Examples with DefaultRegisteredServiceConsentPolicy org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy used on opensource projects

Search in sources :

Example 11 with DefaultRegisteredServiceConsentPolicy

use of org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy in project cas by apereo.

the class DefaultConsentEngineTests method verifyConsentFound.

@Test
public void verifyConsentFound() throws Exception {
    val authentication = CoreAuthenticationTestUtils.getAuthentication(UUID.randomUUID().toString());
    val service = CoreAuthenticationTestUtils.getService();
    val consentService = CoreAuthenticationTestUtils.getRegisteredService("consentService");
    val policy = new ReturnAllAttributeReleasePolicy();
    policy.setConsentPolicy(new DefaultRegisteredServiceConsentPolicy());
    when(consentService.getAttributeReleasePolicy()).thenReturn(policy);
    val decision = this.consentEngine.storeConsentDecision(service, consentService, authentication, 14, ChronoUnit.DAYS, ConsentReminderOptions.ATTRIBUTE_NAME);
    assertNotNull(decision);
    val decision2 = this.consentEngine.findConsentDecision(service, consentService, authentication);
    assertEquals(decision, decision2);
}
Also used : lombok.val(lombok.val) ReturnAllAttributeReleasePolicy(org.apereo.cas.services.ReturnAllAttributeReleasePolicy) DefaultRegisteredServiceConsentPolicy(org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy) Test(org.junit.jupiter.api.Test) SpringBootTest(org.springframework.boot.test.context.SpringBootTest)

Example 12 with DefaultRegisteredServiceConsentPolicy

use of org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy in project cas by apereo.

the class DefaultConsentEngineTests method verifyConsentExpired.

@Test
public void verifyConsentExpired() throws Exception {
    val authentication = CoreAuthenticationTestUtils.getAuthentication(UUID.randomUUID().toString());
    val service = CoreAuthenticationTestUtils.getService();
    val consentService = RegisteredServiceTestUtils.getRegisteredService("consentService");
    val policy = new ReturnAllAttributeReleasePolicy();
    policy.setConsentPolicy(new DefaultRegisteredServiceConsentPolicy());
    consentService.setAttributeReleasePolicy(policy);
    consentEngine.storeConsentDecision(service, consentService, authentication, -20, ChronoUnit.MONTHS, ConsentReminderOptions.ATTRIBUTE_NAME);
    assertTrue(consentEngine.isConsentRequiredFor(service, consentService, authentication).isRequired());
}
Also used : lombok.val(lombok.val) ReturnAllAttributeReleasePolicy(org.apereo.cas.services.ReturnAllAttributeReleasePolicy) DefaultRegisteredServiceConsentPolicy(org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy) Test(org.junit.jupiter.api.Test) SpringBootTest(org.springframework.boot.test.context.SpringBootTest)

Example 13 with DefaultRegisteredServiceConsentPolicy

use of org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy in project cas by apereo.

the class CheckConsentRequiredActionTests method verifyOperationGlobalConsentActive.

@Test
public void verifyOperationGlobalConsentActive() throws Exception {
    val context = new MockRequestContext();
    val request = new MockHttpServletRequest();
    context.setExternalContext(new ServletExternalContext(new MockServletContext(), request, new MockHttpServletResponse()));
    WebUtils.putAuthentication(CoreAuthenticationTestUtils.getAuthentication(), context);
    val id = UUID.randomUUID().toString();
    val registeredService = RegisteredServiceTestUtils.getRegisteredService(id);
    val attrPolicy = new ReturnAllAttributeReleasePolicy();
    attrPolicy.setConsentPolicy(new DefaultRegisteredServiceConsentPolicy());
    registeredService.setAttributeReleasePolicy(attrPolicy);
    servicesManager.save(registeredService);
    WebUtils.putServiceIntoFlowScope(context, CoreAuthenticationTestUtils.getWebApplicationService(registeredService.getServiceId()));
    assertEquals(CheckConsentRequiredAction.EVENT_ID_CONSENT_REQUIRED, checkConsentRequiredAction.execute(context).getId());
    val flowScope = context.getFlowScope();
    assertTrue(flowScope.contains("attributes"));
    assertTrue(flowScope.contains("principal"));
    assertTrue(flowScope.contains("service"));
    assertTrue(flowScope.contains("option"));
    assertTrue(flowScope.contains("reminder"));
    assertTrue(flowScope.contains("reminderTimeUnit"));
}
Also used : lombok.val(lombok.val) ReturnAllAttributeReleasePolicy(org.apereo.cas.services.ReturnAllAttributeReleasePolicy) DefaultRegisteredServiceConsentPolicy(org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) ServletExternalContext(org.springframework.webflow.context.servlet.ServletExternalContext) MockRequestContext(org.springframework.webflow.test.MockRequestContext) MockServletContext(org.springframework.mock.web.MockServletContext) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Example 14 with DefaultRegisteredServiceConsentPolicy

use of org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy in project cas by apereo.

the class RegisteredServiceTestUtils method getRegisteredServicesForTests.

@SneakyThrows
public static List<RegisteredService> getRegisteredServicesForTests() {
    val list = new ArrayList<RegisteredService>();
    val svc = RegisteredServiceTestUtils.getRegisteredService("testencryption$");
    val policy = new ReturnAllowedAttributeReleasePolicy();
    policy.setAuthorizedToReleaseCredentialPassword(true);
    policy.setAuthorizedToReleaseProxyGrantingTicket(true);
    val publicKey = new RegisteredServicePublicKeyImpl();
    publicKey.setLocation("classpath:keys/RSA1024Public.key");
    svc.setPublicKey(publicKey);
    svc.setAttributeReleasePolicy(policy);
    list.add(svc);
    val svc2 = RegisteredServiceTestUtils.getRegisteredService("testDefault");
    svc2.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc2.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc2);
    val svc3 = RegisteredServiceTestUtils.getRegisteredService("https://example\\.com/normal/.*");
    svc3.setEvaluationOrder(10);
    svc3.setAttributeReleasePolicy(new ReturnAllAttributeReleasePolicy());
    svc3.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc3.setAuthenticationPolicy(new DefaultRegisteredServiceAuthenticationPolicy().setCriteria(new AnyAuthenticationHandlerRegisteredServiceAuthenticationPolicyCriteria()));
    list.add(svc3);
    val svc4 = RegisteredServiceTestUtils.getRegisteredService("https://example\\.com/high/.*");
    svc4.setEvaluationOrder(20);
    svc4.setAttributeReleasePolicy(new ReturnAllAttributeReleasePolicy());
    val handlers = CollectionUtils.wrapHashSet(AcceptUsersAuthenticationHandler.class.getSimpleName(), "TestOneTimePasswordAuthenticationHandler");
    svc4.setAuthenticationPolicy(new DefaultRegisteredServiceAuthenticationPolicy().setRequiredAuthenticationHandlers(handlers).setCriteria(new AnyAuthenticationHandlerRegisteredServiceAuthenticationPolicyCriteria()));
    svc4.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc4);
    val svc5 = RegisteredServiceTestUtils.getRegisteredService("(https://)*google.com$");
    svc5.setEvaluationOrder(1);
    svc5.setProxyPolicy(new RegexMatchingRegisteredServiceProxyPolicy(".+"));
    svc5.setPublicKey(new RegisteredServicePublicKeyImpl("classpath:keys/RSA4096Public.key", "RSA"));
    val policy1 = new ReturnAllowedAttributeReleasePolicy();
    policy1.setAuthorizedToReleaseCredentialPassword(true);
    policy1.setAuthorizedToReleaseProxyGrantingTicket(true);
    policy1.setAllowedAttributes(CollectionUtils.wrap("binaryAttribute"));
    svc5.setAttributeReleasePolicy(policy1);
    svc5.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc5.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc5);
    val svc6 = RegisteredServiceTestUtils.getRegisteredService("eduPersonTest");
    svc6.setUsernameAttributeProvider(new PrincipalAttributeRegisteredServiceUsernameProvider("eduPersonAffiliation"));
    svc6.setAttributeReleasePolicy(new ReturnAllAttributeReleasePolicy());
    svc6.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc6.setProxyPolicy(new RefuseRegisteredServiceProxyPolicy());
    list.add(svc6);
    val svc7 = RegisteredServiceTestUtils.getRegisteredService("testencryption$");
    val policy2 = new ReturnAllowedAttributeReleasePolicy();
    policy2.setAuthorizedToReleaseCredentialPassword(true);
    policy2.setAuthorizedToReleaseProxyGrantingTicket(true);
    svc7.setAttributeReleasePolicy(policy2);
    svc7.setPublicKey(new RegisteredServicePublicKeyImpl("classpath:keys/RSA1024Public.key", "RSA"));
    svc7.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc7.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc7);
    val svc8 = RegisteredServiceTestUtils.getRegisteredService("^TestServiceAttributeForAuthzFails");
    svc8.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(CollectionUtils.wrap("cn", CollectionUtils.wrapSet("cnValue"), "givenName", CollectionUtils.wrapSet("gnameValue"))));
    svc8.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc8);
    val svc9 = RegisteredServiceTestUtils.getRegisteredService("^TestSsoFalse");
    svc9.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(true, false));
    svc9.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc9);
    val svc10 = RegisteredServiceTestUtils.getRegisteredService("TestServiceAttributeForAuthzPasses");
    svc10.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(CollectionUtils.wrap("groupMembership", CollectionUtils.wrapSet("adopters"))));
    svc10.setAttributeReleasePolicy(new ReturnAllAttributeReleasePolicy());
    svc10.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc10);
    val svc11 = RegisteredServiceTestUtils.getRegisteredService("eduPersonTestInvalid");
    svc11.setUsernameAttributeProvider(new PrincipalAttributeRegisteredServiceUsernameProvider("nonExistentAttributeName"));
    svc11.setAttributeReleasePolicy(new ReturnAllowedAttributeReleasePolicy(CollectionUtils.wrap("groupMembership")));
    svc11.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc11);
    val svc12 = RegisteredServiceTestUtils.getRegisteredService("testAnonymous");
    svc12.setUsernameAttributeProvider(new AnonymousRegisteredServiceUsernameAttributeProvider());
    svc12.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc12);
    val svc13 = RegisteredServiceTestUtils.getRegisteredService("^http://www.jasig.org.+");
    svc13.setProxyPolicy(new RegexMatchingRegisteredServiceProxyPolicy(".+"));
    svc13.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc13.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc13);
    val svc14 = RegisteredServiceTestUtils.getRegisteredService("usernameAttributeProviderService");
    svc14.setUsernameAttributeProvider(new PrincipalAttributeRegisteredServiceUsernameProvider("cn"));
    svc14.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc14);
    val svc15 = RegisteredServiceTestUtils.getRegisteredService("proxyService");
    svc15.setProxyPolicy(new RegexMatchingRegisteredServiceProxyPolicy("^https://.+"));
    svc15.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc15.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    list.add(svc15);
    val svc16 = RegisteredServiceTestUtils.getRegisteredService("^test.*");
    svc16.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc16.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc16.setEvaluationOrder(1000);
    list.add(svc16);
    val svc17 = RegisteredServiceTestUtils.getRegisteredService("https://localhost.*");
    svc17.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc17.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc17.setEvaluationOrder(100);
    list.add(svc17);
    val svc18 = RegisteredServiceTestUtils.getRegisteredService("https://github.com/apereo/cas");
    val accessStrategy = new DefaultRegisteredServiceAccessStrategy();
    accessStrategy.setUnauthorizedRedirectUrl(new URI("https://www.github.com"));
    svc18.setAccessStrategy(accessStrategy);
    svc18.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc18.setEvaluationOrder(98);
    list.add(svc18);
    val svc19 = RegisteredServiceTestUtils.getRegisteredService("https://carmenwiki.osu.edu.*");
    svc19.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc19.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc19.setEvaluationOrder(99);
    list.add(svc19);
    val svc20 = RegisteredServiceTestUtils.getRegisteredService("consentService");
    svc20.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc20.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    val attrPolicy = new ReturnAllAttributeReleasePolicy();
    attrPolicy.setConsentPolicy(new DefaultRegisteredServiceConsentPolicy());
    svc20.setAttributeReleasePolicy(attrPolicy);
    svc20.setEvaluationOrder(88);
    list.add(svc20);
    val svc21 = RegisteredServiceTestUtils.getRegisteredService("jwtservice");
    svc21.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    svc21.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    val prop = new DefaultRegisteredServiceProperty();
    prop.setValues(CollectionUtils.wrapSet(Boolean.TRUE.toString()));
    svc21.getProperties().put(RegisteredServiceProperty.RegisteredServiceProperties.TOKEN_AS_SERVICE_TICKET.getPropertyName(), prop);
    svc21.setEvaluationOrder(2000);
    list.add(svc21);
    val svc22 = RegisteredServiceTestUtils.getRegisteredService("cas-access-disabled");
    val strategy = new DefaultRegisteredServiceAccessStrategy();
    strategy.setEnabled(false);
    strategy.setUnauthorizedRedirectUrl(new URI("https://www.github.com"));
    svc22.setAccessStrategy(strategy);
    list.add(svc22);
    val svc23 = RegisteredServiceTestUtils.getRegisteredService("cas-access-delegation");
    val strategy23 = new DefaultRegisteredServiceAccessStrategy();
    strategy23.setEnabled(true);
    val delegate = new DefaultRegisteredServiceDelegatedAuthenticationPolicy();
    delegate.setExclusive(true);
    strategy23.setDelegatedAuthenticationPolicy(delegate);
    svc23.setAccessStrategy(strategy23);
    list.add(svc23);
    val svc24 = RegisteredServiceTestUtils.getRegisteredService("https://www.casinthecloud.com");
    svc24.setProxyPolicy(new RegexMatchingRegisteredServiceProxyPolicy(".+"));
    svc24.setPublicKey(new RegisteredServicePublicKeyImpl("classpath:keys/RSA4096Public.key", "RSA"));
    val policy24 = new ReturnAllowedAttributeReleasePolicy();
    policy24.setAuthorizedToReleaseCredentialPassword(true);
    policy24.setAuthorizedToReleaseProxyGrantingTicket(false);
    policy24.setAllowedAttributes(CollectionUtils.wrap("binaryAttribute"));
    svc24.setAttributeReleasePolicy(policy24);
    svc24.setUsernameAttributeProvider(new DefaultRegisteredServiceUsernameProvider());
    svc24.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(new HashMap<>()));
    list.add(svc24);
    val svc25 = RegisteredServiceTestUtils.getRegisteredService("accessStrategyMapped");
    svc25.setAttributeReleasePolicy(new ReturnMappedAttributeReleasePolicy(Map.of("sAMAccountName", "uid", "mail", "groovy { return attributes['sAMAccountName'][0] + '@example.org'}")));
    svc25.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(Map.of("mail", Set.of(".*"))));
    list.add(svc25);
    return list;
}
Also used : lombok.val(lombok.val) DefaultRegisteredServiceConsentPolicy(org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy) HashMap(java.util.HashMap) ArrayList(java.util.ArrayList) URI(java.net.URI) AcceptUsersAuthenticationHandler(org.apereo.cas.authentication.AcceptUsersAuthenticationHandler) SneakyThrows(lombok.SneakyThrows)

Aggregations

DefaultRegisteredServiceConsentPolicy (org.apereo.cas.services.consent.DefaultRegisteredServiceConsentPolicy)14 lombok.val (lombok.val)11 ReturnAllAttributeReleasePolicy (org.apereo.cas.services.ReturnAllAttributeReleasePolicy)9 Test (org.junit.jupiter.api.Test)6 SpringBootTest (org.springframework.boot.test.context.SpringBootTest)6 RegexRegisteredService (org.apereo.cas.services.RegexRegisteredService)2 Test (org.junit.Test)2 URI (java.net.URI)1 ArrayList (java.util.ArrayList)1 HashMap (java.util.HashMap)1 SneakyThrows (lombok.SneakyThrows)1 AcceptUsersAuthenticationHandler (org.apereo.cas.authentication.AcceptUsersAuthenticationHandler)1 ConsentServiceRegistry (org.apereo.cas.consent.services.ConsentServiceRegistry)1 DefaultRegisteredServiceUsernameProvider (org.apereo.cas.services.DefaultRegisteredServiceUsernameProvider)1 RegisteredService (org.apereo.cas.services.RegisteredService)1 ReturnAllowedAttributeReleasePolicy (org.apereo.cas.services.ReturnAllowedAttributeReleasePolicy)1 ParameterizedTest (org.junit.jupiter.params.ParameterizedTest)1 MethodSource (org.junit.jupiter.params.provider.MethodSource)1 MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)1 MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial