Examples with SamlIdentityProviderDefinition org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition used on opensource projects

Search in sources :

Example 1 with SamlIdentityProviderDefinition

use of org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition in project uaa by cloudfoundry.

the class LoginInfoEndpointTests method getPromptsFromNonOIDCProvider.

@Test
void getPromptsFromNonOIDCProvider() {
    MockHttpServletRequest mockHttpServletRequest = getMockHttpServletRequest();
    mockHttpServletRequest.setParameter("origin", "non-OIDC");
    IdentityProvider provider = mock(IdentityProvider.class);
    SamlIdentityProviderDefinition samlConfig = mock(SamlIdentityProviderDefinition.class);
    when(provider.getConfig()).thenReturn(samlConfig);
    when(mockIdentityProviderProvisioning.retrieveByOrigin("non-OIDC", "uaa")).thenReturn(provider);
    MultitenantClientServices clientDetailsService = mockClientService();
    LoginInfoEndpoint endpoint = getEndpoint(IdentityZoneHolder.get(), clientDetailsService);
    endpoint.infoForLoginJson(extendedModelMap, null, mockHttpServletRequest);
    assertNotNull(extendedModelMap.get("prompts"));
    assertTrue(extendedModelMap.get("prompts") instanceof Map);
    Map<String, String[]> returnedPrompts = (Map<String, String[]>) extendedModelMap.get("prompts");
    assertEquals(2, returnedPrompts.size());
    assertNotNull(returnedPrompts.get("username"));
    assertEquals("Email", returnedPrompts.get("username")[1]);
    assertNotNull(returnedPrompts.get("password"));
    assertEquals("Password", returnedPrompts.get("password")[1]);
}
Also used : MultitenantClientServices(org.cloudfoundry.identity.uaa.zone.MultitenantClientServices) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) IdentityProvider(org.cloudfoundry.identity.uaa.provider.IdentityProvider) Matchers.containsString(org.hamcrest.Matchers.containsString) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) Map(java.util.Map) LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap) ExtendedModelMap(org.springframework.ui.ExtendedModelMap) HashMap(java.util.HashMap) Test(org.junit.jupiter.api.Test)

Example 2 with SamlIdentityProviderDefinition

use of org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition in project uaa by cloudfoundry.

the class LoginInfoEndpointTests method filterIDPsForAuthcodeClientInOtherZone.

@Test
void filterIDPsForAuthcodeClientInOtherZone() throws Exception {
    // mock session and saved request
    MockHttpServletRequest request = getMockHttpServletRequest();
    IdentityZone zone = MultitenancyFixture.identityZone("other-zone", "other-zone");
    IdentityZoneHolder.set(zone);
    List<String> allowedProviders = Arrays.asList("my-client-awesome-idp1", "my-client-awesome-idp2");
    // mock Client service
    BaseClientDetails clientDetails = new BaseClientDetails();
    clientDetails.setClientId("client-id");
    clientDetails.addAdditionalInformation(ClientConstants.ALLOWED_PROVIDERS, new LinkedList<>(allowedProviders));
    MultitenantClientServices clientDetailsService = mock(MultitenantClientServices.class);
    when(clientDetailsService.loadClientByClientId("client-id", "other-zone")).thenReturn(clientDetails);
    // mock SamlIdentityProviderConfigurator
    List<SamlIdentityProviderDefinition> clientIDPs = new LinkedList<>();
    clientIDPs.add(createIdentityProviderDefinition("my-client-awesome-idp1", "uaa"));
    clientIDPs.add(createIdentityProviderDefinition("my-client-awesome-idp2", "uaa"));
    when(mockSamlIdentityProviderConfigurator.getIdentityProviderDefinitions(eq(allowedProviders), eq(zone))).thenReturn(clientIDPs);
    LoginInfoEndpoint endpoint = getEndpoint(IdentityZoneHolder.get(), clientDetailsService);
    endpoint.loginForHtml(extendedModelMap, null, request, singletonList(MediaType.TEXT_HTML));
    Collection<SamlIdentityProviderDefinition> idpDefinitions = (Collection<SamlIdentityProviderDefinition>) extendedModelMap.asMap().get("idpDefinitions");
    assertEquals(2, idpDefinitions.size());
    assertThat(idpDefinitions, PredicateMatcher.has(c -> c.getIdpEntityAlias().equals("my-client-awesome-idp1")));
    assertThat(idpDefinitions, PredicateMatcher.has(SamlIdentityProviderDefinition::isShowSamlLink));
    assertEquals(false, extendedModelMap.asMap().get("fieldUsernameShow"));
    assertEquals(false, extendedModelMap.asMap().get("linkCreateAccountShow"));
}
Also used : BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails) BeforeEach(org.junit.jupiter.api.BeforeEach) Arrays(java.util.Arrays) ArgumentMatchers.eq(org.mockito.ArgumentMatchers.eq) Matchers.not(org.hamcrest.Matchers.not) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) SamlIdentityProviderConfigurator(org.cloudfoundry.identity.uaa.provider.saml.SamlIdentityProviderConfigurator) Collections.singletonList(java.util.Collections.singletonList) OriginKeys(org.cloudfoundry.identity.uaa.constants.OriginKeys) Model(org.springframework.ui.Model) ExtendWith(org.junit.jupiter.api.extension.ExtendWith) Map(java.util.Map) Mockito.doReturn(org.mockito.Mockito.doReturn) OidcMetadataFetcher(org.cloudfoundry.identity.uaa.provider.oauth.OidcMetadataFetcher) PollutionPreventionExtension(org.cloudfoundry.identity.uaa.extensions.PollutionPreventionExtension) Matchers.notNullValue(org.hamcrest.Matchers.notNullValue) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) MockHttpSession(org.springframework.mock.web.MockHttpSession) ArgumentMatchers.anyList(org.mockito.ArgumentMatchers.anyList) Matchers.startsWith(org.hamcrest.Matchers.startsWith) DefaultSavedRequest(org.springframework.security.web.savedrequest.DefaultSavedRequest) Matchers.instanceOf(org.hamcrest.Matchers.instanceOf) Assert.assertFalse(org.junit.Assert.assertFalse) JsonUtils(org.cloudfoundry.identity.uaa.util.JsonUtils) MultitenancyFixture(org.cloudfoundry.identity.uaa.zone.MultitenancyFixture) Matchers.is(org.hamcrest.Matchers.is) UaaRandomStringUtil(org.cloudfoundry.identity.uaa.util.UaaRandomStringUtil) Matchers.containsString(org.hamcrest.Matchers.containsString) ExternalOAuthProviderConfigurator(org.cloudfoundry.identity.uaa.provider.oauth.ExternalOAuthProviderConfigurator) Mockito.mock(org.mockito.Mockito.mock) Links(org.cloudfoundry.identity.uaa.zone.Links) Assertions.assertThrows(org.junit.jupiter.api.Assertions.assertThrows) BadCredentialsException(org.springframework.security.authentication.BadCredentialsException) MultitenantClientServices(org.cloudfoundry.identity.uaa.zone.MultitenantClientServices) ArgumentMatchers.anyBoolean(org.mockito.ArgumentMatchers.anyBoolean) Mockito.spy(org.mockito.Mockito.spy) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) ArrayList(java.util.ArrayList) Matchers.hasSize(org.hamcrest.Matchers.hasSize) AssertThrowsWithMessage.assertThrowsWithMessageThat(org.cloudfoundry.identity.uaa.util.AssertThrowsWithMessage.assertThrowsWithMessageThat) ArgumentMatchers.isNull(org.mockito.ArgumentMatchers.isNull) IdentityZoneConfiguration(org.cloudfoundry.identity.uaa.zone.IdentityZoneConfiguration) Assert.assertTrue(org.junit.Assert.assertTrue) OIDCIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.OIDCIdentityProviderDefinition) PredicateMatcher(org.cloudfoundry.identity.uaa.util.PredicateMatcher) AfterEach(org.junit.jupiter.api.AfterEach) IdentityZone(org.cloudfoundry.identity.uaa.zone.IdentityZone) Assert.assertNull(org.junit.Assert.assertNull) AbstractExternalOAuthIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.AbstractExternalOAuthIdentityProviderDefinition) RawExternalOAuthIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.RawExternalOAuthIdentityProviderDefinition) LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap) Assert.assertEquals(org.junit.Assert.assertEquals) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) ClientConstants(org.cloudfoundry.identity.uaa.oauth.client.ClientConstants) URL(java.net.URL) ExpiringUsernameAuthenticationToken(org.springframework.security.providers.ExpiringUsernameAuthenticationToken) UaaUrlUtils.addSubdomainToUrl(org.cloudfoundry.identity.uaa.util.UaaUrlUtils.addSubdomainToUrl) Matchers.hasKey(org.hamcrest.Matchers.hasKey) IdentityZoneHolder(org.cloudfoundry.identity.uaa.zone.IdentityZoneHolder) Assert.assertThat(org.junit.Assert.assertThat) BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails) UaaAuthentication(org.cloudfoundry.identity.uaa.authentication.UaaAuthentication) HttpSession(javax.servlet.http.HttpSession) IdentityProvider(org.cloudfoundry.identity.uaa.provider.IdentityProvider) Collections.emptyList(java.util.Collections.emptyList) MediaType(org.springframework.http.MediaType) Collection(java.util.Collection) IdentityProviderProvisioning(org.cloudfoundry.identity.uaa.provider.IdentityProviderProvisioning) MfaChecker(org.cloudfoundry.identity.uaa.mfa.MfaChecker) Test(org.junit.jupiter.api.Test) List(java.util.List) Modifier(java.lang.reflect.Modifier) Matchers.equalTo(org.hamcrest.Matchers.equalTo) ExtendedModelMap(org.springframework.ui.ExtendedModelMap) UaaPrincipal(org.cloudfoundry.identity.uaa.authentication.UaaPrincipal) ArgumentMatchers.any(org.mockito.ArgumentMatchers.any) DataAccessException(org.springframework.dao.DataAccessException) SessionUtils(org.cloudfoundry.identity.uaa.util.SessionUtils) IdentityZoneProvisioning(org.cloudfoundry.identity.uaa.zone.IdentityZoneProvisioning) LoginSamlAuthenticationToken(org.cloudfoundry.identity.uaa.provider.saml.LoginSamlAuthenticationToken) HashMap(java.util.HashMap) UaaAuthenticationDetails(org.cloudfoundry.identity.uaa.authentication.UaaAuthenticationDetails) Function(java.util.function.Function) InMemoryExpiringCodeStore(org.cloudfoundry.identity.uaa.codestore.InMemoryExpiringCodeStore) Cookie(javax.servlet.http.Cookie) LinkedList(java.util.LinkedList) Iterator(java.util.Iterator) Collections.emptySet(java.util.Collections.emptySet) MalformedURLException(java.net.MalformedURLException) UTF_8(java.nio.charset.StandardCharsets.UTF_8) Assert.assertNotNull(org.junit.Assert.assertNotNull) SavedRequest(org.springframework.security.web.savedrequest.SavedRequest) Mockito.when(org.mockito.Mockito.when) Mockito.verify(org.mockito.Mockito.verify) URLEncoder(java.net.URLEncoder) UaaIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.UaaIdentityProviderDefinition) TimeServiceImpl(org.cloudfoundry.identity.uaa.util.TimeServiceImpl) HttpMediaTypeNotAcceptableException(org.springframework.web.HttpMediaTypeNotAcceptableException) Collections(java.util.Collections) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) Matchers.containsString(org.hamcrest.Matchers.containsString) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) LinkedList(java.util.LinkedList) IdentityZone(org.cloudfoundry.identity.uaa.zone.IdentityZone) MultitenantClientServices(org.cloudfoundry.identity.uaa.zone.MultitenantClientServices) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) Collection(java.util.Collection) Test(org.junit.jupiter.api.Test)

Example 3 with SamlIdentityProviderDefinition

use of org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition in project uaa by cloudfoundry.

the class LoginInfoEndpointTests method filterIdpsForDefaultZone.

@Test
void filterIdpsForDefaultZone() throws Exception {
    LoginInfoEndpoint endpoint = getEndpoint(IdentityZoneHolder.get());
    // mock session and saved request
    MockHttpServletRequest request = new MockHttpServletRequest();
    MockHttpSession session = new MockHttpSession();
    SavedRequest savedRequest = mock(SavedRequest.class);
    when(savedRequest.getParameterValues("client_id")).thenReturn(new String[] { "client-id" });
    when(savedRequest.getRedirectUrl()).thenReturn("http://localhost:8080/uaa");
    SessionUtils.setSavedRequestSession(session, savedRequest);
    request.setSession(session);
    // mock SamlIdentityProviderConfigurator
    when(mockSamlIdentityProviderConfigurator.getIdentityProviderDefinitions((List<String>) isNull(), eq(IdentityZone.getUaa()))).thenReturn(idps);
    endpoint.loginForHtml(extendedModelMap, null, request, singletonList(MediaType.TEXT_HTML));
    Collection<SamlIdentityProviderDefinition> idpDefinitions = (Collection<SamlIdentityProviderDefinition>) extendedModelMap.asMap().get("idpDefinitions");
    assertEquals(2, idpDefinitions.size());
    Iterator<SamlIdentityProviderDefinition> iterator = idpDefinitions.iterator();
    SamlIdentityProviderDefinition clientIdp = iterator.next();
    assertEquals("awesome-idp", clientIdp.getIdpEntityAlias());
    assertTrue(clientIdp.isShowSamlLink());
    clientIdp = iterator.next();
    assertEquals("my-client-awesome-idp", clientIdp.getIdpEntityAlias());
    assertTrue(clientIdp.isShowSamlLink());
    assertEquals(true, extendedModelMap.asMap().get("fieldUsernameShow"));
    assertEquals(true, extendedModelMap.asMap().get("linkCreateAccountShow"));
}
Also used : MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) MockHttpSession(org.springframework.mock.web.MockHttpSession) Collection(java.util.Collection) Matchers.containsString(org.hamcrest.Matchers.containsString) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) DefaultSavedRequest(org.springframework.security.web.savedrequest.DefaultSavedRequest) SavedRequest(org.springframework.security.web.savedrequest.SavedRequest) Test(org.junit.jupiter.api.Test)

Example 4 with SamlIdentityProviderDefinition

use of org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition in project uaa by cloudfoundry.

the class LoginInfoEndpointTests method saml_links_for_json.

@Test
void saml_links_for_json() {
    LoginInfoEndpoint endpoint = getEndpoint(IdentityZoneHolder.get());
    when(mockSamlIdentityProviderConfigurator.getIdentityProviderDefinitions(any(), any())).thenReturn(idps);
    endpoint.infoForJson(extendedModelMap, null, new MockHttpServletRequest("GET", "http://someurl"));
    Map<String, Object> links = (Map<String, Object>) extendedModelMap.asMap().get("links");
    assertEquals("http://someurl", links.get("login"));
    assertTrue(extendedModelMap.get("idpDefinitions") instanceof Map);
    Map<String, String> idpDefinitions = (Map<String, String>) extendedModelMap.get("idpDefinitions");
    for (SamlIdentityProviderDefinition def : idps) {
        assertEquals("http://someurl/saml/discovery?returnIDParam=idp&entityID=" + endpoint.getZonifiedEntityId() + "&idp=" + def.getIdpEntityAlias() + "&isPassive=true", idpDefinitions.get(def.getIdpEntityAlias()));
    }
}
Also used : MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) Matchers.containsString(org.hamcrest.Matchers.containsString) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) Map(java.util.Map) LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap) ExtendedModelMap(org.springframework.ui.ExtendedModelMap) HashMap(java.util.HashMap) Test(org.junit.jupiter.api.Test)

Example 5 with SamlIdentityProviderDefinition

use of org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition in project uaa by cloudfoundry.

the class LoginInfoEndpointTests method filterIdpsWithNoSavedRequest.

@Test
void filterIdpsWithNoSavedRequest() throws Exception {
    LoginInfoEndpoint endpoint = getEndpoint(IdentityZoneHolder.get());
    when(mockSamlIdentityProviderConfigurator.getIdentityProviderDefinitions((List<String>) isNull(), eq(IdentityZone.getUaa()))).thenReturn(idps);
    endpoint.loginForHtml(extendedModelMap, null, new MockHttpServletRequest(), singletonList(MediaType.TEXT_HTML));
    Collection<SamlIdentityProviderDefinition> idpDefinitions = (Collection<SamlIdentityProviderDefinition>) extendedModelMap.asMap().get("idpDefinitions");
    assertEquals(2, idpDefinitions.size());
    Iterator<SamlIdentityProviderDefinition> iterator = idpDefinitions.iterator();
    SamlIdentityProviderDefinition clientIdp = iterator.next();
    assertEquals("awesome-idp", clientIdp.getIdpEntityAlias());
    assertTrue(clientIdp.isShowSamlLink());
    clientIdp = iterator.next();
    assertEquals("my-client-awesome-idp", clientIdp.getIdpEntityAlias());
    assertTrue(clientIdp.isShowSamlLink());
    assertEquals(true, extendedModelMap.asMap().get("fieldUsernameShow"));
    assertEquals(true, extendedModelMap.asMap().get("linkCreateAccountShow"));
}
Also used : MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) SamlIdentityProviderDefinition(org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition) Collection(java.util.Collection) Matchers.containsString(org.hamcrest.Matchers.containsString) ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString) Test(org.junit.jupiter.api.Test)

Aggregations

SamlIdentityProviderDefinition (org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition)91 Matchers.containsString (org.hamcrest.Matchers.containsString)45 IdentityProvider (org.cloudfoundry.identity.uaa.provider.IdentityProvider)37 Test (org.junit.Test)37 RandomValueStringGenerator (org.springframework.security.oauth2.common.util.RandomValueStringGenerator)29 IdentityZone (org.cloudfoundry.identity.uaa.zone.IdentityZone)22 BaseClientDetails (org.springframework.security.oauth2.provider.client.BaseClientDetails)22 Test (org.junit.jupiter.api.Test)18 ScimUser (org.cloudfoundry.identity.uaa.scim.ScimUser)17 RestTemplate (org.springframework.web.client.RestTemplate)17 Map (java.util.Map)11 IdentityZoneConfiguration (org.cloudfoundry.identity.uaa.zone.IdentityZoneConfiguration)11 LinkedMultiValueMap (org.springframework.util.LinkedMultiValueMap)10 MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)9 LinkedList (java.util.LinkedList)8 SamlServiceProviderDefinition (org.cloudfoundry.identity.uaa.provider.saml.idp.SamlServiceProviderDefinition)8 ArgumentMatchers.anyString (org.mockito.ArgumentMatchers.anyString)8 HashMap (java.util.HashMap)7 UaaAuthentication (org.cloudfoundry.identity.uaa.authentication.UaaAuthentication)7 UaaPrincipal (org.cloudfoundry.identity.uaa.authentication.UaaPrincipal)7
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial