Examples with CasProfile org.pac4j.cas.profile.CasProfile used on opensource projects

Search in sources :

Example 26 with CasProfile

use of org.pac4j.cas.profile.CasProfile in project cas by apereo.

the class OAuth20AuthorizeEndpointControllerTests method verifyServiceAccessDenied.

@Test
public void verifyServiceAccessDenied() throws Exception {
    clearAllServices();
    val mockRequest = new MockHttpServletRequest(HttpMethod.GET.name(), CONTEXT + OAuth20Constants.AUTHORIZE_URL);
    mockRequest.setParameter(OAuth20Constants.CLIENT_ID, CLIENT_ID);
    mockRequest.setParameter(OAuth20Constants.REDIRECT_URI, REDIRECT_URI);
    mockRequest.setParameter(OAuth20Constants.RESPONSE_TYPE, OAuth20ResponseTypes.CODE.name().toLowerCase());
    mockRequest.setServerName(CAS_SERVER);
    mockRequest.setServerPort(CAS_PORT);
    mockRequest.setScheme(CAS_SCHEME);
    mockRequest.setContextPath(StringUtils.EMPTY);
    val mockResponse = new MockHttpServletResponse();
    val service = getRegisteredService(REDIRECT_URI, SERVICE_NAME);
    service.setBypassApprovalPrompt(true);
    service.setAccessStrategy(new DefaultRegisteredServiceAccessStrategy(Map.of("required", Set.of("value1"))));
    oAuth20AuthorizeEndpointController.getConfigurationContext().getServicesManager().save(service);
    val profile = new CasProfile();
    profile.setId(ID);
    val session = new MockHttpSession();
    mockRequest.setSession(session);
    val sessionStore = oAuth20AuthorizeEndpointController.getConfigurationContext().getSessionStore();
    val context = new JEEContext(mockRequest, mockResponse);
    val ticket = new MockTicketGrantingTicket("casuser");
    oAuth20AuthorizeEndpointController.getConfigurationContext().getTicketRegistry().addTicket(ticket);
    sessionStore.set(context, WebUtils.PARAMETER_TICKET_GRANTING_TICKET_ID, ticket.getId());
    sessionStore.set(context, Pac4jConstants.USER_PROFILES, CollectionUtils.wrapLinkedHashMap(profile.getClientName(), profile));
    val modelAndView = oAuth20AuthorizeEndpointController.handleRequest(mockRequest, mockResponse);
    assertEquals(CasWebflowConstants.VIEW_ID_SERVICE_ERROR, modelAndView.getViewName());
}
Also used : lombok.val(lombok.val) CasProfile(org.pac4j.cas.profile.CasProfile) MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) JEEContext(org.pac4j.core.context.JEEContext) MockHttpSession(org.springframework.mock.web.MockHttpSession) DefaultRegisteredServiceAccessStrategy(org.apereo.cas.services.DefaultRegisteredServiceAccessStrategy) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Example 27 with CasProfile

use of org.pac4j.cas.profile.CasProfile in project cas by apereo.

the class OAuth20AuthorizeEndpointControllerTests method verifyCodeRedirectToClient.

@Test
public void verifyCodeRedirectToClient() throws Exception {
    clearAllServices();
    val mockRequest = new MockHttpServletRequest(HttpMethod.GET.name(), CONTEXT + OAuth20Constants.AUTHORIZE_URL);
    mockRequest.setParameter(OAuth20Constants.CLIENT_ID, CLIENT_ID);
    mockRequest.setParameter(OAuth20Constants.REDIRECT_URI, REDIRECT_URI);
    mockRequest.setParameter(OAuth20Constants.RESPONSE_TYPE, OAuth20ResponseTypes.CODE.name().toLowerCase());
    mockRequest.setServerName(CAS_SERVER);
    mockRequest.setServerPort(CAS_PORT);
    mockRequest.setScheme(CAS_SCHEME);
    mockRequest.setContextPath(StringUtils.EMPTY);
    val mockResponse = new MockHttpServletResponse();
    val casProperties = oAuth20AuthorizeEndpointController.getConfigurationContext().getCasProperties();
    casProperties.getSessionReplication().getCookie().setAutoConfigureCookiePath(true);
    casProperties.getAuthn().getOauth().setReplicateSessions(true);
    oAuth20AuthorizeEndpointController.getConfigurationContext().getOauthDistributedSessionCookieGenerator().setCookiePath(StringUtils.EMPTY);
    val service = getRegisteredService(REDIRECT_URI, SERVICE_NAME);
    service.setBypassApprovalPrompt(true);
    oAuth20AuthorizeEndpointController.getConfigurationContext().getServicesManager().save(service);
    val profile = new CasProfile();
    profile.setId(ID);
    val attributes = new HashMap<String, Object>();
    attributes.put(FIRST_NAME_ATTRIBUTE, FIRST_NAME);
    attributes.put(LAST_NAME_ATTRIBUTE, LAST_NAME);
    profile.addAttributes(attributes);
    val session = new MockHttpSession();
    mockRequest.setSession(session);
    val sessionStore = oAuth20AuthorizeEndpointController.getConfigurationContext().getSessionStore();
    val context = new JEEContext(mockRequest, mockResponse);
    val ticket = new MockTicketGrantingTicket("casuser");
    oAuth20AuthorizeEndpointController.getConfigurationContext().getTicketRegistry().addTicket(ticket);
    sessionStore.set(context, WebUtils.PARAMETER_TICKET_GRANTING_TICKET_ID, ticket.getId());
    sessionStore.set(context, Pac4jConstants.USER_PROFILES, CollectionUtils.wrapLinkedHashMap(profile.getClientName(), profile));
    val modelAndView = oAuth20AuthorizeEndpointController.handleRequest(mockRequest, mockResponse);
    val view = modelAndView.getView();
    assertTrue(view instanceof RedirectView);
    val redirectView = (RedirectView) view;
    val redirectUrl = redirectView.getUrl();
    assertNotNull(redirectUrl);
    assertEquals(redirectUrl, REDIRECT_URI);
    assertEquals("/", oAuth20AuthorizeEndpointController.getConfigurationContext().getOauthDistributedSessionCookieGenerator().getCookiePath());
    val code = modelAndView.getModelMap().get("code");
    val oAuthCode = (OAuth20Code) this.ticketRegistry.getTicket(String.valueOf(code));
    assertNotNull(oAuthCode);
    val principal = oAuthCode.getAuthentication().getPrincipal();
    assertEquals(ID, principal.getId());
    val principalAttributes = principal.getAttributes();
    assertEquals(attributes.size(), principalAttributes.size());
    assertEquals(FIRST_NAME, principalAttributes.get(FIRST_NAME_ATTRIBUTE).get(0));
}
Also used : lombok.val(lombok.val) CasProfile(org.pac4j.cas.profile.CasProfile) MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket) OAuth20Code(org.apereo.cas.ticket.code.OAuth20Code) HashMap(java.util.HashMap) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) JEEContext(org.pac4j.core.context.JEEContext) RedirectView(org.springframework.web.servlet.view.RedirectView) MockHttpSession(org.springframework.mock.web.MockHttpSession) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Example 28 with CasProfile

use of org.pac4j.cas.profile.CasProfile in project cas by apereo.

the class OAuth20DefaultCasAuthenticationBuilderTests method verifyOperationToBuild.

@Test
public void verifyOperationToBuild() {
    val profile = new CasProfile();
    profile.setId("casuser");
    profile.addAuthenticationAttribute("clazz", "high");
    profile.addAttribute("cn", "casuser");
    val request = new MockHttpServletRequest();
    request.addParameter(OAuth20Constants.STATE, UUID.randomUUID().toString());
    request.addParameter(OAuth20Constants.NONCE, UUID.randomUUID().toString());
    request.addParameter(OAuth20Constants.ACR_VALUES, "mfa-dummy");
    request.addHeader("X-".concat(CasProtocolConstants.PARAMETER_SERVICE), service.getServiceId());
    val ctx = new JEEContext(request, new MockHttpServletResponse());
    val result = authenticationBuilder.build(profile, service, ctx, RegisteredServiceTestUtils.getService());
    assertNotNull(result);
    assertTrue(result.getPrincipal().getAttributes().containsKey("cn"));
    assertTrue(result.getAttributes().containsKey("clazz"));
}
Also used : lombok.val(lombok.val) CasProfile(org.pac4j.cas.profile.CasProfile) MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest) JEEContext(org.pac4j.core.context.JEEContext) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Example 29 with CasProfile

use of org.pac4j.cas.profile.CasProfile in project cas by apereo.

the class OidcPushedAuthorizeEndpointControllerTests method verifyOperation.

@Test
public void verifyOperation() throws Exception {
    val id = UUID.randomUUID().toString();
    val mockRequest = getHttpRequestForEndpoint(OidcConstants.PUSHED_AUTHORIZE_URL);
    mockRequest.setMethod(HttpMethod.GET.name());
    mockRequest.setParameter(OAuth20Constants.CLIENT_ID, id);
    mockRequest.setParameter(OAuth20Constants.REDIRECT_URI, "https://oauth.example.org/");
    mockRequest.setParameter(OAuth20Constants.RESPONSE_TYPE, OAuth20ResponseTypes.TOKEN.name().toLowerCase());
    mockRequest.setContextPath(StringUtils.EMPTY);
    val mockResponse = new MockHttpServletResponse();
    val oauthContext = oidcPushedAuthorizeController.getConfigurationContext();
    oauthContext.getCasProperties().getSessionReplication().getCookie().setAutoConfigureCookiePath(false);
    oauthContext.getOauthDistributedSessionCookieGenerator().setCookiePath(StringUtils.EMPTY);
    val service = getOidcRegisteredService(id);
    service.setBypassApprovalPrompt(true);
    servicesManager.save(service);
    val profile = new CasProfile();
    profile.setId("casuser");
    val sessionStore = oidcPushedAuthorizeController.getConfigurationContext().getSessionStore();
    val context = new JEEContext(mockRequest, mockResponse);
    val ticket = new MockTicketGrantingTicket("casuser");
    oidcPushedAuthorizeController.getConfigurationContext().getTicketRegistry().addTicket(ticket);
    sessionStore.set(context, WebUtils.PARAMETER_TICKET_GRANTING_TICKET_ID, ticket.getId());
    sessionStore.set(context, Pac4jConstants.USER_PROFILES, CollectionUtils.wrapLinkedHashMap(profile.getClientName(), profile));
    val modelAndView = oidcPushedAuthorizeController.handleRequestPost(mockRequest, mockResponse);
    assertNotNull(modelAndView);
}
Also used : lombok.val(lombok.val) CasProfile(org.pac4j.cas.profile.CasProfile) MockTicketGrantingTicket(org.apereo.cas.mock.MockTicketGrantingTicket) JEEContext(org.pac4j.core.context.JEEContext) MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse) Test(org.junit.jupiter.api.Test)

Aggregations

CasProfile (org.pac4j.cas.profile.CasProfile)29 HashMap (java.util.HashMap)20 MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)20 MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)19 MockHttpSession (org.springframework.mock.web.MockHttpSession)16 RedirectView (org.springframework.web.servlet.view.RedirectView)14 lombok.val (lombok.val)13 Test (org.junit.Test)13 Test (org.junit.jupiter.api.Test)13 JEEContext (org.pac4j.core.context.JEEContext)13 MockTicketGrantingTicket (org.apereo.cas.mock.MockTicketGrantingTicket)11 OAuthRegisteredService (org.apereo.cas.support.oauth.services.OAuthRegisteredService)7 ModelAndView (org.springframework.web.servlet.ModelAndView)7 Principal (org.apereo.cas.authentication.principal.Principal)6 CommonProfile (org.pac4j.core.profile.CommonProfile)6 View (org.springframework.web.servlet.View)6 MockWebContext (org.pac4j.core.context.MockWebContext)4 TokenCredentials (org.pac4j.core.credentials.TokenCredentials)4 AccessToken (org.apereo.cas.ticket.accesstoken.AccessToken)3 OAuth20AccessToken (org.apereo.cas.ticket.accesstoken.OAuth20AccessToken)3
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial