Examples with BasicPasswordPolicy org.neo4j.server.security.auth.BasicPasswordPolicy used on opensource projects

Search in sources :

Example 6 with BasicPasswordPolicy

use of org.neo4j.server.security.auth.BasicPasswordPolicy in project neo4j by neo4j.

the class InternalFlatFileRealmTest method shouldAssignAdminRoleAfterBadSetting.

@Test
public void shouldAssignAdminRoleAfterBadSetting() throws Throwable {
    UserRepository userRepository = new InMemoryUserRepository();
    UserRepository initialUserRepository = new InMemoryUserRepository();
    UserRepository adminUserRepository = new InMemoryUserRepository();
    RoleRepository roleRepository = new InMemoryRoleRepository();
    userRepository.create(newUser("morpheus", "123", false));
    userRepository.create(newUser("trinity", "123", false));
    InternalFlatFileRealm realm = new InternalFlatFileRealm(userRepository, roleRepository, new BasicPasswordPolicy(), new RateLimitedAuthenticationStrategy(Clocks.systemClock(), 3), new InternalFlatFileRealmIT.TestJobScheduler(), initialUserRepository, adminUserRepository);
    try {
        realm.initialize();
        realm.start();
        fail("Multiple users, no default admin provided");
    } catch (InvalidArgumentsException e) {
        realm.stop();
        realm.shutdown();
    }
    adminUserRepository.create(new User.Builder("trinity", Credential.INACCESSIBLE).build());
    realm.initialize();
    realm.start();
    assertThat(realm.getUsernamesForRole(PredefinedRoles.ADMIN).size(), equalTo(1));
    assertThat(realm.getUsernamesForRole(PredefinedRoles.ADMIN), contains("trinity"));
}
Also used : RateLimitedAuthenticationStrategy(org.neo4j.server.security.auth.RateLimitedAuthenticationStrategy) UserRepository(org.neo4j.server.security.auth.UserRepository) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository) BasicPasswordPolicy(org.neo4j.server.security.auth.BasicPasswordPolicy) InvalidArgumentsException(org.neo4j.kernel.api.exceptions.InvalidArgumentsException) Test(org.junit.Test)

Example 7 with BasicPasswordPolicy

use of org.neo4j.server.security.auth.BasicPasswordPolicy in project neo4j by neo4j.

the class InternalFlatFileRealmTest method internalTestRealmWithUsers.

private InternalFlatFileRealm internalTestRealmWithUsers(List<String> existing, List<String> defaultAdmin) throws Throwable {
    UserRepository userRepository = new InMemoryUserRepository();
    UserRepository initialUserRepository = new InMemoryUserRepository();
    UserRepository adminUserRepository = new InMemoryUserRepository();
    RoleRepository roleRepository = new InMemoryRoleRepository();
    for (String user : existing) {
        userRepository.create(newUser(user, "123", false));
    }
    for (String user : defaultAdmin) {
        adminUserRepository.create(new User.Builder(user, Credential.INACCESSIBLE).build());
    }
    return new InternalFlatFileRealm(userRepository, roleRepository, new BasicPasswordPolicy(), new RateLimitedAuthenticationStrategy(Clocks.systemClock(), 3), new InternalFlatFileRealmIT.TestJobScheduler(), initialUserRepository, adminUserRepository);
}
Also used : RateLimitedAuthenticationStrategy(org.neo4j.server.security.auth.RateLimitedAuthenticationStrategy) UserRepository(org.neo4j.server.security.auth.UserRepository) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository) Matchers.anyString(org.mockito.Matchers.anyString) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository) BasicPasswordPolicy(org.neo4j.server.security.auth.BasicPasswordPolicy)

Example 8 with BasicPasswordPolicy

use of org.neo4j.server.security.auth.BasicPasswordPolicy in project neo4j by neo4j.

the class InternalFlatFileRealmTest method assertSetUsersAndRolesNTimes.

private void assertSetUsersAndRolesNTimes(boolean usersChanged, boolean rolesChanged, int nSetUsers, int nSetRoles) throws Throwable {
    final UserRepository userRepository = mock(UserRepository.class);
    final RoleRepository roleRepository = mock(RoleRepository.class);
    final UserRepository initialUserRepository = mock(UserRepository.class);
    final UserRepository defaultAdminRepository = mock(UserRepository.class);
    final PasswordPolicy passwordPolicy = new BasicPasswordPolicy();
    AuthenticationStrategy authenticationStrategy = new RateLimitedAuthenticationStrategy(Clocks.systemClock(), 3);
    InternalFlatFileRealmIT.TestJobScheduler jobScheduler = new InternalFlatFileRealmIT.TestJobScheduler();
    InternalFlatFileRealm realm = new InternalFlatFileRealm(userRepository, roleRepository, passwordPolicy, authenticationStrategy, jobScheduler, initialUserRepository, defaultAdminRepository);
    when(userRepository.getPersistedSnapshot()).thenReturn(new ListSnapshot<>(10L, Collections.emptyList(), usersChanged));
    when(userRepository.getUserByName(any())).thenReturn(new User.Builder().build());
    when(roleRepository.getPersistedSnapshot()).thenReturn(new ListSnapshot<>(10L, Collections.emptyList(), rolesChanged));
    when(roleRepository.getRoleByName(anyString())).thenReturn(new RoleRecord(""));
    realm.init();
    realm.start();
    jobScheduler.scheduledRunnable.run();
    verify(userRepository, times(nSetUsers)).setUsers(any());
    verify(roleRepository, times(nSetRoles)).setRoles(any());
}
Also used : RateLimitedAuthenticationStrategy(org.neo4j.server.security.auth.RateLimitedAuthenticationStrategy) AuthenticationStrategy(org.neo4j.server.security.auth.AuthenticationStrategy) RateLimitedAuthenticationStrategy(org.neo4j.server.security.auth.RateLimitedAuthenticationStrategy) UserRepository(org.neo4j.server.security.auth.UserRepository) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository) PasswordPolicy(org.neo4j.kernel.api.security.PasswordPolicy) BasicPasswordPolicy(org.neo4j.server.security.auth.BasicPasswordPolicy) BasicPasswordPolicy(org.neo4j.server.security.auth.BasicPasswordPolicy)

Example 9 with BasicPasswordPolicy

use of org.neo4j.server.security.auth.BasicPasswordPolicy in project neo4j by neo4j.

the class MultiRealmAuthManagerRule method setupAuthManager.

private void setupAuthManager(AuthenticationStrategy authStrategy) throws Throwable {
    FormattedLog.Builder builder = FormattedLog.withUTCTimeZone();
    securityLogWriter = new StringWriter();
    Log log = builder.toWriter(securityLogWriter);
    securityLog = new SecurityLog(log);
    InternalFlatFileRealm internalFlatFileRealm = new InternalFlatFileRealm(users, new InMemoryRoleRepository(), new BasicPasswordPolicy(), authStrategy, mock(JobScheduler.class), new InMemoryUserRepository(), new InMemoryUserRepository());
    manager = new MultiRealmAuthManager(internalFlatFileRealm, Collections.singleton(internalFlatFileRealm), new MemoryConstrainedCacheManager(), securityLog, true);
    manager.init();
}
Also used : JobScheduler(org.neo4j.kernel.impl.util.JobScheduler) FormattedLog(org.neo4j.logging.FormattedLog) StringWriter(java.io.StringWriter) Log(org.neo4j.logging.Log) FormattedLog(org.neo4j.logging.FormattedLog) SecurityLog(org.neo4j.server.security.enterprise.log.SecurityLog) MemoryConstrainedCacheManager(org.apache.shiro.cache.MemoryConstrainedCacheManager) SecurityLog(org.neo4j.server.security.enterprise.log.SecurityLog) BasicPasswordPolicy(org.neo4j.server.security.auth.BasicPasswordPolicy) InMemoryUserRepository(org.neo4j.server.security.auth.InMemoryUserRepository)

Aggregations

BasicPasswordPolicy (org.neo4j.server.security.auth.BasicPasswordPolicy)9 InMemoryUserRepository (org.neo4j.server.security.auth.InMemoryUserRepository)7 RateLimitedAuthenticationStrategy (org.neo4j.server.security.auth.RateLimitedAuthenticationStrategy)7 Before (org.junit.Before)4 JobScheduler (org.neo4j.kernel.impl.util.JobScheduler)4 UserRepository (org.neo4j.server.security.auth.UserRepository)4 AuthenticationStrategy (org.neo4j.server.security.auth.AuthenticationStrategy)3 SecurityLog (org.neo4j.server.security.enterprise.log.SecurityLog)3 PasswordPolicy (org.neo4j.kernel.api.security.PasswordPolicy)2 Log (org.neo4j.logging.Log)2 FakeTicker (com.google.common.testing.FakeTicker)1 File (java.io.File)1 StringWriter (java.io.StringWriter)1 MemoryConstrainedCacheManager (org.apache.shiro.cache.MemoryConstrainedCacheManager)1 Realm (org.apache.shiro.realm.Realm)1 Test (org.junit.Test)1 Matchers.anyString (org.mockito.Matchers.anyString)1 EphemeralFileSystemAbstraction (org.neo4j.graphdb.mockfs.EphemeralFileSystemAbstraction)1 InvalidArgumentsException (org.neo4j.kernel.api.exceptions.InvalidArgumentsException)1 Config (org.neo4j.kernel.configuration.Config)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial