• Home
• org.wildfly.camel.example
• example-camel-itests
• 9.0.0
• source code
• CxfSecureRsExampleTest.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.wildfly.camel.examples.test.cxf.CxfSecureRsExampleTest Maven / Gradle / Ivy

/*
 * #%L
 * Wildfly Camel :: Testsuite
 * %%
 * Copyright (C) 2013 - 2014 RedHat
 * %%
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * #L%
 */
package org.wildfly.camel.examples.test.cxf;

import java.io.File;
import java.io.IOException;
import java.net.InetAddress;
import java.net.URL;
import java.nio.charset.StandardCharsets;
import java.nio.file.Files;
import java.nio.file.Path;
import java.security.KeyManagementException;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
import java.util.Base64;

import org.apache.http.HttpEntity;
import org.apache.http.HttpHeaders;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.util.EntityUtils;
import org.jboss.arquillian.container.test.api.Deployment;
import org.jboss.arquillian.container.test.api.RunAsClient;
import org.jboss.arquillian.junit.Arquillian;
import org.jboss.as.arquillian.api.ServerSetup;
import org.jboss.as.arquillian.api.ServerSetupTask;
import org.jboss.as.arquillian.container.ManagementClient;
import org.jboss.shrinkwrap.api.ShrinkWrap;
import org.jboss.shrinkwrap.api.spec.WebArchive;
import org.junit.Assert;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.wildfly.camel.test.common.http.HttpRequest;
import org.wildfly.camel.test.common.http.HttpRequest.HttpResponse;
import org.wildfly.camel.test.common.utils.FileUtils;
import org.wildfly.camel.test.common.utils.UserManager;
import org.wildfly.camel.test.common.utils.WildFlyCli;

@RunAsClient
@RunWith(Arquillian.class)
@ServerSetup({ CxfSecureRsExampleTest.BasicSecurityDomainSetup.class })
public class CxfSecureRsExampleTest {

    private static final String CXF_ENDPOINT_URI = "http://localhost:8080/rest/greet/hello";
    private static final String UI_URI = "http://localhost:8080/example-camel-cxf-jaxrs-secure/cxf";
    private static final String BAD_USER = "badRsUser";
    private static final String BAD_USER_PASSWORD = "badUserPassword1+";
    private static final String GOOD_USER = "testRsUser";
    private static final String GOOD_USER_PASSWORD = "testRsPassword1+";
    private static final String GOOD_USER_ROLE = "testRsRole";

    @Deployment
    public static WebArchive createDeployment() {
        return ShrinkWrap.createFromZipFile(WebArchive.class, new File("target/examples/example-camel-cxf-jaxrs-secure.war"));
    }

    private static void assertGreet(String uri, String user, String password, int responseCode,
            String responseBody) throws KeyManagementException, UnrecoverableKeyException, NoSuchAlgorithmException,
            KeyStoreException, CertificateException, IOException {
        try (CloseableHttpClient httpclient = HttpClients.createDefault()) {
            HttpGet request = new HttpGet(uri + "/Joe");
            request.setHeader("Content-Type", "application/json");
            if (user != null) {
                String auth = user + ":" + password;
                String authHeader = "Basic "
                        + Base64.getEncoder().encodeToString(auth.getBytes(StandardCharsets.ISO_8859_1));
                request.setHeader(HttpHeaders.AUTHORIZATION, authHeader);
            }
            try (CloseableHttpResponse response = httpclient.execute(request)) {
                final int actualCode = response.getStatusLine().getStatusCode();
                Assert.assertEquals(responseCode, actualCode);
                if (actualCode == 200) {
                    HttpEntity entity = response.getEntity();
                    String body = EntityUtils.toString(entity, StandardCharsets.UTF_8);
                    Assert.assertTrue(body.startsWith(responseBody));
                }
            }
        }
    }

    @Test
    public void greetAnonymous() throws Exception {
        assertGreet(CXF_ENDPOINT_URI, null, null, 401, null);
    }

    @Test
    public void greetBasicBadUser() throws Exception {
        /* the user can authenticate, but does not have the required role assigned */
        assertGreet(CXF_ENDPOINT_URI,
                BAD_USER, BAD_USER_PASSWORD, 403,
                null);
    }

    @Test
    public void greetBasicGoodUser() throws Exception {
        assertGreet(CXF_ENDPOINT_URI,
                GOOD_USER, GOOD_USER_PASSWORD, 200,
                "Hello Joe");
    }

    @Test
    public void ui() throws Exception {
        HttpResponse result = HttpRequest.post(UI_URI)
            .header("Content-Type", "application/x-www-form-urlencoded")
            .content("name=Kermit")
            .getResponse();

        Assert.assertEquals(200, result.getStatusCode());
        String hostAddress = InetAddress.getLocalHost().getHostAddress();
        Assert.assertTrue(result.getBody().contains("Hello Kermit from " + hostAddress));
    }

    static class BasicSecurityDomainSetup implements ServerSetupTask {

        @Override
        public void setup(ManagementClient managementClient, String containerId) throws Exception {
            try (UserManager um = UserManager.forStandaloneApplicationRealm()) {
                um
                        .addUser(GOOD_USER, GOOD_USER_PASSWORD)
                        .addRole(GOOD_USER, GOOD_USER_ROLE)
                        .addUser(BAD_USER, BAD_USER_PASSWORD)
                ;
            }
            final URL cliUrl = this.getClass().getClassLoader().getResource("configure-basic-security-rs.cli");
            final Path cliTmpPath = Files.createTempFile(WildFlyCli.class.getSimpleName(), ".cli");
            FileUtils.copy(cliUrl, cliTmpPath);
            new WildFlyCli().run(cliTmpPath).assertSuccess();
        }

        @Override
        public void tearDown(ManagementClient managementClient, String containerId) throws Exception {
            try (UserManager um = UserManager.forStandaloneApplicationRealm()) {
                um
                        .removeUser(GOOD_USER)
                        .removeRole(GOOD_USER, GOOD_USER_ROLE)
                        .removeUser(BAD_USER)
                ;
            }
            final URL cliUrl = this.getClass().getClassLoader().getResource("remove-basic-security-rs.cli");
            final Path cliTmpPath = Files.createTempFile(WildFlyCli.class.getSimpleName(), ".cli");
            FileUtils.copy(cliUrl, cliTmpPath);
            new WildFlyCli().run(cliTmpPath).assertSuccess();
        }
    }
}