github
/
spring-security
spegling av https://github.com/spring-projects/spring-security


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168
							/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package sample.contact;

import static org.junit.Assert.assertEquals;
import static org.junit.Assert.fail;

import java.util.List;

import org.junit.After;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.acls.domain.BasePermission;
import org.springframework.security.acls.sid.PrincipalSid;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.test.context.ContextConfiguration;
import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;


/**
 * Tests {@link ContactManager}.
 *
 * @author David Leal
 * @author Ben Alex
 * @Author Luke Taylor
 */
@ContextConfiguration(locations={
                "/applicationContext-common-authorization.xml",
                "/applicationContext-common-business.xml",
                "/applicationContext-contacts-test.xml"})
@RunWith(SpringJUnit4ClassRunner.class)
public class ContactManagerTests {
    //~ Instance fields ================================================================================================

    @Autowired
    protected ContactManager contactManager;

    //~ Methods ========================================================================================================

    void assertContainsContact(long id, List<Contact> contacts) {
        for(Contact contact : contacts) {
            if (contact.getId().equals(Long.valueOf(id))) {
                return;
            }
        }

        fail("List of contacts should have contained: " + id);
    }

    void assertDoestNotContainContact(long id, List<Contact> contacts) {
        for(Contact contact : contacts) {
            if (contact.getId().equals(Long.valueOf(id))) {
                fail("List of contact should NOT (but did) contain: " + id);
            }
        }
    }

    /**
     * Locates the first <code>Contact</code> of the exact name specified.
     * <p>
     * Uses the {@link ContactManager#getAll()} method.
     *
     * @param id Identify of the contact to locate (must be an exact match)
     *
     * @return the domain or <code>null</code> if not found
     */
    Contact getContact(String id) {
        for(Contact contact : contactManager.getAll()) {
            if (contact.getId().equals(id)) {
                return contact;
            }
        }

        return null;
    }

    private void makeActiveUser(String username) {
        String password = "";

        if ("rod".equals(username)) {
            password = "koala";
        } else if ("dianne".equals(username)) {
            password = "emu";
        } else if ("scott".equals(username)) {
            password = "wombat";
        } else if ("peter".equals(username)) {
            password = "opal";
        }

        Authentication authRequest = new UsernamePasswordAuthenticationToken(username, password);
        SecurityContextHolder.getContext().setAuthentication(authRequest);
    }

    @After
    public void clearContext() {
        SecurityContextHolder.clearContext();
    }

    @Test
    public void testDianne() {
        makeActiveUser("dianne"); // has ROLE_USER

        List<Contact> contacts = contactManager.getAll();
        assertEquals(4, contacts.size());

        assertContainsContact(4, contacts);
        assertContainsContact(5, contacts);
        assertContainsContact(6, contacts);
        assertContainsContact(8, contacts);

        assertDoestNotContainContact(1, contacts);
        assertDoestNotContainContact(2, contacts);
        assertDoestNotContainContact(3, contacts);
    }

    @Test
    public void testrod() {
        makeActiveUser("rod"); // has ROLE_SUPERVISOR

        List<Contact> contacts = contactManager.getAll();

        assertEquals(4, contacts.size());

        assertContainsContact(1, contacts);
        assertContainsContact(2, contacts);
        assertContainsContact(3, contacts);
        assertContainsContact(4, contacts);

        assertDoestNotContainContact(5, contacts);

        Contact c1 = contactManager.getById(new Long(4));

        contactManager.deletePermission(c1, new PrincipalSid("bob"), BasePermission.ADMINISTRATION);
        contactManager.addPermission(c1, new PrincipalSid("bob"), BasePermission.ADMINISTRATION);
    }

    @Test
    public void testScott() {
        makeActiveUser("scott"); // has ROLE_USER

        List<Contact> contacts = contactManager.getAll();

        assertEquals(5, contacts.size());

        assertContainsContact(4, contacts);
        assertContainsContact(6, contacts);
        assertContainsContact(7, contacts);
        assertContainsContact(8, contacts);
        assertContainsContact(9, contacts);

        assertDoestNotContainContact(1, contacts);
    }
}