
assertTrue(principals.contains(setup1.gr.getPrincipal()));
assertFalse(principals.contains(new PrincipalImpl(NON_EXISTING_NAME)));
assertFalse(principals.contains(setup2.gr.getPrincipal()));
assertFalse(principals.contains(setup3.gr.getPrincipal()));
// however, the existing auto-membership group must _not_ have changed
// and the test user must not be a stored member of this group.
root.refresh();
UserManager uMgr = getUserManager(root);
User user = uMgr.getAuthorizable(USER_ID, User.class);
Group gr = uMgr.getAuthorizable(setup1.gr.getID(), Group.class);
assertFalse(gr.isDeclaredMember(user));
assertFalse(gr.isMember(user));
} finally {
options.clear();
if (cs != null) {
cs.close();
}
}
}
Also used :
SimpleCredentials(javax.jcr.SimpleCredentials)
Group(org.apache.jackrabbit.api.security.user.Group)
User(org.apache.jackrabbit.api.security.user.User)
UserManager(org.apache.jackrabbit.api.security.user.UserManager)
ContentSession(org.apache.jackrabbit.oak.api.ContentSession)
EveryonePrincipal(org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)
Principal(java.security.Principal)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
Test(org.junit.Test)
Example 5 with PrincipalImpl
use of org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl in project jackrabbit-oak by apache.
the class AbstractGroupPrincipalTest method testIsMemberOfEveryone.
@Test
public void testIsMemberOfEveryone() throws Exception {
final Principal p = getTestUser().getPrincipal();
assertTrue(everyoneAgp.isMember(p));
assertTrue(everyoneAgp.isMember(new PrincipalImpl(p.getName())));
assertTrue(everyoneAgp.isMember(new Principal() {
@Override
public String getName() {
return p.getName();
}
}));
}
Also used :
Principal(java.security.Principal)
EveryonePrincipal(org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)
PrincipalImpl(org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)
AbstractSecurityTest(org.apache.jackrabbit.oak.AbstractSecurityTest)
Test(org.junit.Test)
Aggregations
PrincipalImpl (org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl)96
Test (org.junit.Test)66
Principal (java.security.Principal)40
AbstractSecurityTest (org.apache.jackrabbit.oak.AbstractSecurityTest)24
Group (org.apache.jackrabbit.api.security.user.Group)22
User (org.apache.jackrabbit.api.security.user.User)20
EveryonePrincipal (org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal)20
UserManager (org.apache.jackrabbit.api.security.user.UserManager)16
Authorizable (org.apache.jackrabbit.api.security.user.Authorizable)15
JackrabbitSession (org.apache.jackrabbit.api.JackrabbitSession)12
GroupPrincipal (org.apache.jackrabbit.api.security.principal.GroupPrincipal)11
Session (javax.jcr.Session)9
SimpleCredentials (javax.jcr.SimpleCredentials)7
ContentSession (org.apache.jackrabbit.oak.api.ContentSession)6
ExternalUser (org.apache.jackrabbit.oak.spi.security.authentication.external.ExternalUser)6
CugPolicy (org.apache.jackrabbit.oak.spi.security.authorization.cug.CugPolicy)6
HashSet (java.util.HashSet)5
ExternalGroup (org.apache.jackrabbit.oak.spi.security.authentication.external.ExternalGroup)5
AuthorizationConfiguration (org.apache.jackrabbit.oak.spi.security.authorization.AuthorizationConfiguration)5
EmptyPermissionProvider (org.apache.jackrabbit.oak.spi.security.authorization.permission.EmptyPermissionProvider)5
