123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742 |
- /*
- * Copyright 2013 gitblit.com.
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
- package com.gitblit.tests;
-
- import java.io.BufferedReader;
- import java.io.IOException;
- import java.io.UnsupportedEncodingException;
- import java.security.Principal;
- import java.util.Collection;
- import java.util.Collections;
- import java.util.Enumeration;
- import java.util.HashMap;
- import java.util.List;
- import java.util.Locale;
- import java.util.Map;
-
- import javax.servlet.AsyncContext;
- import javax.servlet.DispatcherType;
- import javax.servlet.RequestDispatcher;
- import javax.servlet.ServletContext;
- import javax.servlet.ServletException;
- import javax.servlet.ServletInputStream;
- import javax.servlet.ServletRequest;
- import javax.servlet.ServletResponse;
- import javax.servlet.http.Cookie;
- import javax.servlet.http.HttpServletRequest;
- import javax.servlet.http.HttpServletResponse;
- import javax.servlet.http.HttpSession;
- import javax.servlet.http.HttpSessionContext;
- import javax.servlet.http.HttpUpgradeHandler;
- import javax.servlet.http.Part;
-
- import com.gitblit.utils.PasswordHash;
- import org.junit.Test;
-
- import com.gitblit.IUserService;
- import com.gitblit.Keys;
- import com.gitblit.manager.AuthenticationManager;
- import com.gitblit.manager.IAuthenticationManager;
- import com.gitblit.manager.IRuntimeManager;
- import com.gitblit.manager.RuntimeManager;
- import com.gitblit.manager.UserManager;
- import com.gitblit.models.TeamModel;
- import com.gitblit.models.UserModel;
- import com.gitblit.tests.mock.MemorySettings;
- import com.gitblit.utils.XssFilter;
- import com.gitblit.utils.XssFilter.AllowXssFilter;
-
- /**
- * Class for testing local authentication.
- *
- * @author James Moger
- *
- */
- @SuppressWarnings("deprecation")
- public class AuthenticationManagerTest extends GitblitUnitTest {
-
- UserManager users;
-
- private static final class DummyHttpServletRequest implements HttpServletRequest {
-
- @Override
- public Object getAttribute(String name) {
- return null;
- }
-
- @Override
- public Enumeration<String> getAttributeNames() {
- return null;
- }
-
- @Override
- public String getCharacterEncoding() {
- return null;
- }
-
- @Override
- public void setCharacterEncoding(String env)
- throws UnsupportedEncodingException {
- }
-
- @Override
- public int getContentLength() {
- return 0;
- }
-
- @Override
- public long getContentLengthLong() {
- return 0;
- }
-
- @Override
- public String getContentType() {
- return null;
- }
-
- @Override
- public ServletInputStream getInputStream() throws IOException {
- return null;
- }
-
- @Override
- public String getParameter(String name) {
- return null;
- }
-
- @Override
- public Enumeration<String> getParameterNames() {
- return null;
- }
-
- @Override
- public String[] getParameterValues(String name) {
- return null;
- }
-
- @Override
- public Map<String, String[]> getParameterMap() {
- return null;
- }
-
- @Override
- public String getProtocol() {
- return null;
- }
-
- @Override
- public String getScheme() {
- return null;
- }
-
- @Override
- public String getServerName() {
- return null;
- }
-
- @Override
- public int getServerPort() {
- return 0;
- }
-
- @Override
- public BufferedReader getReader() throws IOException {
- return null;
- }
-
- @Override
- public String getRemoteAddr() {
- return null;
- }
-
- @Override
- public String getRemoteHost() {
- return null;
- }
-
- @Override
- public void setAttribute(String name, Object o) {
- }
-
- @Override
- public void removeAttribute(String name) {
- }
-
- @Override
- public Locale getLocale() {
- return null;
- }
-
- @Override
- public Enumeration<Locale> getLocales() {
- return null;
- }
-
- @Override
- public boolean isSecure() {
- return false;
- }
-
- @Override
- public RequestDispatcher getRequestDispatcher(String path) {
- return null;
- }
-
- @Override
- public String getRealPath(String path) {
- return null;
- }
-
- @Override
- public int getRemotePort() {
- return 0;
- }
-
- @Override
- public String getLocalName() {
- return null;
- }
-
- @Override
- public String getLocalAddr() {
- return null;
- }
-
- @Override
- public int getLocalPort() {
- return 0;
- }
-
- @Override
- public ServletContext getServletContext() {
- return null;
- }
-
- @Override
- public AsyncContext startAsync() throws IllegalStateException {
- return null;
- }
-
- @Override
- public AsyncContext startAsync(ServletRequest servletRequest,
- ServletResponse servletResponse)
- throws IllegalStateException {
- return null;
- }
-
- @Override
- public boolean isAsyncStarted() {
- return false;
- }
-
- @Override
- public boolean isAsyncSupported() {
- return false;
- }
-
- @Override
- public AsyncContext getAsyncContext() {
- return null;
- }
-
- @Override
- public DispatcherType getDispatcherType() {
- return null;
- }
-
- @Override
- public String getAuthType() {
- return null;
- }
-
- @Override
- public Cookie[] getCookies() {
- return null;
- }
-
- @Override
- public long getDateHeader(String name) {
- return 0;
- }
-
- @Override
- public String getHeader(String name) {
- return null;
- }
-
- @Override
- public Enumeration<String> getHeaders(String name) {
- return null;
- }
-
- @Override
- public Enumeration<String> getHeaderNames() {
- return null;
- }
-
- @Override
- public int getIntHeader(String name) {
- return 0;
- }
-
- @Override
- public String getMethod() {
- return null;
- }
-
- @Override
- public String getPathInfo() {
- return null;
- }
-
- @Override
- public String getPathTranslated() {
- return null;
- }
-
- @Override
- public String getContextPath() {
- return null;
- }
-
- @Override
- public String getQueryString() {
- return null;
- }
-
- @Override
- public String getRemoteUser() {
- return null;
- }
-
- @Override
- public boolean isUserInRole(String role) {
- if(role != null && "admin".equals(role)) {
- return true;
- }
- return false;
- }
-
- @Override
- public Principal getUserPrincipal() {
- return new Principal(){
- @Override
- public String getName() {
- return "sunnyjim";
- }
-
- };
- }
-
- @Override
- public String getRequestedSessionId() {
- return null;
- }
-
- @Override
- public String getRequestURI() {
- return null;
- }
-
- @Override
- public StringBuffer getRequestURL() {
- return null;
- }
-
- @Override
- public String getServletPath() {
- return null;
- }
-
- @Override
- public HttpSession getSession(boolean create) {
- return null;
- }
-
- final Map<String, Object> sessionAttributes = new HashMap<String, Object>();
- @Override
- public HttpSession getSession() {
- return new HttpSession() {
-
- @Override
- public long getCreationTime() {
- return 0;
- }
-
- @Override
- public String getId() {
- return null;
- }
-
- @Override
- public long getLastAccessedTime() {
- return 0;
- }
-
- @Override
- public ServletContext getServletContext() {
- return null;
- }
-
- @Override
- public void setMaxInactiveInterval(int interval) {
- }
-
- @Override
- public int getMaxInactiveInterval() {
- return 0;
- }
-
- @Override
- public HttpSessionContext getSessionContext() {
- return null;
- }
-
- @Override
- public Object getAttribute(String name) {
- return sessionAttributes.get(name);
- }
-
- @Override
- public Object getValue(String name) {
- return null;
- }
-
- @Override
- public Enumeration<String> getAttributeNames() {
- return Collections.enumeration(sessionAttributes.keySet());
- }
-
- @Override
- public String[] getValueNames() {
- return null;
- }
-
- @Override
- public void setAttribute(String name,
- Object value) {
- }
-
- @Override
- public void putValue(String name, Object value) {
- }
-
- @Override
- public void removeAttribute(String name) {
- }
-
- @Override
- public void removeValue(String name) {
- }
-
- @Override
- public void invalidate() {
- }
-
- @Override
- public boolean isNew() {
- return false;
- }
-
- };
- }
-
- @Override
- public String changeSessionId() {
- return null;
- }
-
- @Override
- public boolean isRequestedSessionIdValid() {
- return false;
- }
-
- @Override
- public boolean isRequestedSessionIdFromCookie() {
- return false;
- }
-
- @Override
- public boolean isRequestedSessionIdFromURL() {
- return false;
- }
-
- @Override
- public boolean isRequestedSessionIdFromUrl() {
- return false;
- }
-
- @Override
- public boolean authenticate(HttpServletResponse response)
- throws IOException, ServletException {
- return false;
- }
-
- @Override
- public void login(String username, String password)
- throws ServletException {
- }
-
- @Override
- public void logout() throws ServletException {
- }
-
- @Override
- public Collection<Part> getParts() throws IOException,
- ServletException {
- return null;
- }
-
- @Override
- public Part getPart(String name) throws IOException,
- ServletException {
- return null;
- }
-
- @Override
- public <T extends HttpUpgradeHandler> T upgrade(
- Class<T> handlerClass) throws IOException,
- ServletException {
- return null;
- }
-
- }
-
- HashMap<String, Object> settings = new HashMap<String, Object>();
-
- MemorySettings getSettings() {
- return new MemorySettings(settings);
- }
-
- IAuthenticationManager newAuthenticationManager() {
- XssFilter xssFilter = new AllowXssFilter();
- RuntimeManager runtime = new RuntimeManager(getSettings(), xssFilter, GitBlitSuite.BASEFOLDER).start();
- users = new UserManager(runtime, null).start();
- final Map<String, UserModel> virtualUsers = new HashMap<String, UserModel>();
- users.setUserService(new IUserService() {
-
- @Override
- public void setup(IRuntimeManager runtimeManager) {
- }
-
- @Override
- public String getCookie(UserModel model) {
- return null;
- }
-
- @Override
- public UserModel getUserModel(char[] cookie) {
- return null;
- }
-
- @Override
- public UserModel getUserModel(String username) {
- return virtualUsers.get(username);
- }
-
- @Override
- public boolean updateUserModel(UserModel model) {
- virtualUsers.put(model.username, model);
- return true;
- }
-
- @Override
- public boolean updateUserModels(Collection<UserModel> models) {
- return false;
- }
-
- @Override
- public boolean updateUserModel(String username, UserModel model) {
- virtualUsers.put(username, model);
- return true;
- }
-
- @Override
- public boolean deleteUserModel(UserModel model) {
- return false;
- }
-
- @Override
- public boolean deleteUser(String username) {
- return false;
- }
-
- @Override
- public List<String> getAllUsernames() {
- return null;
- }
-
- @Override
- public List<UserModel> getAllUsers() {
- return null;
- }
-
- @Override
- public List<String> getAllTeamNames() {
- return null;
- }
-
- @Override
- public List<TeamModel> getAllTeams() {
- return null;
- }
-
- @Override
- public List<String> getTeamNamesForRepositoryRole(String role) {
- return null;
- }
-
- @Override
- public TeamModel getTeamModel(String teamname) {
- return null;
- }
-
- @Override
- public boolean updateTeamModel(TeamModel model) {
- return false;
- }
-
- @Override
- public boolean updateTeamModels(Collection<TeamModel> models) {
- return false;
- }
-
- @Override
- public boolean updateTeamModel(String teamname, TeamModel model) {
- return false;
- }
-
- @Override
- public boolean deleteTeamModel(TeamModel model) {
- return false;
- }
-
- @Override
- public boolean deleteTeam(String teamname) {
- return false;
- }
-
- @Override
- public List<String> getUsernamesForRepositoryRole(String role) {
- return null;
- }
-
- @Override
- public boolean renameRepositoryRole(String oldRole,
- String newRole) {
- return false;
- }
-
- @Override
- public boolean deleteRepositoryRole(String role) {
- return false;
- }
-
- });
- AuthenticationManager auth = new AuthenticationManager(runtime, users).start();
- return auth;
- }
-
- @Test
- public void testAuthenticate() throws Exception {
- IAuthenticationManager auth = newAuthenticationManager();
-
- UserModel user = new UserModel("sunnyjim");
- user.password = "password";
- users.updateUserModel(user);
-
- assertNotNull(auth.authenticate(user.username, user.password.toCharArray(), null));
- user.disabled = true;
-
- users.updateUserModel(user);
- assertNull(auth.authenticate(user.username, user.password.toCharArray(), null));
- users.deleteUserModel(user);
- }
-
-
- @Test
- public void testAuthenticateUpgradePlaintext() throws Exception {
- IAuthenticationManager auth = newAuthenticationManager();
-
- UserModel user = new UserModel("sunnyjim");
- user.password = "password";
- users.updateUserModel(user);
-
- assertNotNull(auth.authenticate(user.username, user.password.toCharArray(), null));
-
- // validate that plaintext password was automatically updated to hashed one
- assertTrue(user.password.startsWith(PasswordHash.getDefaultType().name() + ":"));
- }
-
-
- @Test
- public void testAuthenticateUpgradeMD5() throws Exception {
- IAuthenticationManager auth = newAuthenticationManager();
-
- UserModel user = new UserModel("sunnyjim");
- user.password = "MD5:5F4DCC3B5AA765D61D8327DEB882CF99";
- users.updateUserModel(user);
-
- assertNotNull(auth.authenticate(user.username, "password".toCharArray(), null));
-
- // validate that MD5 password was automatically updated to hashed one
- assertTrue(user.password.startsWith(PasswordHash.getDefaultType().name() + ":"));
- }
-
-
- @Test
- public void testContenairAuthenticate() throws Exception {
- settings.put(Keys.realm.container.autoCreateAccounts, "true");
- settings.put(Keys.realm.container.autoAccounts.displayName, "displayName");
- settings.put(Keys.realm.container.autoAccounts.emailAddress, "emailAddress");
- settings.put(Keys.realm.container.autoAccounts.adminRole, "admin");
- settings.put(Keys.realm.container.autoAccounts.locale, "locale");
-
- DummyHttpServletRequest request = new DummyHttpServletRequest();
- request.sessionAttributes.put("displayName", "Sunny Jim");
- request.sessionAttributes.put("emailAddress", "Jim.Sunny@gitblit.com");
- request.sessionAttributes.put("locale", "it");
-
- IAuthenticationManager auth = newAuthenticationManager();
-
- UserModel user = auth.authenticate(request);
-
- assertTrue(user.canAdmin);
- assertEquals("Sunny Jim", user.displayName);
- assertEquals("Jim.Sunny@gitblit.com", user.emailAddress);
- assertEquals(Locale.ITALIAN, user.getPreferences().getLocale());
- }
-
- @Test
- public void testContenairAuthenticateEmpty() throws Exception {
- settings.put(Keys.realm.container.autoCreateAccounts, "true");
- settings.put(Keys.realm.container.autoAccounts.displayName, "displayName");
- settings.put(Keys.realm.container.autoAccounts.emailAddress, "emailAddress");
- settings.put(Keys.realm.container.autoAccounts.adminRole, "notAdmin");
-
- DummyHttpServletRequest request = new DummyHttpServletRequest();
-
- IAuthenticationManager auth = newAuthenticationManager();
-
- UserModel user = auth.authenticate(request);
-
- assertFalse(user.canAdmin);
- assertEquals("sunnyjim", user.displayName);
- assertNull(user.emailAddress);
- assertNull(user.getPreferences().getLocale());
- }
-
- }
|