Examples with EmbeddedInteraction - org.neo4j.server.security.enterprise.auth.EmbeddedInteraction

Example 1 with EmbeddedInteraction

use of org.neo4j.server.security.enterprise.auth.EmbeddedInteraction in project neo4j by neo4j.

the class QueryLoggerIT method shouldLogTXMetaDataInQueryLog.

@Test
public void shouldLogTXMetaDataInQueryLog() throws Throwable {
    // turn on query logging
    databaseBuilder.setConfig(GraphDatabaseSettings.logs_directory, logsDirectory.getPath());
    databaseBuilder.setConfig(GraphDatabaseSettings.log_queries, Settings.TRUE);
    EmbeddedInteraction db = new EmbeddedInteraction(databaseBuilder, Collections.emptyMap());
    GraphDatabaseFacade graph = db.getLocalGraph();
    db.getLocalUserManager().setUserPassword("neo4j", "123", false);
    EnterpriseSecurityContext subject = db.login("neo4j", "123");
    db.executeQuery(subject, "UNWIND range(0, 10) AS i CREATE (:Foo {p: i})", Collections.emptyMap(), ResourceIterator::close);
    // Set meta data and execute query in transaction
    try (InternalTransaction tx = db.beginLocalTransactionAsUser(subject, KernelTransaction.Type.explicit)) {
        graph.execute("CALL dbms.setTXMetaData( { User: 'Johan' } )", Collections.emptyMap());
        graph.execute("CALL dbms.procedures() YIELD name RETURN name", Collections.emptyMap()).close();
        graph.execute("MATCH (n) RETURN n", Collections.emptyMap()).close();
        graph.execute(QUERY, Collections.emptyMap());
        tx.success();
    }
    // Ensure that old meta data is not retained
    try (InternalTransaction tx = db.beginLocalTransactionAsUser(subject, KernelTransaction.Type.explicit)) {
        graph.execute("CALL dbms.setTXMetaData( { Location: 'Sweden' } )", Collections.emptyMap());
        graph.execute("MATCH ()-[r]-() RETURN count(r)", Collections.emptyMap()).close();
        tx.success();
    }
    db.tearDown();
    // THEN
    List<String> logLines = readAllLines(logFilename);
    assertThat(logLines, hasSize(7));
    assertThat(logLines.get(0), not(containsString("User: 'Johan'")));
    // we don't care if setTXMetaData contains the meta data
    //assertThat( logLines.get( 1 ), containsString( "User: Johan" ) );
    assertThat(logLines.get(2), containsString("User: 'Johan'"));
    assertThat(logLines.get(3), containsString("User: 'Johan'"));
    assertThat(logLines.get(4), containsString("User: 'Johan'"));
    // we want to make sure that the new transaction does not carry old meta data
    assertThat(logLines.get(5), not(containsString("User: 'Johan'")));
    assertThat(logLines.get(6), containsString("Location: 'Sweden'"));
}

Also used : EnterpriseSecurityContext(org.neo4j.kernel.enterprise.api.security.EnterpriseSecurityContext) EmbeddedInteraction(org.neo4j.server.security.enterprise.auth.EmbeddedInteraction) Matchers.containsString(org.hamcrest.Matchers.containsString) GraphDatabaseFacade(org.neo4j.kernel.impl.factory.GraphDatabaseFacade) ResourceIterator(org.neo4j.graphdb.ResourceIterator) InternalTransaction(org.neo4j.kernel.impl.coreapi.InternalTransaction) Test(org.junit.Test)

Example 2 with EmbeddedInteraction

use of org.neo4j.server.security.enterprise.auth.EmbeddedInteraction in project neo4j by neo4j.

the class QueryLoggerIT method shouldLogCustomUserName.

@Test
public void shouldLogCustomUserName() throws Throwable {
    // turn on query logging
    final Map<String, String> config = stringMap(GraphDatabaseSettings.logs_directory.name(), logsDirectory.getPath(), GraphDatabaseSettings.log_queries.name(), Settings.TRUE);
    EmbeddedInteraction db = new EmbeddedInteraction(databaseBuilder, config);
    // create users
    db.getLocalUserManager().newUser("mats", "neo4j", false);
    db.getLocalUserManager().newUser("andres", "neo4j", false);
    db.getLocalUserManager().addRoleToUser("architect", "mats");
    db.getLocalUserManager().addRoleToUser("reader", "andres");
    EnterpriseSecurityContext mats = db.login("mats", "neo4j");
    // run query
    db.executeQuery(mats, "UNWIND range(0, 10) AS i CREATE (:Foo {p: i})", Collections.emptyMap(), ResourceIterator::close);
    db.executeQuery(mats, "CREATE (:Label)", Collections.emptyMap(), ResourceIterator::close);
    // switch user, run query
    EnterpriseSecurityContext andres = db.login("andres", "neo4j");
    db.executeQuery(andres, "MATCH (n:Label) RETURN n", Collections.emptyMap(), ResourceIterator::close);
    db.tearDown();
    // THEN
    List<String> logLines = readAllLines(logFilename);
    assertThat(logLines, hasSize(3));
    assertThat(logLines.get(0), containsString("mats"));
    assertThat(logLines.get(1), containsString("mats"));
    assertThat(logLines.get(2), containsString("andres"));
}

Aggregations

Matchers.containsString (org.hamcrest.Matchers.containsString)2 Test (org.junit.Test)2 ResourceIterator (org.neo4j.graphdb.ResourceIterator)2 EnterpriseSecurityContext (org.neo4j.kernel.enterprise.api.security.EnterpriseSecurityContext)2 EmbeddedInteraction (org.neo4j.server.security.enterprise.auth.EmbeddedInteraction)2 InternalTransaction (org.neo4j.kernel.impl.coreapi.InternalTransaction)1 GraphDatabaseFacade (org.neo4j.kernel.impl.factory.GraphDatabaseFacade)1