update test cases

git-svn-id: https://svn.apache.org/repos/asf/archiva/branches/archiva-security-fix@701791 13f79535-47bb-0310-9956-ffa450edef68
author: Maria Odea B. Ching <oching@apache.org> 2008-10-05 13:12:15 +0000
committer: Maria Odea B. Ching <oching@apache.org> 2008-10-05 13:12:15 +0000
commit: ee6c59862a135322858348df618f74d4391eac7b (patch)
tree: 29218d793c013db2614c9e527cdb5e33fe05a2e3
parent: 81027cf972f241dfa6f443c3992efcead70235bb (diff)
download: archiva-ee6c59862a135322858348df618f74d4391eac7b.tar.gz
archiva-ee6c59862a135322858348df618f74d4391eac7b.zip
1 files changed, 23 insertions, 9 deletions
diff --git a/archiva-modules/archiva-web/archiva-webdav/src/test/java/org/apache/maven/archiva/webdav/RepositoryServletSecurityTest.java b/archiva-modules/archiva-web/archiva-webdav/src/test/java/org/apache/maven/archiva/webdav/RepositoryServletSecurityTest.java
index 4446db1eb..acabdb51c 100644
--- a/archiva-modules/archiva-web/archiva-webdav/src/test/java/org/apache/maven/archiva/webdav/RepositoryServletSecurityTest.java
+++ b/archiva-modules/archiva-web/archiva-webdav/src/test/java/org/apache/maven/archiva/webdav/RepositoryServletSecurityTest.java
@@ -247,16 +247,33 @@ public class RepositoryServletSecurityTest
         servlet = (RepositoryServlet) ic.getServlet();
         servlet.setDavSessionProvider( davSessionProvider );
 
+        ArchivaDavResourceFactory archivaDavResourceFactory = (ArchivaDavResourceFactory) servlet.getResourceFactory();
+        archivaDavResourceFactory.setHttpAuth( httpAuth );
+        archivaDavResourceFactory.setServletAuth( servletAuth );
+
+        servlet.setResourceFactory( archivaDavResourceFactory );
+        
         AuthenticationResult result = new AuthenticationResult();
         httpAuthControl.expectAndReturn( httpAuth.getAuthenticationResult( null, null ), result );
         servletAuthControl.expectAndThrow( servletAuth.isAuthenticated( null, null ),
                                            new AuthenticationException( "Authentication error" ) );
-        // servletAuthControl.expectAndReturn( servletAuth.isAuthorized( "guest", "internal" ), true );
-
+        servletAuthControl.expectAndReturn( servletAuth.isAuthorized( "guest", "internal" ), true );
+        
+     // ArchivaDavResourceFactory#isAuthorized()
+        SecuritySession session = new DefaultSecuritySession();
+        httpAuthControl.expectAndReturn( httpAuth.getAuthenticationResult( null, null ), result );
+        httpAuthControl.expectAndReturn( httpAuth.getSecuritySession(), session );
+        servletAuthControl.expectAndThrow( servletAuth.isAuthenticated( null, result ),
+                                           new AuthenticationException( "Authentication error" ) );
+        
+        // check if guest has write access
+        servletAuthControl.expectAndReturn( servletAuth.isAuthorized( "guest", "internal" ), true );
+        
         httpAuthControl.replay();
         servletAuthControl.replay();
 
-        WebResponse response = sc.getResponse( request );
+        //WebResponse response = sc.getResponse( request );
+        servlet.service( ic.getRequest(), ic.getResponse() );
 
         httpAuthControl.verify();
         servletAuthControl.verify();
@@ -460,8 +477,7 @@ public class RepositoryServletSecurityTest
         AuthenticationResult result = new AuthenticationResult();
         httpAuthControl.expectAndReturn( httpAuth.getAuthenticationResult( null, null ), result );
         servletAuthControl.expectAndReturn( servletAuth.isAuthenticated( null, null ), true );
-        //servletAuthControl.expectAndReturn( servletAuth.isAuthorized( "guest", "internal" ), true );
-
+        
      // ArchivaDavResourceFactory#isAuthorized()
         SecuritySession session = new DefaultSecuritySession();
         httpAuthControl.expectAndReturn( httpAuth.getAuthenticationResult( null, null ), result );
@@ -474,13 +490,11 @@ public class RepositoryServletSecurityTest
 
         WebResponse response = sc.getResponse( request );
         
-        //servlet.service( ic.getRequest(), ic.getResponse() );
-
         httpAuthControl.verify();
         servletAuthControl.verify();
 
-        //assertEquals( HttpServletResponse.SC_OK, response.getResponseCode() );
-        //assertEquals( "Expected file contents", expectedArtifactContents, response.getText() );
+        assertEquals( HttpServletResponse.SC_OK, response.getResponseCode() );
+        assertEquals( "Expected file contents", expectedArtifactContents, response.getText() );
     }
 
     // test get with valid user with no read access to repo
author	Maria Odea B. Ching <oching@apache.org>	2008-10-05 13:12:15 +0000
committer	Maria Odea B. Ching <oching@apache.org>	2008-10-05 13:12:15 +0000
commit	ee6c59862a135322858348df618f74d4391eac7b (patch)
tree	29218d793c013db2614c9e527cdb5e33fe05a2e3
parent	81027cf972f241dfa6f443c3992efcead70235bb (diff)
download	archiva-ee6c59862a135322858348df618f74d4391eac7b.tar.gz archiva-ee6c59862a135322858348df618f74d4391eac7b.zip