Example 41 with StandardPropertyValue
use of org.apache.nifi.attribute.expression.language.StandardPropertyValue in project nifi by apache.
the class FileAuthorizerTest method testOnConfiguredWhenLegacyUsersFileProvidedWithIdentityMappings.
@Test
public void testOnConfiguredWhenLegacyUsersFileProvidedWithIdentityMappings() throws Exception {
final Properties props = new Properties();
props.setProperty("nifi.security.identity.mapping.pattern.dn1", "^CN=(.*?), OU=(.*?), O=(.*?), L=(.*?), ST=(.*?), C=(.*?)$");
props.setProperty("nifi.security.identity.mapping.value.dn1", "$1");
properties = getNiFiProperties(props);
when(properties.getRestoreDirectory()).thenReturn(restoreAuthorizations.getParentFile());
when(properties.getFlowConfigurationFile()).thenReturn(flowWithDns);
authorizer.setNiFiProperties(properties);
when(configurationContext.getProperty(Mockito.eq(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE))).thenReturn(new StandardPropertyValue("src/test/resources/authorized-users-with-dns.xml", null));
writeFile(primaryAuthorizations, EMPTY_AUTHORIZATIONS_CONCISE);
writeFile(primaryTenants, EMPTY_TENANTS_CONCISE);
authorizer.onConfigured(configurationContext);
final User user1 = authorizer.getUserByIdentity("user1");
assertNotNull(user1);
final User user2 = authorizer.getUserByIdentity("user2");
assertNotNull(user2);
final User user3 = authorizer.getUserByIdentity("user3");
assertNotNull(user3);
final User user4 = authorizer.getUserByIdentity("user4");
assertNotNull(user4);
final User user5 = authorizer.getUserByIdentity("user5");
assertNotNull(user5);
final User user6 = authorizer.getUserByIdentity("user6");
assertNotNull(user6);
// verify one group got created
final Set<Group> groups = authorizer.getGroups();
assertEquals(1, groups.size());
final Group group1 = groups.iterator().next();
assertEquals("group1", group1.getName());
final Resource inputPortResource = ResourceFactory.getDataTransferResource(ResourceFactory.getComponentResource(ResourceType.InputPort, "2f7d1606-b090-4be7-a592-a5b70fb55531", "TCP Input"));
final AccessPolicy inputPortPolicy = authorizer.getUsersAndAccessPolicies().getAccessPolicy(inputPortResource.getIdentifier(), RequestAction.WRITE);
assertNotNull(inputPortPolicy);
assertEquals(1, inputPortPolicy.getUsers().size());
assertTrue(inputPortPolicy.getUsers().contains(user6.getIdentifier()));
assertEquals(1, inputPortPolicy.getGroups().size());
assertTrue(inputPortPolicy.getGroups().contains(group1.getIdentifier()));
final Resource outputPortResource = ResourceFactory.getDataTransferResource(ResourceFactory.getComponentResource(ResourceType.OutputPort, "2f7d1606-b090-4be7-a592-a5b70fb55532", "TCP Output"));
final AccessPolicy outputPortPolicy = authorizer.getUsersAndAccessPolicies().getAccessPolicy(outputPortResource.getIdentifier(), RequestAction.WRITE);
assertNotNull(outputPortPolicy);
assertEquals(1, outputPortPolicy.getUsers().size());
assertTrue(outputPortPolicy.getUsers().contains(user4.getIdentifier()));
}
Also used :
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
Properties(java.util.Properties)
NiFiProperties(org.apache.nifi.util.NiFiProperties)
Test(org.junit.Test)
Example 42 with StandardPropertyValue
use of org.apache.nifi.attribute.expression.language.StandardPropertyValue in project nifi by apache.
the class FileUserGroupProviderTest method setup.
@Before
public void setup() throws IOException {
// primary tenants
primaryTenants = new File("target/authorizations/users.xml");
FileUtils.ensureDirectoryExistAndCanAccess(primaryTenants.getParentFile());
// restore authorizations
restoreTenants = new File("target/restore/users.xml");
FileUtils.ensureDirectoryExistAndCanAccess(restoreTenants.getParentFile());
properties = mock(NiFiProperties.class);
when(properties.getRestoreDirectory()).thenReturn(restoreTenants.getParentFile());
configurationContext = mock(AuthorizerConfigurationContext.class);
when(configurationContext.getProperty(eq(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE))).thenReturn(new StandardPropertyValue(null, null));
when(configurationContext.getProperty(eq(FileUserGroupProvider.PROP_TENANTS_FILE))).thenReturn(new StandardPropertyValue(primaryTenants.getPath(), null));
when(configurationContext.getProperties()).then((invocation) -> {
final Map<String, String> properties = new HashMap<>();
final PropertyValue tenantFile = configurationContext.getProperty(FileUserGroupProvider.PROP_TENANTS_FILE);
if (tenantFile != null) {
properties.put(FileUserGroupProvider.PROP_TENANTS_FILE, tenantFile.getValue());
}
final PropertyValue legacyAuthFile = configurationContext.getProperty(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE);
if (legacyAuthFile != null) {
properties.put(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE, legacyAuthFile.getValue());
}
int i = 1;
while (true) {
final String key = FileUserGroupProvider.PROP_INITIAL_USER_IDENTITY_PREFIX + i++;
final PropertyValue value = configurationContext.getProperty(key);
if (value == null) {
break;
} else {
properties.put(key, value.getValue());
}
}
return properties;
});
userGroupProvider = new FileUserGroupProvider();
userGroupProvider.setNiFiProperties(properties);
userGroupProvider.initialize(null);
}
Also used :
NiFiProperties(org.apache.nifi.util.NiFiProperties)
HashMap(java.util.HashMap)
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
PropertyValue(org.apache.nifi.components.PropertyValue)
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
Matchers.anyString(org.mockito.Matchers.anyString)
File(java.io.File)
Before(org.junit.Before)
Example 43 with StandardPropertyValue
use of org.apache.nifi.attribute.expression.language.StandardPropertyValue in project nifi by apache.
the class FileUserGroupProviderTest method testOnConfiguredWhenTenantsExistAndInitialUsersProvided.
@Test
public void testOnConfiguredWhenTenantsExistAndInitialUsersProvided() throws Exception {
final String adminIdentity = "admin-user";
final String nodeIdentity1 = "node-identity-1";
final String nodeIdentity2 = "node-identity-2";
// despite setting initial users, they will not be loaded as the tenants file is non-empty
when(configurationContext.getProperty(eq(FileUserGroupProvider.PROP_INITIAL_USER_IDENTITY_PREFIX + "1"))).thenReturn(new StandardPropertyValue(adminIdentity, null));
when(configurationContext.getProperty(eq(FileUserGroupProvider.PROP_INITIAL_USER_IDENTITY_PREFIX + "2"))).thenReturn(new StandardPropertyValue(nodeIdentity1, null));
when(configurationContext.getProperty(eq(FileUserGroupProvider.PROP_INITIAL_USER_IDENTITY_PREFIX + "3"))).thenReturn(new StandardPropertyValue(nodeIdentity2, null));
writeFile(primaryTenants, SIMPLE_TENANTS_BY_USER);
userGroupProvider.onConfigured(configurationContext);
final Set<User> users = userGroupProvider.getUsers();
assertEquals(2, users.size());
assertTrue(users.contains(new User.Builder().identifier("user-1").identity("user-1").build()));
assertTrue(users.contains(new User.Builder().identifier("user-2").identity("user-2").build()));
}
Also used :
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
Matchers.anyString(org.mockito.Matchers.anyString)
Test(org.junit.Test)
Example 44 with StandardPropertyValue
use of org.apache.nifi.attribute.expression.language.StandardPropertyValue in project nifi by apache.
the class FileUserGroupProviderTest method testOnConfiguredWhenLegacyUsersFileProvidedWithIdentityMappings.
@Test
public void testOnConfiguredWhenLegacyUsersFileProvidedWithIdentityMappings() throws Exception {
final Properties props = new Properties();
props.setProperty("nifi.security.identity.mapping.pattern.dn1", "^CN=(.*?), OU=(.*?), O=(.*?), L=(.*?), ST=(.*?), C=(.*?)$");
props.setProperty("nifi.security.identity.mapping.value.dn1", "$1");
properties = getNiFiProperties(props);
when(properties.getRestoreDirectory()).thenReturn(restoreTenants.getParentFile());
userGroupProvider.setNiFiProperties(properties);
when(configurationContext.getProperty(eq(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE))).thenReturn(new StandardPropertyValue("src/test/resources/authorized-users-with-dns.xml", null));
writeFile(primaryTenants, EMPTY_TENANTS_CONCISE);
userGroupProvider.onConfigured(configurationContext);
final User user1 = userGroupProvider.getUserByIdentity("user1");
assertNotNull(user1);
final User user2 = userGroupProvider.getUserByIdentity("user2");
assertNotNull(user2);
final User user3 = userGroupProvider.getUserByIdentity("user3");
assertNotNull(user3);
final User user4 = userGroupProvider.getUserByIdentity("user4");
assertNotNull(user4);
final User user5 = userGroupProvider.getUserByIdentity("user5");
assertNotNull(user5);
final User user6 = userGroupProvider.getUserByIdentity("user6");
assertNotNull(user6);
// verify one group got created
final Set<Group> groups = userGroupProvider.getGroups();
assertEquals(1, groups.size());
final Group group1 = groups.iterator().next();
assertEquals("group1", group1.getName());
}
Also used :
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
Properties(java.util.Properties)
NiFiProperties(org.apache.nifi.util.NiFiProperties)
Test(org.junit.Test)
Example 45 with StandardPropertyValue
use of org.apache.nifi.attribute.expression.language.StandardPropertyValue in project nifi by apache.
the class FileUserGroupProviderTest method testOnConfiguredWhenLegacyUsersFileProvided.
@Test
public void testOnConfiguredWhenLegacyUsersFileProvided() throws Exception {
when(configurationContext.getProperty(eq(FileAuthorizer.PROP_LEGACY_AUTHORIZED_USERS_FILE))).thenReturn(new StandardPropertyValue("src/test/resources/authorized-users.xml", null));
writeFile(primaryTenants, EMPTY_TENANTS_CONCISE);
userGroupProvider.onConfigured(configurationContext);
// verify all users got created correctly
final Set<User> users = userGroupProvider.getUsers();
assertEquals(6, users.size());
final User user1 = userGroupProvider.getUserByIdentity("user1");
assertNotNull(user1);
final User user2 = userGroupProvider.getUserByIdentity("user2");
assertNotNull(user2);
final User user3 = userGroupProvider.getUserByIdentity("user3");
assertNotNull(user3);
final User user4 = userGroupProvider.getUserByIdentity("user4");
assertNotNull(user4);
final User user5 = userGroupProvider.getUserByIdentity("user5");
assertNotNull(user5);
final User user6 = userGroupProvider.getUserByIdentity("user6");
assertNotNull(user6);
// verify one group got created
final Set<Group> groups = userGroupProvider.getGroups();
assertEquals(1, groups.size());
final Group group1 = groups.iterator().next();
assertEquals("group1", group1.getName());
}
Also used :
StandardPropertyValue(org.apache.nifi.attribute.expression.language.StandardPropertyValue)
Test(org.junit.Test)
Aggregations
StandardPropertyValue (org.apache.nifi.attribute.expression.language.StandardPropertyValue)91
Test (org.junit.Test)78
AuthorizerConfigurationContext (org.apache.nifi.authorization.AuthorizerConfigurationContext)33
Matchers.anyString (org.mockito.Matchers.anyString)30
NiFiProperties (org.apache.nifi.util.NiFiProperties)24
PropertyValue (org.apache.nifi.components.PropertyValue)17
HashMap (java.util.HashMap)16
Properties (java.util.Properties)15
Group (org.apache.nifi.authorization.Group)12
Before (org.junit.Before)12
Set (java.util.Set)10
UserAndGroups (org.apache.nifi.authorization.UserAndGroups)10
AuthorizerCreationException (org.apache.nifi.authorization.exception.AuthorizerCreationException)9
CreateLdapServer (org.apache.directory.server.annotations.CreateLdapServer)8
CreateTransport (org.apache.directory.server.annotations.CreateTransport)8
ApplyLdifFiles (org.apache.directory.server.core.annotations.ApplyLdifFiles)8
CreateDS (org.apache.directory.server.core.annotations.CreateDS)8
CreatePartition (org.apache.directory.server.core.annotations.CreatePartition)8
AbstractLdapTestUnit (org.apache.directory.server.core.integ.AbstractLdapTestUnit)8
FrameworkRunner (org.apache.directory.server.core.integ.FrameworkRunner)8
