/* * Copyright 2002-2019 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package sample; import org.junit.Test; import org.junit.runner.RunWith; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.boot.test.autoconfigure.web.servlet.WebMvcTest; import org.springframework.security.core.authority.SimpleGrantedAuthority; import org.springframework.test.context.junit4.SpringRunner; import org.springframework.test.web.servlet.MockMvc; import static org.hamcrest.CoreMatchers.is; import static org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.opaqueToken; import static org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.jwt; import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.get; import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.post; import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.content; import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.status; /** * @author Josh Cummings * @since 5.3 */ @RunWith(SpringRunner.class) @WebMvcTest(OAuth2ResourceServerController.class) public class OAuth2ResourceServerControllerTests { @Autowired MockMvc mvc; @Test public void indexGreetsAuthenticatedUser() throws Exception { this.mvc.perform(get("/").with(opaqueToken().attribute("sub", "ch4mpy"))) .andExpect(content().string(is("Hello, ch4mpy!"))); } @Test public void messageCanBeReadWithScopeMessageReadAuthority() throws Exception { this.mvc.perform(get("/message").with(opaqueToken().scopes("message:read"))) .andExpect(content().string(is("secret message"))); this.mvc.perform(get("/message") .with(jwt().authorities(new SimpleGrantedAuthority(("SCOPE_message:read"))))) .andExpect(content().string(is("secret message"))); } @Test public void messageCanNotBeReadWithoutScopeMessageReadAuthority() throws Exception { this.mvc.perform(get("/message").with(opaqueToken())) .andExpect(status().isForbidden()); } @Test public void messageCanNotBeCreatedWithoutAnyScope() throws Exception { this.mvc.perform(post("/message") .content("Hello message") .with(opaqueToken())) .andExpect(status().isForbidden()); } @Test public void messageCanNotBeCreatedWithScopeMessageReadAuthority() throws Exception { this.mvc.perform(post("/message") .content("Hello message") .with(opaqueToken().scopes("message:read"))) .andExpect(status().isForbidden()); } @Test public void messageCanBeCreatedWithScopeMessageWriteAuthority() throws Exception { this.mvc.perform(post("/message") .content("Hello message") .with(opaqueToken().scopes("message:write"))) .andExpect(status().isOk()) .andExpect(content().string(is("Message was created. Content: Hello message"))); } }