Search in sources :

Example 6 with RegisteredServiceAccessStrategyAuditableEnforcer

use of org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer in project cas by apereo.

the class OAuth20IdTokenAndTokenResponseTypeAuthorizationRequestValidatorTests method verifySupports.

@Test
public void verifySupports() throws Exception {
    val serviceManager = mock(ServicesManager.class);
    val service = new OAuthRegisteredService();
    service.setName("OAuth");
    service.setClientId("client");
    service.setClientSecret("secret");
    service.setServiceId("https://callback.example.org");
    when(serviceManager.getAllServices()).thenReturn((Collection) CollectionUtils.toCollection(service));
    when(serviceManager.getAllServicesOfType(any())).thenReturn((Collection) CollectionUtils.toCollection(service));
    val v = new OAuth20IdTokenAndTokenResponseTypeAuthorizationRequestValidator(serviceManager, new WebApplicationServiceFactory(), new RegisteredServiceAccessStrategyAuditableEnforcer(new CasConfigurationProperties()));
    val request = new MockHttpServletRequest();
    val response = new MockHttpServletResponse();
    val context = new JEEContext(request, response);
    request.setParameter(OAuth20Constants.RESPONSE_TYPE, OAuth20ResponseTypes.CODE.getType());
    request.setParameter(OAuth20Constants.CLIENT_ID, "client");
    request.setParameter(OAuth20Constants.REDIRECT_URI, service.getServiceId());
    assertFalse(v.supports(context));
    request.setParameter(OAuth20Constants.RESPONSE_TYPE, OAuth20ResponseTypes.IDTOKEN_TOKEN.getType());
    assertTrue(v.supports(context));
}
Also used : lombok.val(lombok.val) RegisteredServiceAccessStrategyAuditableEnforcer(org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer) OAuthRegisteredService(org.apereo.cas.support.oauth.services.OAuthRegisteredService) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) WebApplicationServiceFactory(org.apereo.cas.authentication.principal.WebApplicationServiceFactory) CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties) JEEContext(org.pac4j.core.context.JEEContext) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Example 7 with RegisteredServiceAccessStrategyAuditableEnforcer

use of org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer in project cas by apereo.

the class RegisteredServiceAccessStrategyAuditableEnforcerTests method verifyStAndServiceAndRegisteredServicePresentButDisabled.

@Test
public void verifyStAndServiceAndRegisteredServicePresentButDisabled() {
    val service = createRegisteredService(false);
    val context = AuditableContext.builder().registeredService(service).serviceTicket(createServiceTicket()).authenticationResult(createAuthenticationResult()).build();
    val result = new RegisteredServiceAccessStrategyAuditableEnforcer(new CasConfigurationProperties()).execute(context);
    assertTrue(result.isExecutionFailure());
    assertTrue(result.getException().isPresent());
}
Also used : lombok.val(lombok.val) RegisteredServiceAccessStrategyAuditableEnforcer(org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer) CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties) Test(org.junit.jupiter.api.Test)

Example 8 with RegisteredServiceAccessStrategyAuditableEnforcer

use of org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer in project cas by apereo.

the class RegisteredServiceAccessStrategyAuditableEnforcerTests method verifyServiceAndRegisteredServicePresentAndEnabled.

@Test
public void verifyServiceAndRegisteredServicePresentAndEnabled() {
    val service = createRegisteredService(true);
    val context = AuditableContext.builder().registeredService(service).service(createService()).build();
    val result = new RegisteredServiceAccessStrategyAuditableEnforcer(new CasConfigurationProperties()).execute(context);
    assertFalse(result.isExecutionFailure());
    assertFalse(result.getException().isPresent());
}
Also used : lombok.val(lombok.val) RegisteredServiceAccessStrategyAuditableEnforcer(org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer) CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties) Test(org.junit.jupiter.api.Test)

Example 9 with RegisteredServiceAccessStrategyAuditableEnforcer

use of org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer in project cas by apereo.

the class RegisteredServiceAccessStrategyAuditableEnforcerTests method verifyStAndServiceAndRegisteredServicePresentAndEnabled.

@Test
public void verifyStAndServiceAndRegisteredServicePresentAndEnabled() {
    val service = createRegisteredService(true);
    val context = AuditableContext.builder().registeredService(service).serviceTicket(createServiceTicket()).authenticationResult(createAuthenticationResult()).build();
    val result = new RegisteredServiceAccessStrategyAuditableEnforcer(new CasConfigurationProperties()).execute(context);
    assertFalse(result.isExecutionFailure());
    assertFalse(result.getException().isPresent());
}
Also used : lombok.val(lombok.val) RegisteredServiceAccessStrategyAuditableEnforcer(org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer) CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties) Test(org.junit.jupiter.api.Test)

Example 10 with RegisteredServiceAccessStrategyAuditableEnforcer

use of org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer in project cas by apereo.

the class RegisteredServiceAccessStrategyAuditableEnforcerTests method verifyStRejectedPrincipalAttributesNoFail.

@Test
public void verifyStRejectedPrincipalAttributesNoFail() {
    val service = createRegisteredService(true);
    ((DefaultRegisteredServiceAccessStrategy) service.getAccessStrategy()).setRejectedAttributes(reject(true));
    val context = AuditableContext.builder().registeredService(service).serviceTicket(createServiceTicket()).authenticationResult(createAuthenticationResult()).build();
    val result = new RegisteredServiceAccessStrategyAuditableEnforcer(new CasConfigurationProperties()).execute(context);
    assertFalse(result.isExecutionFailure());
    assertFalse(result.getException().isPresent());
}
Also used : lombok.val(lombok.val) RegisteredServiceAccessStrategyAuditableEnforcer(org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer) CasConfigurationProperties(org.apereo.cas.configuration.CasConfigurationProperties) DefaultRegisteredServiceAccessStrategy(org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy) Test(org.junit.jupiter.api.Test)

Aggregations

lombok.val (lombok.val)25 CasConfigurationProperties (org.apereo.cas.configuration.CasConfigurationProperties)25 RegisteredServiceAccessStrategyAuditableEnforcer (org.apereo.cas.services.RegisteredServiceAccessStrategyAuditableEnforcer)25 Test (org.junit.jupiter.api.Test)22 WebApplicationServiceFactory (org.apereo.cas.authentication.principal.WebApplicationServiceFactory)6 DefaultRegisteredServiceAccessStrategy (org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy)6 OAuthRegisteredService (org.apereo.cas.support.oauth.services.OAuthRegisteredService)4 JEEContext (org.pac4j.core.context.JEEContext)4 MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)4 MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)4 BeforeEach (org.junit.jupiter.api.BeforeEach)2 HashSet (java.util.HashSet)1 LinkedHashMap (java.util.LinkedHashMap)1 DefaultAuthenticationServiceSelectionPlan (org.apereo.cas.authentication.DefaultAuthenticationServiceSelectionPlan)1 DefaultAuthenticationServiceSelectionStrategy (org.apereo.cas.authentication.DefaultAuthenticationServiceSelectionStrategy)1 DefaultRegisteredServiceProperty (org.apereo.cas.services.DefaultRegisteredServiceProperty)1 DefaultServicesManager (org.apereo.cas.services.DefaultServicesManager)1 DefaultServicesManagerRegisteredServiceLocator (org.apereo.cas.services.DefaultServicesManagerRegisteredServiceLocator)1 InMemoryServiceRegistry (org.apereo.cas.services.InMemoryServiceRegistry)1 RegisteredServiceResponseHeadersEnforcementFilter (org.apereo.cas.services.web.support.RegisteredServiceResponseHeadersEnforcementFilter)1