Examples with AuthenticationManager org.springframework.security.authentication.AuthenticationManager used on opensource projects

Example 36 with AuthenticationManager

use of org.springframework.security.authentication.AuthenticationManager in project spring-security-oauth by spring-projects.

the class ResourceOwnerPasswordTokenGranterTests method testExtraParameters.

@Test
public void testExtraParameters() {
    authenticationManager = new AuthenticationManager() {

        @Override
        public Authentication authenticate(Authentication authentication) throws AuthenticationException {
            if (authentication instanceof UsernamePasswordAuthenticationToken) {
                UsernamePasswordAuthenticationToken user = (UsernamePasswordAuthenticationToken) authentication;
                user = new UsernamePasswordAuthenticationToken(user.getPrincipal(), "N/A", AuthorityUtils.commaSeparatedStringToAuthorityList("ROLE_USER"));
                @SuppressWarnings("unchecked") Map<String, String> details = (Map<String, String>) authentication.getDetails();
                assertNull(details.get("password"));
                return user;
            }
            return authentication;
        }
    };
    ResourceOwnerPasswordTokenGranter granter = new ResourceOwnerPasswordTokenGranter(authenticationManager, providerTokenServices, clientDetailsService, requestFactory);
    OAuth2AccessToken token = granter.grant("password", tokenRequest);
    OAuth2Authentication authentication = providerTokenServices.loadAuthentication(token.getValue());
    assertTrue(authentication.isAuthenticated());
    assertNull(authentication.getUserAuthentication().getDetails());
}

Example 37 with AuthenticationManager

use of org.springframework.security.authentication.AuthenticationManager in project spring-boot by spring-projects.

the class SecurityAutoConfigurationTests method pingAuthenticationListener.

private void pingAuthenticationListener() {
    AuthenticationListener listener = new AuthenticationListener();
    this.context.addApplicationListener(listener);
    AuthenticationManager manager = this.context.getBean(AuthenticationManager.class);
    try {
        manager.authenticate(new UsernamePasswordAuthenticationToken("foo", "wrong"));
        fail("Expected BadCredentialsException");
    } catch (BadCredentialsException e) {
    // expected
    }
    assertThat(listener.event).isInstanceOf(AuthenticationFailureBadCredentialsEvent.class);
}

Example 38 with AuthenticationManager

use of org.springframework.security.authentication.AuthenticationManager in project spring-security by spring-projects.

the class CasAuthenticationFilterTests method testDoFilterAuthenticateAll.

@Test
public void testDoFilterAuthenticateAll() throws Exception {
    AuthenticationSuccessHandler successHandler = mock(AuthenticationSuccessHandler.class);
    AuthenticationManager manager = mock(AuthenticationManager.class);
    Authentication authentication = new TestingAuthenticationToken("un", "pwd", "ROLE_USER");
    when(manager.authenticate(any(Authentication.class))).thenReturn(authentication);
    ServiceProperties serviceProperties = new ServiceProperties();
    serviceProperties.setAuthenticateAllArtifacts(true);
    MockHttpServletRequest request = new MockHttpServletRequest();
    request.setParameter("ticket", "ST-1-123");
    request.setServletPath("/authenticate");
    MockHttpServletResponse response = new MockHttpServletResponse();
    FilterChain chain = mock(FilterChain.class);
    CasAuthenticationFilter filter = new CasAuthenticationFilter();
    filter.setServiceProperties(serviceProperties);
    filter.setAuthenticationSuccessHandler(successHandler);
    filter.setProxyGrantingTicketStorage(mock(ProxyGrantingTicketStorage.class));
    filter.setAuthenticationManager(manager);
    filter.afterPropertiesSet();
    filter.doFilter(request, response, chain);
    assertThat(SecurityContextHolder.getContext().getAuthentication()).isNotNull().withFailMessage("Authentication should not be null");
    verify(chain).doFilter(request, response);
    verifyZeroInteractions(successHandler);
    // validate for when the filterProcessUrl matches
    filter.setFilterProcessesUrl(request.getServletPath());
    SecurityContextHolder.clearContext();
    filter.doFilter(request, response, chain);
    verifyNoMoreInteractions(chain);
    verify(successHandler).onAuthenticationSuccess(request, response, authentication);
}

Example 39 with AuthenticationManager

use of org.springframework.security.authentication.AuthenticationManager in project spring-security by spring-projects.

the class CasAuthenticationFilterTests method testNormalOperation.

@Test
public void testNormalOperation() throws Exception {
    MockHttpServletRequest request = new MockHttpServletRequest();
    request.setServletPath("/login/cas");
    request.addParameter("ticket", "ST-0-ER94xMJmn6pha35CQRoZ");
    CasAuthenticationFilter filter = new CasAuthenticationFilter();
    filter.setAuthenticationManager(new AuthenticationManager() {

        public Authentication authenticate(Authentication a) {
            return a;
        }
    });
    assertThat(filter.requiresAuthentication(request, new MockHttpServletResponse())).isTrue();
    Authentication result = filter.attemptAuthentication(request, new MockHttpServletResponse());
    assertThat(result != null).isTrue();
}

Example 40 with AuthenticationManager

use of org.springframework.security.authentication.AuthenticationManager in project spring-security by spring-projects.

the class JdbcUserServiceBeanDefinitionParserTests method isSupportedByAuthenticationProviderElement.

@Test
public void isSupportedByAuthenticationProviderElement() {
    setContext("<authentication-manager>" + "  <authentication-provider>" + "    <jdbc-user-service data-source-ref='dataSource'/>" + "  </authentication-provider>" + "</authentication-manager>" + DATA_SOURCE);
    AuthenticationManager mgr = (AuthenticationManager) appContext.getBean(BeanIds.AUTHENTICATION_MANAGER);
    mgr.authenticate(new UsernamePasswordAuthenticationToken("rod", "koala"));
}