Example 1 with AttributeSet
use of org.forgerock.openam.radius.common.AttributeSet in project OpenAM by OpenRock.
the class OpenAMAuthHandlerTest method handle.
/**
* Test the following method;.
*
* @see org.forgerock.openam.radius.server.spi.handlers.OpenAMAuthHandler#handle
* @throws RadiusProcessingException - should not happen.
* @throws AuthLoginException - should not happen.
* @throws IOException - should not happen.
*/
@Test(enabled = true)
public void handle() throws RadiusProcessingException, AuthLoginException, IOException {
// given
final Callback pagePropCallback = new PagePropertiesCallback("test_module", null, null, 0, null, false, null);
final Callback nameCallback = new NameCallback("Username:");
final Callback pwCallback = new PasswordCallback("pw_prompt", false);
final Callback[] callbacks = new Callback[] { pagePropCallback, nameCallback, pwCallback };
final String testRealm = "test_realm";
final String testChain = "test_chain";
final String cacheKey = "cache_key";
final Properties props = new Properties();
props.setProperty("realm", testRealm);
props.setProperty("chain", testChain);
final Status status = mock(Status.class);
final AuthContext authContext = mock(AuthContext.class);
when(authContext.getStatus()).thenReturn(AuthContext.Status.SUCCESS);
when(status.toString()).thenReturn("success");
when(authContext.hasMoreRequirements()).thenReturn(true, false);
when(authContext.getRequirements(true)).thenReturn(callbacks);
// Context and context holder
final ContextHolder holder = mock(ContextHolder.class);
final OpenAMAuthFactory ctxHolderFactory = mock(OpenAMAuthFactory.class);
when(holder.getCacheKey()).thenReturn(cacheKey);
when(holder.getAuthContext()).thenReturn(authContext);
when(holder.getAuthPhase()).thenReturn(AuthPhase.STARTING, AuthPhase.GATHERING_INPUT, AuthPhase.FINALIZING);
when(holder.getCallbacks()).thenReturn(callbacks, callbacks, (Callback[]) null);
when(holder.getIdxOfCurrentCallback()).thenReturn(1, 2);
final ContextHolderCache ctxHolderCache = mock(ContextHolderCache.class);
when(ctxHolderCache.createCachedContextHolder()).thenReturn(holder);
when(ctxHolderCache.get(isA(String.class))).thenReturn(holder);
EventBus eventBus = new EventBus();
final OpenAMAuthHandler handler = new OpenAMAuthHandler(ctxHolderFactory, ctxHolderCache, eventBus);
handler.init(props);
final Authenticator authenticator = mock(Authenticator.class);
when(authenticator.getOctets()).thenReturn("authenticator".getBytes());
// final StateAttribute mockStateAttribute = new StateAttribute("1");
final UserPasswordAttribute mockUserPasswordAttribute = new UserPasswordAttribute(authenticator, "secret", "testPassword");
final UserNameAttribute mockUsernameAttribute = new UserNameAttribute("testUser");
final AttributeSet mockAttrSet = mock(AttributeSet.class);
when(mockAttrSet.size()).thenReturn(2);
// when(mockAttrSet.getAttributeAt(0)).thenReturn(mockStateAttribute);
when(mockAttrSet.getAttributeAt(0)).thenReturn(mockUserPasswordAttribute);
when(mockAttrSet.getAttributeAt(1)).thenReturn(mockUsernameAttribute);
final AccessRequest mockRequestPacket = mock(AccessRequest.class);
when(mockRequestPacket.getAttributeSet()).thenReturn(mockAttrSet);
RadiusRequestContext reqCtx = mock(RadiusRequestContext.class);
when(reqCtx.getRequestAuthenticator()).thenReturn((mock(Authenticator.class)));
when(reqCtx.getClientSecret()).thenReturn("victoria");
RadiusResponse response = new RadiusResponse();
Packet mockPacket = mock(Packet.class);
when(mockPacket.getIdentifier()).thenReturn((short) 1);
RadiusRequest request = mock(RadiusRequest.class);
when(request.getRequestPacket()).thenReturn(mockPacket);
UserNameAttribute userName = mock(UserNameAttribute.class);
when(userName.getName()).thenReturn("Fred");
UserPasswordAttribute userPassword = mock(UserPasswordAttribute.class);
when(userPassword.extractPassword(isA(Authenticator.class), isA(String.class))).thenReturn("password");
when(request.getAttribute(UserPasswordAttribute.class)).thenReturn(userPassword);
when(request.getAttribute(UserNameAttribute.class)).thenReturn(userName);
String password = userPassword.extractPassword(reqCtx.getRequestAuthenticator(), reqCtx.getClientSecret());
assertThat(password).isNotNull();
// when
handler.handle(request, response, reqCtx);
// then
verify(authContext, times(1)).login(AuthContext.IndexType.SERVICE, testChain);
verify(ctxHolderFactory, times(1)).getAuthContext(testRealm);
verify(holder, times(3)).getCallbacks();
verify(holder, times(1)).setAuthPhase(ContextHolder.AuthPhase.TERMINATED);
verify(authContext, times(1)).logout();
}
Also used :
Status(com.sun.identity.authentication.AuthContext.Status)
Packet(org.forgerock.openam.radius.common.Packet)
OpenAMAuthFactory(org.forgerock.openam.radius.server.spi.handlers.amhandler.OpenAMAuthFactory)
PagePropertiesCallback(com.sun.identity.authentication.spi.PagePropertiesCallback)
AccessRequest(org.forgerock.openam.radius.common.AccessRequest)
AuthContext(com.sun.identity.authentication.AuthContext)
EventBus(org.forgerock.guava.common.eventbus.EventBus)
Properties(java.util.Properties)
RadiusRequest(org.forgerock.openam.radius.server.RadiusRequest)
RadiusResponse(org.forgerock.openam.radius.server.RadiusResponse)
PagePropertiesCallback(com.sun.identity.authentication.spi.PagePropertiesCallback)
PasswordCallback(javax.security.auth.callback.PasswordCallback)
NameCallback(javax.security.auth.callback.NameCallback)
Callback(javax.security.auth.callback.Callback)
NameCallback(javax.security.auth.callback.NameCallback)
ContextHolder(org.forgerock.openam.radius.server.spi.handlers.amhandler.ContextHolder)
ContextHolderCache(org.forgerock.openam.radius.server.spi.handlers.amhandler.ContextHolderCache)
AttributeSet(org.forgerock.openam.radius.common.AttributeSet)
RadiusRequestContext(org.forgerock.openam.radius.server.RadiusRequestContext)
UserNameAttribute(org.forgerock.openam.radius.common.UserNameAttribute)
PasswordCallback(javax.security.auth.callback.PasswordCallback)
Authenticator(org.forgerock.openam.radius.common.Authenticator)
UserPasswordAttribute(org.forgerock.openam.radius.common.UserPasswordAttribute)
Test(org.testng.annotations.Test)
Example 2 with AttributeSet
use of org.forgerock.openam.radius.common.AttributeSet in project OpenAM by OpenRock.
the class RadiusRequest method loadAttsMap.
/**
* Loads the attributes into a map. warning: this is lossy for atts that support duplicates like proxyState. but we
* aren't using those for authentication but only need State, UserName, and UserPassword. So we are good.
*/
private void loadAttsMap() {
final AttributeSet atts = requestPacket.getAttributeSet();
for (int i = 0; i < atts.size(); i++) {
final Attribute att = atts.getAttributeAt(i);
// warning: this is lossy for atts that support duplicates like proxyState. but we aren't using those
// for authentication but only need State, UserName, and UserPassword. So we are good.
attributeMap.put(att.getClass(), att);
}
}
Also used :
AttributeSet(org.forgerock.openam.radius.common.AttributeSet)
Attribute(org.forgerock.openam.radius.common.Attribute)
UserNameAttribute(org.forgerock.openam.radius.common.UserNameAttribute)
Example 3 with AttributeSet
use of org.forgerock.openam.radius.common.AttributeSet in project OpenAM by OpenRock.
the class RadiusRequestContext method getPacketRepresentation.
/**
* Formats a textual representation of the contents of a packet.
*
* @param pkt
* the packet whose content is to be logged in human read-able form.
* @return The packet's contents in human read-able form.
*/
public static String getPacketRepresentation(Packet pkt) {
final StringWriter sw = new StringWriter();
final PrintWriter pw = new PrintWriter(sw);
String packetType = null;
final Class clazz = pkt.getClass();
if (clazz == AccessRequest.class) {
packetType = "ACCESS_REQUEST";
} else if (clazz == AccessReject.class) {
packetType = "ACCESS_REJECT";
} else if (clazz == AccessAccept.class) {
packetType = "ACCESS_ACCEPT";
} else if (clazz == AccessChallenge.class) {
packetType = "ACCESS_CHALLENGE";
} else {
packetType = pkt.getClass().getSimpleName();
}
pw.println(" " + packetType + " [" + pkt.getIdentifier() + "]");
final AttributeSet atts = pkt.getAttributeSet();
for (int i = 0; i < atts.size(); i++) {
final Attribute a = atts.getAttributeAt(i);
pw.println(" - " + a);
}
pw.flush();
return sw.toString();
}
Also used :
StringWriter(java.io.StringWriter)
AttributeSet(org.forgerock.openam.radius.common.AttributeSet)
Attribute(org.forgerock.openam.radius.common.Attribute)
AccessReject(org.forgerock.openam.radius.common.AccessReject)
AccessChallenge(org.forgerock.openam.radius.common.AccessChallenge)
PrintWriter(java.io.PrintWriter)
Aggregations
AttributeSet (org.forgerock.openam.radius.common.AttributeSet)3
Attribute (org.forgerock.openam.radius.common.Attribute)2
UserNameAttribute (org.forgerock.openam.radius.common.UserNameAttribute)2
AuthContext (com.sun.identity.authentication.AuthContext)1
Status (com.sun.identity.authentication.AuthContext.Status)1
PagePropertiesCallback (com.sun.identity.authentication.spi.PagePropertiesCallback)1
PrintWriter (java.io.PrintWriter)1
StringWriter (java.io.StringWriter)1
Properties (java.util.Properties)1
Callback (javax.security.auth.callback.Callback)1
NameCallback (javax.security.auth.callback.NameCallback)1
PasswordCallback (javax.security.auth.callback.PasswordCallback)1
EventBus (org.forgerock.guava.common.eventbus.EventBus)1
AccessChallenge (org.forgerock.openam.radius.common.AccessChallenge)1
AccessReject (org.forgerock.openam.radius.common.AccessReject)1
AccessRequest (org.forgerock.openam.radius.common.AccessRequest)1
Authenticator (org.forgerock.openam.radius.common.Authenticator)1
Packet (org.forgerock.openam.radius.common.Packet)1
UserPasswordAttribute (org.forgerock.openam.radius.common.UserPasswordAttribute)1
RadiusRequest (org.forgerock.openam.radius.server.RadiusRequest)1
