Example 16 with MockMvc
use of org.springframework.test.web.servlet.MockMvc in project spring-boot by spring-projects.
the class JolokiaAutoConfigurationTests method agentServletWithCustomPath.
@Test
public void agentServletWithCustomPath() throws Exception {
this.context = new AnnotationConfigServletWebServerApplicationContext();
EnvironmentTestUtils.addEnvironment(this.context, "endpoints.jolokia.path=/foo/bar");
this.context.register(EndpointsConfig.class, WebMvcAutoConfiguration.class, PropertyPlaceholderAutoConfiguration.class, HttpMessageConvertersAutoConfiguration.class, JolokiaAutoConfiguration.class);
this.context.refresh();
assertThat(this.context.getBeanNamesForType(JolokiaMvcEndpoint.class)).hasSize(1);
MockMvc mockMvc = MockMvcBuilders.webAppContextSetup(this.context).build();
mockMvc.perform(MockMvcRequestBuilders.get("/foo/bar")).andExpect(MockMvcResultMatchers.content().string(Matchers.containsString("\"request\":{\"type\"")));
}
Also used :
AnnotationConfigServletWebServerApplicationContext(org.springframework.boot.web.servlet.context.AnnotationConfigServletWebServerApplicationContext)
MockMvc(org.springframework.test.web.servlet.MockMvc)
Test(org.junit.Test)
Example 17 with MockMvc
use of org.springframework.test.web.servlet.MockMvc in project spring-boot by spring-projects.
the class ManagementWebSecurityAutoConfigurationTests method testMarkAllEndpointsSensitive.
@Test
public void testMarkAllEndpointsSensitive() throws Exception {
// gh-4368
this.context = new AnnotationConfigWebApplicationContext();
this.context.setServletContext(new MockServletContext());
this.context.register(WebConfiguration.class);
EnvironmentTestUtils.addEnvironment(this.context, "endpoints.sensitive:true");
this.context.refresh();
MockMvc mockMvc = //
MockMvcBuilders.webAppContextSetup(this.context).apply(//
springSecurity()).build();
//
mockMvc.perform(//
get("/health")).andExpect(status().isUnauthorized());
//
mockMvc.perform(//
get("/info")).andExpect(status().isUnauthorized());
}
Also used :
AnnotationConfigWebApplicationContext(org.springframework.web.context.support.AnnotationConfigWebApplicationContext)
MockServletContext(org.springframework.mock.web.MockServletContext)
MockMvc(org.springframework.test.web.servlet.MockMvc)
Test(org.junit.Test)
Example 18 with MockMvc
use of org.springframework.test.web.servlet.MockMvc in project spring-boot by spring-projects.
the class ManagementWebSecurityAutoConfigurationTests method realmSameForManagement.
// gh-2466
@Test
public void realmSameForManagement() throws Exception {
this.context = new AnnotationConfigWebApplicationContext();
this.context.setServletContext(new MockServletContext());
this.context.register(AuthenticationConfig.class, SecurityAutoConfiguration.class, ManagementWebSecurityAutoConfiguration.class, JacksonAutoConfiguration.class, HttpMessageConvertersAutoConfiguration.class, EndpointAutoConfiguration.class, EndpointWebMvcAutoConfiguration.class, WebMvcAutoConfiguration.class, PropertyPlaceholderAutoConfiguration.class, AuditAutoConfiguration.class);
this.context.refresh();
Filter filter = this.context.getBean("springSecurityFilterChain", Filter.class);
MockMvc mockMvc = MockMvcBuilders.webAppContextSetup(this.context).addFilters(filter).build();
// no user (Main)
mockMvc.perform(MockMvcRequestBuilders.get("/home")).andExpect(MockMvcResultMatchers.status().isUnauthorized()).andExpect(springAuthenticateRealmHeader());
// invalid user (Main)
mockMvc.perform(MockMvcRequestBuilders.get("/home").header("authorization", "Basic xxx")).andExpect(MockMvcResultMatchers.status().isUnauthorized()).andExpect(springAuthenticateRealmHeader());
// no user (Management)
mockMvc.perform(MockMvcRequestBuilders.get("/beans")).andExpect(MockMvcResultMatchers.status().isUnauthorized()).andExpect(springAuthenticateRealmHeader());
// invalid user (Management)
mockMvc.perform(MockMvcRequestBuilders.get("/beans").header("authorization", "Basic xxx")).andExpect(MockMvcResultMatchers.status().isUnauthorized()).andExpect(springAuthenticateRealmHeader());
}
Also used :
Filter(javax.servlet.Filter)
AnnotationConfigWebApplicationContext(org.springframework.web.context.support.AnnotationConfigWebApplicationContext)
MockServletContext(org.springframework.mock.web.MockServletContext)
MockMvc(org.springframework.test.web.servlet.MockMvc)
Test(org.junit.Test)
Example 19 with MockMvc
use of org.springframework.test.web.servlet.MockMvc in project spring-boot by spring-projects.
the class MvcEndpointIntegrationTests method sensitiveEndpointsAreSecureWithNonActuatorRoleWithCustomContextPath.
@Test
public void sensitiveEndpointsAreSecureWithNonActuatorRoleWithCustomContextPath() throws Exception {
TestSecurityContextHolder.getContext().setAuthentication(new TestingAuthenticationToken("user", "N/A", "ROLE_USER"));
this.context = new AnnotationConfigWebApplicationContext();
this.context.register(SecureConfiguration.class);
EnvironmentTestUtils.addEnvironment(this.context, "management.context-path:/management");
MockMvc mockMvc = createSecureMockMvc();
mockMvc.perform(get("/management/beans")).andExpect(status().isForbidden());
}
Also used :
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
AnnotationConfigWebApplicationContext(org.springframework.web.context.support.AnnotationConfigWebApplicationContext)
MockMvc(org.springframework.test.web.servlet.MockMvc)
Test(org.junit.Test)
Example 20 with MockMvc
use of org.springframework.test.web.servlet.MockMvc in project spring-boot by spring-projects.
the class MvcEndpointIntegrationTests method sensitiveEndpointsAreSecureWithActuatorRoleWithCustomContextPath.
@Test
public void sensitiveEndpointsAreSecureWithActuatorRoleWithCustomContextPath() throws Exception {
TestSecurityContextHolder.getContext().setAuthentication(new TestingAuthenticationToken("user", "N/A", "ROLE_ACTUATOR"));
this.context = new AnnotationConfigWebApplicationContext();
this.context.register(SecureConfiguration.class);
EnvironmentTestUtils.addEnvironment(this.context, "management.context-path:/management");
MockMvc mockMvc = createSecureMockMvc();
mockMvc.perform(get("/management/beans")).andExpect(status().isOk());
}
Also used :
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
AnnotationConfigWebApplicationContext(org.springframework.web.context.support.AnnotationConfigWebApplicationContext)
MockMvc(org.springframework.test.web.servlet.MockMvc)
Test(org.junit.Test)
Aggregations
MockMvc (org.springframework.test.web.servlet.MockMvc)92
Test (org.junit.Test)87
AnnotationConfigWebApplicationContext (org.springframework.web.context.support.AnnotationConfigWebApplicationContext)25
Todo (org.springframework.sync.Todo)16
List (java.util.List)15
TodoRepository (org.springframework.sync.TodoRepository)15
Filter (javax.servlet.Filter)13
MockServletContext (org.springframework.mock.web.MockServletContext)13
AnnotationConfigApplicationContext (org.springframework.context.annotation.AnnotationConfigApplicationContext)12
OncePerRequestFilter (org.springframework.web.filter.OncePerRequestFilter)9
TestingAuthenticationToken (org.springframework.security.authentication.TestingAuthenticationToken)5
MvcResult (org.springframework.test.web.servlet.MvcResult)5
Ignore (org.junit.Ignore)3
FilterChainProxy (org.springframework.security.web.FilterChainProxy)3
WebConnection (com.gargoylesoftware.htmlunit.WebConnection)2
CountDownLatch (java.util.concurrent.CountDownLatch)2
HttpSession (javax.servlet.http.HttpSession)2
CoreMatchers.containsString (org.hamcrest.CoreMatchers.containsString)2
ArgumentMatchers.anyString (org.mockito.ArgumentMatchers.anyString)2
DirectFieldAccessor (org.springframework.beans.DirectFieldAccessor)2
