Example 26 with TicketGrantingTicket
use of org.apereo.cas.ticket.TicketGrantingTicket in project cas by apereo.
the class HazelcastTicketRegistryReplicationTests method verifyDeleteTicketWithPGT.
@Test
public void verifyDeleteTicketWithPGT() {
final Authentication a = CoreAuthenticationTestUtils.getAuthentication();
this.hzTicketRegistry1.addTicket(new TicketGrantingTicketImpl(TGT_ID, a, new NeverExpiresExpirationPolicy()));
final TicketGrantingTicket tgt = this.hzTicketRegistry1.getTicket(TGT_ID, TicketGrantingTicket.class);
final Service service = RegisteredServiceTestUtils.getService("TGT_DELETE_TEST");
final ServiceTicket st1 = tgt.grantServiceTicket(ST_ID_1, service, new NeverExpiresExpirationPolicy(), false, true);
this.hzTicketRegistry1.addTicket(st1);
assertNotNull(this.hzTicketRegistry1.getTicket(TGT_ID, TicketGrantingTicket.class));
assertNotNull(this.hzTicketRegistry1.getTicket(ST_ID_1, ServiceTicket.class));
final ProxyGrantingTicket pgt = st1.grantProxyGrantingTicket(PGT_ID_1, a, new NeverExpiresExpirationPolicy());
assertEquals(a, pgt.getAuthentication());
this.hzTicketRegistry1.addTicket(pgt);
this.hzTicketRegistry1.updateTicket(tgt);
assertSame(3, this.hzTicketRegistry1.deleteTicket(tgt.getId()));
assertNull(this.hzTicketRegistry1.getTicket(TGT_ID, TicketGrantingTicket.class));
assertNull(this.hzTicketRegistry1.getTicket(ST_ID_1, ServiceTicket.class));
assertNull(this.hzTicketRegistry1.getTicket(PGT_ID_1, ProxyGrantingTicket.class));
}
Also used :
NeverExpiresExpirationPolicy(org.apereo.cas.ticket.support.NeverExpiresExpirationPolicy)
Authentication(org.apereo.cas.authentication.Authentication)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket)
Service(org.apereo.cas.authentication.principal.Service)
TicketGrantingTicketImpl(org.apereo.cas.ticket.TicketGrantingTicketImpl)
MockServiceTicket(org.apereo.cas.mock.MockServiceTicket)
ServiceTicket(org.apereo.cas.ticket.ServiceTicket)
ProxyGrantingTicket(org.apereo.cas.ticket.proxy.ProxyGrantingTicket)
Test(org.junit.Test)
SpringBootTest(org.springframework.boot.test.context.SpringBootTest)
Example 27 with TicketGrantingTicket
use of org.apereo.cas.ticket.TicketGrantingTicket in project cas by apereo.
the class HazelcastTicketRegistryReplicationTests method verifyDeleteTicketWithChildren.
@Test
public void verifyDeleteTicketWithChildren() throws Exception {
this.hzTicketRegistry1.addTicket(new TicketGrantingTicketImpl(TGT_ID, CoreAuthenticationTestUtils.getAuthentication(), new NeverExpiresExpirationPolicy()));
final TicketGrantingTicket tgt = this.hzTicketRegistry1.getTicket(TGT_ID, TicketGrantingTicket.class);
final Service service = RegisteredServiceTestUtils.getService("TGT_DELETE_TEST");
final ServiceTicket st1 = tgt.grantServiceTicket(ST_ID_1, service, new NeverExpiresExpirationPolicy(), false, false);
final ServiceTicket st2 = tgt.grantServiceTicket("ST2", service, new NeverExpiresExpirationPolicy(), false, false);
final ServiceTicket st3 = tgt.grantServiceTicket("ST3", service, new NeverExpiresExpirationPolicy(), false, false);
this.hzTicketRegistry1.addTicket(st1);
this.hzTicketRegistry1.addTicket(st2);
this.hzTicketRegistry1.addTicket(st3);
this.hzTicketRegistry1.updateTicket(tgt);
assertNotNull(this.hzTicketRegistry1.getTicket(tgt.getId(), TicketGrantingTicket.class));
assertNotNull(this.hzTicketRegistry1.getTicket(ST_ID_1, ServiceTicket.class));
assertNotNull(this.hzTicketRegistry1.getTicket("ST2", ServiceTicket.class));
assertNotNull(this.hzTicketRegistry1.getTicket("ST3", ServiceTicket.class));
assertTrue("TGT and children were deleted", this.hzTicketRegistry1.deleteTicket(tgt.getId()) > 0);
assertNull(this.hzTicketRegistry1.getTicket(tgt.getId(), TicketGrantingTicket.class));
assertNull(this.hzTicketRegistry1.getTicket(ST_ID_1, ServiceTicket.class));
assertNull(this.hzTicketRegistry1.getTicket("ST2", ServiceTicket.class));
assertNull(this.hzTicketRegistry1.getTicket("ST3", ServiceTicket.class));
}
Also used :
NeverExpiresExpirationPolicy(org.apereo.cas.ticket.support.NeverExpiresExpirationPolicy)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket)
Service(org.apereo.cas.authentication.principal.Service)
TicketGrantingTicketImpl(org.apereo.cas.ticket.TicketGrantingTicketImpl)
MockServiceTicket(org.apereo.cas.mock.MockServiceTicket)
ServiceTicket(org.apereo.cas.ticket.ServiceTicket)
Test(org.junit.Test)
SpringBootTest(org.springframework.boot.test.context.SpringBootTest)
Example 28 with TicketGrantingTicket
use of org.apereo.cas.ticket.TicketGrantingTicket in project cas by apereo.
the class MemCacheTicketRegistryTests method verifyDeleteTicketWithChildren.
@Test
public void verifyDeleteTicketWithChildren() throws Exception {
this.registry.addTicket(new TicketGrantingTicketImpl(TGT_ID, CoreAuthenticationTestUtils.getAuthentication(), new NeverExpiresExpirationPolicy()));
final TicketGrantingTicket tgt = this.registry.getTicket(TGT_ID, TicketGrantingTicket.class);
final Service service = RegisteredServiceTestUtils.getService("TGT_DELETE_TEST");
final ServiceTicket st1 = tgt.grantServiceTicket(ST_1_ID, service, new NeverExpiresExpirationPolicy(), false, false);
final ServiceTicket st2 = tgt.grantServiceTicket("ST2", service, new NeverExpiresExpirationPolicy(), false, false);
final ServiceTicket st3 = tgt.grantServiceTicket("ST3", service, new NeverExpiresExpirationPolicy(), false, false);
this.registry.addTicket(st1);
this.registry.addTicket(st2);
this.registry.addTicket(st3);
this.registry.updateTicket(tgt);
assertNotNull(this.registry.getTicket(TGT_ID, TicketGrantingTicket.class));
assertNotNull(this.registry.getTicket(ST_1_ID, ServiceTicket.class));
assertNotNull(this.registry.getTicket("ST2", ServiceTicket.class));
assertNotNull(this.registry.getTicket("ST3", ServiceTicket.class));
this.registry.deleteTicket(tgt.getId());
assertNull(this.registry.getTicket(TGT_ID, TicketGrantingTicket.class));
assertNull(this.registry.getTicket(ST_1_ID, ServiceTicket.class));
assertNull(this.registry.getTicket("ST2", ServiceTicket.class));
assertNull(this.registry.getTicket("ST3", ServiceTicket.class));
}
Also used :
NeverExpiresExpirationPolicy(org.apereo.cas.ticket.support.NeverExpiresExpirationPolicy)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket)
Service(org.apereo.cas.authentication.principal.Service)
TicketGrantingTicketImpl(org.apereo.cas.ticket.TicketGrantingTicketImpl)
MockServiceTicket(org.apereo.cas.mock.MockServiceTicket)
ServiceTicket(org.apereo.cas.ticket.ServiceTicket)
Test(org.junit.Test)
Example 29 with TicketGrantingTicket
use of org.apereo.cas.ticket.TicketGrantingTicket in project cas by apereo.
the class RegisteredServiceResource method createService.
/**
* Create new service.
*
* @param tgtId ticket granting ticket id URI path param
* @param serviceDataHolder the service to register and save in rest form
* @return {@link ResponseEntity} representing RESTful response
*/
@PostMapping(value = "/v1/services/add/{tgtId:.+}", consumes = MediaType.APPLICATION_FORM_URLENCODED_VALUE)
public ResponseEntity<String> createService(@ModelAttribute final ServiceDataHolder serviceDataHolder, @PathVariable("tgtId") final String tgtId) {
try {
if (StringUtils.isBlank(this.attributeName) || StringUtils.isBlank(this.attributeValue)) {
throw new IllegalArgumentException("Attribute name and/or value must be configured");
}
final TicketGrantingTicket ticket = this.centralAuthenticationService.getTicket(tgtId, TicketGrantingTicket.class);
if (ticket == null || ticket.isExpired()) {
throw new InvalidTicketException("Ticket-granting ticket " + tgtId + " is not found");
}
final Map<String, Object> attributes = ticket.getAuthentication().getPrincipal().getAttributes();
if (attributes.containsKey(this.attributeName)) {
final Collection<String> attributeValuesToCompare = new HashSet<>();
final Object value = attributes.get(this.attributeName);
if (value instanceof Collection) {
attributeValuesToCompare.addAll((Collection<String>) value);
} else {
attributeValuesToCompare.add(value.toString());
}
if (attributeValuesToCompare.contains(this.attributeValue)) {
final RegisteredService service = serviceDataHolder.getRegisteredService();
final RegisteredService savedService = this.servicesManager.save(service);
return new ResponseEntity<>(String.valueOf(savedService.getId()), HttpStatus.OK);
}
}
throw new IllegalArgumentException("Request is not authorized");
} catch (final InvalidTicketException e) {
return new ResponseEntity<>("TicketGrantingTicket could not be found", HttpStatus.NOT_FOUND);
} catch (final Exception e) {
LOGGER.error(e.getMessage(), e);
return new ResponseEntity<>(e.getMessage(), HttpStatus.BAD_REQUEST);
}
}
Also used :
RegexRegisteredService(org.apereo.cas.services.RegexRegisteredService)
RegisteredService(org.apereo.cas.services.RegisteredService)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
InvalidTicketException(org.apereo.cas.ticket.InvalidTicketException)
ResponseEntity(org.springframework.http.ResponseEntity)
InvalidTicketException(org.apereo.cas.ticket.InvalidTicketException)
Collection(java.util.Collection)
HashSet(java.util.HashSet)
PostMapping(org.springframework.web.bind.annotation.PostMapping)
Example 30 with TicketGrantingTicket
use of org.apereo.cas.ticket.TicketGrantingTicket in project cas by apereo.
the class TicketsResource method createTicketGrantingTicket.
/**
* Create new ticket granting ticket.
*
* @param requestBody username and password application/x-www-form-urlencoded values
* @param request raw HttpServletRequest used to call this method
* @return ResponseEntity representing RESTful response
* @throws JsonProcessingException in case of JSON parsing failure
*/
@PostMapping(value = "/v1/tickets", consumes = MediaType.APPLICATION_FORM_URLENCODED_VALUE)
public ResponseEntity<String> createTicketGrantingTicket(@RequestBody final MultiValueMap<String, String> requestBody, final HttpServletRequest request) throws JsonProcessingException {
try {
final Credential credential = this.credentialFactory.fromRequestBody(requestBody);
final AuthenticationResult authenticationResult = this.authenticationSystemSupport.handleAndFinalizeSingleAuthenticationTransaction(null, credential);
final TicketGrantingTicket tgtId = this.centralAuthenticationService.createTicketGrantingTicket(authenticationResult);
final URI ticketReference = new URI(request.getRequestURL().toString() + '/' + tgtId.getId());
final HttpHeaders headers = new HttpHeaders();
headers.setLocation(ticketReference);
headers.setContentType(MediaType.TEXT_HTML);
final String tgtUrl = ticketReference.toString();
final String response = new StringBuilder(SUCCESSFUL_TGT_CREATED_INITIAL_LENGTH + tgtUrl.length()).append(DOCTYPE_AND_OPENING_FORM).append(tgtUrl).append(REST_OF_THE_FORM_AND_CLOSING_TAGS).toString();
return new ResponseEntity<>(response, headers, HttpStatus.CREATED);
} catch (final AuthenticationException e) {
final List<String> authnExceptions = e.getHandlerErrors().values().stream().map(Class::getSimpleName).collect(Collectors.toList());
final Map<String, List<String>> errorsMap = new HashMap<>();
errorsMap.put("authentication_exceptions", authnExceptions);
LOGGER.error("[{}] Caused by: [{}]", e.getMessage(), authnExceptions, e);
try {
return new ResponseEntity<>(this.jacksonPrettyWriter.writeValueAsString(errorsMap), HttpStatus.UNAUTHORIZED);
} catch (final JsonProcessingException exception) {
LOGGER.error(e.getMessage(), e);
return new ResponseEntity<>(e.getMessage(), HttpStatus.INTERNAL_SERVER_ERROR);
}
} catch (final BadRequestException e) {
LOGGER.error(e.getMessage(), e);
return new ResponseEntity<>(e.getMessage(), HttpStatus.BAD_REQUEST);
} catch (final Throwable e) {
LOGGER.error(e.getMessage(), e);
return new ResponseEntity<>(e.getMessage(), HttpStatus.INTERNAL_SERVER_ERROR);
}
}
Also used :
HttpHeaders(org.springframework.http.HttpHeaders)
Credential(org.apereo.cas.authentication.Credential)
AuthenticationException(org.apereo.cas.authentication.AuthenticationException)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
URI(java.net.URI)
AuthenticationResult(org.apereo.cas.authentication.AuthenticationResult)
ResponseEntity(org.springframework.http.ResponseEntity)
List(java.util.List)
HashMap(java.util.HashMap)
Map(java.util.Map)
MultiValueMap(org.springframework.util.MultiValueMap)
JsonProcessingException(com.fasterxml.jackson.core.JsonProcessingException)
PostMapping(org.springframework.web.bind.annotation.PostMapping)
Aggregations
TicketGrantingTicket (org.apereo.cas.ticket.TicketGrantingTicket)113
Test (org.junit.Test)88
ServiceTicket (org.apereo.cas.ticket.ServiceTicket)61
AuthenticationResult (org.apereo.cas.authentication.AuthenticationResult)59
Service (org.apereo.cas.authentication.principal.Service)34
MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)25
MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)23
Authentication (org.apereo.cas.authentication.Authentication)19
Credential (org.apereo.cas.authentication.Credential)19
MockTicketGrantingTicket (org.apereo.cas.mock.MockTicketGrantingTicket)18
UsernamePasswordCredential (org.apereo.cas.authentication.UsernamePasswordCredential)15
AbstractWebApplicationService (org.apereo.cas.authentication.principal.AbstractWebApplicationService)14
SpringBootTest (org.springframework.boot.test.context.SpringBootTest)13
TicketGrantingTicketImpl (org.apereo.cas.ticket.TicketGrantingTicketImpl)12
Assertion (org.apereo.cas.validation.Assertion)12
HttpBasedServiceCredential (org.apereo.cas.authentication.HttpBasedServiceCredential)11
NeverExpiresExpirationPolicy (org.apereo.cas.ticket.support.NeverExpiresExpirationPolicy)11
ServletExternalContext (org.springframework.webflow.context.servlet.ServletExternalContext)11
MockServletContext (org.springframework.mock.web.MockServletContext)10
MockServiceTicket (org.apereo.cas.mock.MockServiceTicket)8
