use of org.simbasecurity.api.service.thrift.RequestData in project simba-os by cegeka.
the class SimbaCredentialsTest method asRequestData_IfEmptySSOTokenOnCredentials_ReturnsRequestDataWithSSOTokenNull.
@Test
public void asRequestData_IfEmptySSOTokenOnCredentials_ReturnsRequestDataWithSSOTokenNull() throws Exception {
Map<String, String> requestHeaders = Maps.newHashMap();
requestHeaders.put(HttpHeaders.WWW_AUTHENTICATE, "auth-string");
Map<String, String> requestParameters = Maps.newHashMap();
requestParameters.put("format", "timeseries");
SimbaCredentials simbaCredentials = new SimbaCredentialsBuilderForTests().withRequestUrl(SimbaCredentialsBuilderForTests.REQUESTURL + "?format=timeseries").withRequestHeaders(requestHeaders).withRequestParameters(requestParameters).withSsotoken("").build();
RequestData expected = new RequestDataBuilderForTests().withHostServerName(HOSTSERVERNAME).withRequestMethod(HTTP_METHOD).withRequestUrl(REQUESTURL + "?format=timeseries").withSimbaWebURL(SIMBAWEBURL).withRequestHeaders(requestHeaders).withRequestParameters(requestParameters).withSsoToken(null).build();
RequestData actual = simbaCredentials.asRequestData();
assertThat(actual).isEqualTo(expected);
}
use of org.simbasecurity.api.service.thrift.RequestData in project simba-os by cegeka.
the class AuthenticationFilterServiceImplTest method testProcessRequest.
@Test
public void testProcessRequest() throws Exception {
Session sessionMock = mock(Session.class);
when(sessionServiceMock.getSession(any(SSOToken.class))).thenReturn(sessionMock);
ChainImpl authenticationChainMock = implantMockLocatingByNameOnly(ChainImpl.class, "authenticationChain");
serviceImpl.processRequest(new RequestData(null, null, null, null, null, null, false, false, false, false, false, null, null, "loginToken", null), "authenticationChain");
verify(authenticationChainMock).execute(any(ChainContext.class));
}
use of org.simbasecurity.api.service.thrift.RequestData in project simba-os by cegeka.
the class AuthenticationFilterServiceImplTest method testGetCurrentSession_NoTokenMappingProvided.
@Test
public void testGetCurrentSession_NoTokenMappingProvided() {
SSOToken ssoToken = mock(SSOToken.class);
RequestData requestData = new RequestData(null, null, null, null, ssoToken, null, false, false, false, false, false, null, null, null, null);
serviceImpl.getCurrentSession(requestData);
verify(sessionServiceMock).getSession(same(ssoToken));
}
use of org.simbasecurity.api.service.thrift.RequestData in project simba-os by cegeka.
the class ChangePasswordController method handleRequest.
public ModelAndView handleRequest(HttpServletRequest request, HttpServletResponse response) throws Exception {
RequestData requestData = RequestUtil.createRequestData(request, resolveSimbaWebURL(request));
ChainContextImpl context = new ChainContextImpl(requestData, sessionService.getSession(requestData.getSsoToken()), configurationService, loginMappingService);
credentialChain.execute(context);
ActionDescriptor actionDescriptor = context.getActionDescriptor();
RequestActionFactory actionFactory = new RequestActionFactory(request, response);
actionFactory.execute(actionDescriptor);
return null;
}
use of org.simbasecurity.api.service.thrift.RequestData in project simba-os by cegeka.
the class ManagerSecurityInterceptor method preHandle.
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
RequestData requestData = RequestUtil.createRequestData(request, SystemConfiguration.getSimbaWebURL());
try {
ActionDescriptor actionDescriptor = authenticationService.processRequest(requestData, SystemConfiguration.getManagerAuthorizationChainName());
if (actionDescriptor.getActionTypes().contains(ActionType.DO_FILTER_AND_SET_PRINCIPAL)) {
return true;
}
} catch (Exception ignored) {
}
response.sendError(HttpServletResponse.SC_UNAUTHORIZED);
return false;
}
Aggregations