Example 21 with OAuth2ContextConfiguration
use of org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration in project spring-security-oauth by spring-projects.
the class AbstractResourceOwnerPasswordProviderTests method testTokenObtainedWithHeaderAuthentication.
@Test
@OAuth2ContextConfiguration(ResourceOwner.class)
public void testTokenObtainedWithHeaderAuthentication() throws Exception {
assertEquals(HttpStatus.OK, http.getStatusCode("/admin/beans"));
int expiry = context.getAccessToken().getExpiresIn();
assertTrue("Expiry not overridden in config: " + expiry, expiry < 1000);
assertEquals(new MediaType("application", "json", Charset.forName("UTF-8")), tokenEndpointResponse.getHeaders().getContentType());
}
Also used :
MediaType(org.springframework.http.MediaType)
OAuth2ContextConfiguration(org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)
Test(org.junit.Test)
Example 22 with OAuth2ContextConfiguration
use of org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration in project spring-security-oauth by spring-projects.
the class ClientCredentialsProviderTests method testPostForTokenWithForm.
/**
* tests the basic provider with form based client credentials
*/
@Test
@OAuth2ContextConfiguration(FormClientCredentials.class)
public void testPostForTokenWithForm() throws Exception {
OAuth2AccessToken token = context.getAccessToken();
assertNull(token.getRefreshToken());
}
Also used :
OAuth2AccessToken(org.springframework.security.oauth2.common.OAuth2AccessToken)
OAuth2ContextConfiguration(org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)
Test(org.junit.Test)
Example 23 with OAuth2ContextConfiguration
use of org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration in project spring-security-oauth by spring-projects.
the class ClientCredentialsProviderTests method testInvalidCredentialsWithFormAuthentication.
@Test
@OAuth2ContextConfiguration(resource = InvalidClientCredentials.class, initialize = false)
public void testInvalidCredentialsWithFormAuthentication() throws Exception {
context.setAccessTokenProvider(new ClientCredentialsAccessTokenProvider() {
@Override
protected ResponseErrorHandler getResponseErrorHandler() {
return new DefaultResponseErrorHandler() {
public void handleError(ClientHttpResponse response) throws IOException {
responseHeaders = response.getHeaders();
responseStatus = response.getStatusCode();
}
};
}
});
try {
context.getAccessToken();
fail("Expected ResourceAccessException");
} catch (Exception e) {
// ignore
}
// System.err.println(responseHeaders);
String header = responseHeaders.getFirst("WWW-Authenticate");
assertTrue("Wrong header: " + header, header.contains("Form realm"));
assertEquals(HttpStatus.UNAUTHORIZED, responseStatus);
}
Also used :
DefaultResponseErrorHandler(org.springframework.web.client.DefaultResponseErrorHandler)
DefaultResponseErrorHandler(org.springframework.web.client.DefaultResponseErrorHandler)
ResponseErrorHandler(org.springframework.web.client.ResponseErrorHandler)
IOException(java.io.IOException)
ClientCredentialsAccessTokenProvider(org.springframework.security.oauth2.client.token.grant.client.ClientCredentialsAccessTokenProvider)
ClientHttpResponse(org.springframework.http.client.ClientHttpResponse)
IOException(java.io.IOException)
OAuth2ContextConfiguration(org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)
Test(org.junit.Test)
Example 24 with OAuth2ContextConfiguration
use of org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration in project spring-security-oauth by spring-projects.
the class ResourceOwnerPasswordProviderTests method testCheckToken.
@Test
@OAuth2ContextConfiguration(ResourceOwner.class)
public void testCheckToken() throws Exception {
TestRestTemplate template = new TestRestTemplate("my-trusted-client", "");
ResponseEntity<String> response = template.getForEntity(http.getUrl("/oauth/check_token?token={token}"), String.class, context.getAccessToken().getValue());
assertEquals(HttpStatus.OK, response.getStatusCode());
}
Also used :
TestRestTemplate(org.springframework.boot.test.web.client.TestRestTemplate)
OAuth2ContextConfiguration(org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)
Test(org.junit.Test)
Example 25 with OAuth2ContextConfiguration
use of org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration in project spring-security-oauth by spring-projects.
the class AbstractAuthorizationCodeProviderTests method testUnauthenticatedAuthorizationRespondsUnauthorized.
@Test
@OAuth2ContextConfiguration(resource = MyTrustedClient.class, initialize = false)
public void testUnauthenticatedAuthorizationRespondsUnauthorized() throws Exception {
AccessTokenRequest request = context.getAccessTokenRequest();
request.setCurrentUri("http://anywhere");
request.add(OAuth2Utils.USER_OAUTH_APPROVAL, "true");
try {
String code = accessTokenProvider.obtainAuthorizationCode(context.getResource(), request);
assertNotNull(code);
fail("Expected UserRedirectRequiredException");
} catch (HttpClientErrorException e) {
assertEquals(HttpStatus.UNAUTHORIZED, e.getStatusCode());
}
}
Also used :
HttpClientErrorException(org.springframework.web.client.HttpClientErrorException)
AccessTokenRequest(org.springframework.security.oauth2.client.token.AccessTokenRequest)
OAuth2ContextConfiguration(org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)
Test(org.junit.Test)
Aggregations
Test (org.junit.Test)28
OAuth2ContextConfiguration (org.springframework.security.oauth2.client.test.OAuth2ContextConfiguration)28
AccessTokenRequest (org.springframework.security.oauth2.client.token.AccessTokenRequest)9
OAuth2AccessToken (org.springframework.security.oauth2.common.OAuth2AccessToken)7
HttpHeaders (org.springframework.http.HttpHeaders)4
ClientHttpResponse (org.springframework.http.client.ClientHttpResponse)4
IOException (java.io.IOException)3
ClientCredentialsAccessTokenProvider (org.springframework.security.oauth2.client.token.grant.client.ClientCredentialsAccessTokenProvider)3
InsufficientScopeException (org.springframework.security.oauth2.common.exceptions.InsufficientScopeException)3
DefaultResponseErrorHandler (org.springframework.web.client.DefaultResponseErrorHandler)3
ResponseErrorHandler (org.springframework.web.client.ResponseErrorHandler)3
TestRestTemplate (org.springframework.boot.test.web.client.TestRestTemplate)2
MediaType (org.springframework.http.MediaType)2
OAuth2RestTemplate (org.springframework.security.oauth2.client.OAuth2RestTemplate)2
UserRedirectRequiredException (org.springframework.security.oauth2.client.resource.UserRedirectRequiredException)2
AuthorizationCodeResourceDetails (org.springframework.security.oauth2.client.token.grant.code.AuthorizationCodeResourceDetails)2
RedirectMismatchException (org.springframework.security.oauth2.common.exceptions.RedirectMismatchException)2
HashSet (java.util.HashSet)1
Map (java.util.Map)1
ExecutorService (java.util.concurrent.ExecutorService)1
