mirrors
/
sonarqube
kopie van https://github.com/SonarSource/sonarqube.git
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Publicaties 237 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30151 Commits
59 Branches
Tree: c3545216c4
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'c3545216c4'
${ noResults }
sonarqube/server/sonar-webserver-auth/src/test/java/org/sonar/server/authentication/UserRegistrarImplOrgMembers...

UserRegistrarImplOrgMembershipSyncTest.java 11KB
Ruw Blame Geschiedenis

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.authentication;

  21. 

  22. import com.google.common.collect.ImmutableSet;

  23. import org.junit.Rule;

  24. import org.junit.Test;

  25. import org.junit.rules.ExpectedException;

  26. import org.sonar.api.config.internal.MapSettings;

  27. import org.sonar.api.impl.utils.AlwaysIncreasingSystem2;

  28. import org.sonar.api.resources.Qualifiers;

  29. import org.sonar.api.resources.ResourceTypes;

  30. import org.sonar.api.server.authentication.UserIdentity;

  31. import org.sonar.api.utils.System2;

  32. import org.sonar.db.DbTester;

  33. import org.sonar.db.alm.AlmAppInstallDto;

  34. import org.sonar.db.component.ResourceTypesRule;

  35. import org.sonar.db.organization.OrganizationDto;

  36. import org.sonar.db.user.UserDto;

  37. import org.sonar.server.authentication.UserRegistration.ExistingEmailStrategy;

  38. import org.sonar.server.authentication.event.AuthenticationEvent.Source;

  39. import org.sonar.server.es.EsTester;

  40. import org.sonar.server.organization.DefaultOrganizationProvider;

  41. import org.sonar.server.organization.MemberUpdater;

  42. import org.sonar.server.organization.OrganizationUpdater;

  43. import org.sonar.server.organization.TestDefaultOrganizationProvider;

  44. import org.sonar.server.organization.TestOrganizationFlags;

  45. import org.sonar.server.permission.PermissionService;

  46. import org.sonar.server.permission.PermissionServiceImpl;

  47. import org.sonar.server.user.NewUserNotifier;

  48. import org.sonar.server.user.UserUpdater;

  49. import org.sonar.server.user.index.UserIndexer;

  50. import org.sonar.server.usergroups.DefaultGroupFinder;

  51. 

  52. import static org.mockito.Mockito.mock;

  53. import static org.sonar.db.alm.ALM.BITBUCKETCLOUD;

  54. import static org.sonar.db.alm.ALM.GITHUB;

  55. import static org.sonar.server.authentication.event.AuthenticationEvent.Method.BASIC;

  56. 

  57. public class UserRegistrarImplOrgMembershipSyncTest {

  58. 

  59.   private System2 system2 = new AlwaysIncreasingSystem2();

  60. 

  61.   private static String USER_LOGIN = "github-johndoo";

  62. 

  63.   private static UserIdentity USER_IDENTITY = UserIdentity.builder()

  64.     .setProviderId("ABCD")

  65.     .setProviderLogin("johndoo")

  66.     .setName("John")

  67.     .setEmail("john@email.com")

  68.     .build();

  69. 

  70.   private static TestIdentityProvider GITHUB_PROVIDER = new TestIdentityProvider()

  71.     .setKey("github")

  72.     .setName("Github")

  73.     .setEnabled(true)

  74.     .setAllowsUsersToSignUp(true);

  75. 

  76.   private static TestIdentityProvider BITBUCKET_PROVIDER = new TestIdentityProvider()

  77.     .setKey("bitbucket")

  78.     .setName("Bitbucket")

  79.     .setEnabled(true)

  80.     .setAllowsUsersToSignUp(true);

  81. 

  82.   private MapSettings settings = new MapSettings();

  83. 

  84.   @Rule

  85.   public ExpectedException expectedException = ExpectedException.none();

  86.   @Rule

  87.   public DbTester db = DbTester.create(new AlwaysIncreasingSystem2());

  88.   @Rule

  89.   public EsTester es = EsTester.create();

  90.   private UserIndexer userIndexer = new UserIndexer(db.getDbClient(), es.client());

  91.   private DefaultOrganizationProvider defaultOrganizationProvider = TestDefaultOrganizationProvider.from(db);

  92.   private OrganizationUpdater organizationUpdater = mock(OrganizationUpdater.class);

  93.   private TestOrganizationFlags organizationFlags = TestOrganizationFlags.standalone();

  94.   private CredentialsLocalAuthentication localAuthentication = new CredentialsLocalAuthentication(db.getDbClient());

  95.   private UserUpdater userUpdater = new UserUpdater(

  96.     system2,

  97.     mock(NewUserNotifier.class),

  98.     db.getDbClient(),

  99.     userIndexer,

  100.     organizationFlags,

  101.     defaultOrganizationProvider,

  102.     new DefaultGroupFinder(db.getDbClient()),

  103.     settings.asConfig(),

  104.     localAuthentication);

  105. 

  106.   private ResourceTypes resourceTypes = new ResourceTypesRule().setRootQualifiers(Qualifiers.PROJECT);

  107.   private PermissionService permissionService = new PermissionServiceImpl(resourceTypes);

  108.   private DefaultGroupFinder defaultGroupFinder = new DefaultGroupFinder(db.getDbClient());

  109. 

  110.   private UserRegistrarImpl underTest = new UserRegistrarImpl(db.getDbClient(), userUpdater, defaultOrganizationProvider, organizationFlags,

  111.     defaultGroupFinder, new MemberUpdater(db.getDbClient(), defaultGroupFinder, userIndexer));

  112. 

  113.   @Test

  114.   public void authenticate_new_github_user_syncs_organization() {

  115.     organizationFlags.setEnabled(true);

  116.     OrganizationDto organization = db.organizations().insert();

  117.     db.users().insertDefaultGroup(organization, "Members");

  118.     AlmAppInstallDto gitHubInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(GITHUB));

  119.     db.alm().insertOrganizationAlmBinding(organization, gitHubInstall, true);

  120. 

  121.     underTest.register(UserRegistration.builder()

  122.       .setUserIdentity(USER_IDENTITY)

  123.       .setProvider(GITHUB_PROVIDER)

  124.       .setSource(Source.realm(BASIC, GITHUB_PROVIDER.getName()))

  125.       .setExistingEmailStrategy(ExistingEmailStrategy.ALLOW)

  126.       .setOrganizationAlmIds(ImmutableSet.of(gitHubInstall.getOrganizationAlmId()))

  127.       .build());

  128. 

  129.     UserDto user = db.users().selectUserByExternalLoginAndIdentityProvider(USER_IDENTITY.getProviderLogin(), GITHUB_PROVIDER.getKey()).get();

  130.     db.organizations().assertUserIsMemberOfOrganization(organization, user);

  131.   }

  132. 

  133.   @Test

  134.   public void authenticate_new_github_user_does_not_sync_organization_when_no_org_alm_ids_provided() {

  135.     organizationFlags.setEnabled(true);

  136.     OrganizationDto organization = db.organizations().insert();

  137.     db.users().insertDefaultGroup(organization, "Members");

  138.     AlmAppInstallDto gitHubInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(GITHUB));

  139.     db.alm().insertOrganizationAlmBinding(organization, gitHubInstall, true);

  140. 

  141.     underTest.register(UserRegistration.builder()

  142.       .setUserIdentity(USER_IDENTITY)

  143.       .setProvider(GITHUB_PROVIDER)

  144.       .setSource(Source.realm(BASIC, GITHUB_PROVIDER.getName()))

  145.       .setExistingEmailStrategy(ExistingEmailStrategy.ALLOW)

  146.       .setOrganizationAlmIds(null)

  147.       .build());

  148. 

  149.     UserDto user = db.users().selectUserByExternalLoginAndIdentityProvider(USER_IDENTITY.getProviderLogin(), GITHUB_PROVIDER.getKey()).get();

  150.     db.organizations().assertUserIsNotMemberOfOrganization(organization, user);

  151.   }

  152. 

  153.   @Test

  154.   public void authenticate_new_bitbucket_user_does_not_sync_organization() {

  155.     organizationFlags.setEnabled(true);

  156.     OrganizationDto organization = db.organizations().insert();

  157.     db.users().insertDefaultGroup(organization, "Members");

  158.     AlmAppInstallDto gitHubInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(BITBUCKETCLOUD));

  159.     db.alm().insertOrganizationAlmBinding(organization, gitHubInstall, true);

  160. 

  161.     underTest.register(UserRegistration.builder()

  162.       .setUserIdentity(USER_IDENTITY)

  163.       .setProvider(BITBUCKET_PROVIDER)

  164.       .setSource(Source.realm(BASIC, BITBUCKET_PROVIDER.getName()))

  165.       .setExistingEmailStrategy(ExistingEmailStrategy.ALLOW)

  166.       .setOrganizationAlmIds(ImmutableSet.of(gitHubInstall.getOrganizationAlmId()))

  167.       .build());

  168. 

  169.     UserDto user = db.users().selectUserByExternalLoginAndIdentityProvider(USER_IDENTITY.getProviderLogin(), BITBUCKET_PROVIDER.getKey()).get();

  170.     db.organizations().assertUserIsNotMemberOfOrganization(organization, user);

  171.   }

  172. 

  173.   @Test

  174.   public void authenticate_new_user_using_unknown_alm_does_not_sync_organization() {

  175.     organizationFlags.setEnabled(true);

  176.     OrganizationDto organization = db.organizations().insert();

  177.     db.users().insertDefaultGroup(organization, "Members");

  178.     AlmAppInstallDto almAppInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(GITHUB));

  179.     db.alm().insertOrganizationAlmBinding(organization, almAppInstall, true);

  180.     TestIdentityProvider identityProvider = new TestIdentityProvider()

  181.       .setKey("unknown")

  182.       .setName("unknown")

  183.       .setEnabled(true)

  184.       .setAllowsUsersToSignUp(true);

  185. 

  186.     underTest.register(UserRegistration.builder()

  187.       .setUserIdentity(USER_IDENTITY)

  188.       .setProvider(identityProvider)

  189.       .setSource(Source.realm(BASIC, identityProvider.getName()))

  190.       .setExistingEmailStrategy(ExistingEmailStrategy.ALLOW)

  191.       .setOrganizationAlmIds(ImmutableSet.of(almAppInstall.getOrganizationAlmId()))

  192.       .build());

  193. 

  194.     UserDto user = db.users().selectUserByExternalLoginAndIdentityProvider(USER_IDENTITY.getProviderLogin(), identityProvider.getKey()).get();

  195.     db.organizations().assertUserIsNotMemberOfOrganization(organization, user);

  196.   }

  197. 

  198.   @Test

  199.   public void authenticate_existing_github_user_does_not_sync_organization() {

  200.     organizationFlags.setEnabled(true);

  201.     OrganizationDto organization = db.organizations().insert();

  202.     db.users().insertDefaultGroup(organization, "Members");

  203.     AlmAppInstallDto gitHubInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(GITHUB));

  204.     db.alm().insertOrganizationAlmBinding(organization, gitHubInstall, true);

  205.     UserDto user = db.users().insertUser(u -> u

  206.       .setLogin("Old login")

  207.       .setExternalId(USER_IDENTITY.getProviderId())

  208.       .setExternalIdentityProvider(GITHUB_PROVIDER.getKey()));

  209. 

  210.     underTest.register(UserRegistration.builder()

  211.       .setUserIdentity(USER_IDENTITY)

  212.       .setProvider(GITHUB_PROVIDER)

  213.       .setSource(Source.local(BASIC))

  214.       .setExistingEmailStrategy(ExistingEmailStrategy.FORBID)

  215.       .setOrganizationAlmIds(ImmutableSet.of(gitHubInstall.getOrganizationAlmId()))

  216.       .build());

  217. 

  218.     db.organizations().assertUserIsNotMemberOfOrganization(organization, user);

  219.   }

  220. 

  221.   @Test

  222.   public void authenticate_disabled_github_user_syncs_organization() {

  223.     organizationFlags.setEnabled(true);

  224.     OrganizationDto organization = db.organizations().insert();

  225.     db.users().insertDefaultGroup(organization, "Members");

  226.     AlmAppInstallDto gitHubInstall = db.alm().insertAlmAppInstall(a -> a.setAlm(GITHUB));

  227.     db.alm().insertOrganizationAlmBinding(organization, gitHubInstall, true);

  228.     UserDto user = db.users().insertDisabledUser(u -> u

  229.       .setLogin(USER_LOGIN)

  230.       .setExternalId(USER_IDENTITY.getProviderId())

  231.       .setExternalIdentityProvider(GITHUB_PROVIDER.getKey())

  232.     );

  233. 

  234.     underTest.register(UserRegistration.builder()

  235.       .setUserIdentity(USER_IDENTITY)

  236.       .setProvider(GITHUB_PROVIDER)

  237.       .setSource(Source.local(BASIC))

  238.       .setExistingEmailStrategy(ExistingEmailStrategy.FORBID)

  239.       .setOrganizationAlmIds(ImmutableSet.of(gitHubInstall.getOrganizationAlmId()))

  240.       .build());

  241. 

  242.     db.organizations().assertUserIsMemberOfOrganization(organization, user);

  243.   }

  244. }