aboutsummaryrefslogtreecommitdiffstats
path: root/server/sonar-webserver
diff options
context:
space:
mode:
authorDuarte Meneses <duarte.meneses@sonarsource.com>2021-06-15 15:53:40 -0500
committersonartech <sonartech@sonarsource.com>2021-06-17 20:03:08 +0000
commitf9d6d236fe015483086c06993c16826375e78b9e (patch)
tree1b65ff913cd6b593c1faa7a3db4892dea6e79d88 /server/sonar-webserver
parent2754feca4e5fa8fdd804c827783250f48676296c (diff)
downloadsonarqube-f9d6d236fe015483086c06993c16826375e78b9e.tar.gz
sonarqube-f9d6d236fe015483086c06993c16826375e78b9e.zip
Improve test coverage
Diffstat (limited to 'server/sonar-webserver')
-rw-r--r--server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java49
-rw-r--r--server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java9
-rw-r--r--server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java60
-rw-r--r--server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java37
4 files changed, 147 insertions, 8 deletions
diff --git a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java
new file mode 100644
index 00000000000..f17b076b9ba
--- /dev/null
+++ b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java
@@ -0,0 +1,49 @@
+/*
+ * SonarQube
+ * Copyright (C) 2009-2021 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.app;
+
+import org.sonar.process.PluginFileWriteRule;
+import org.sonar.process.PluginSecurityManager;
+import org.sonar.process.ProcessProperties;
+import org.sonar.process.Props;
+
+public class WebSecurityManager {
+ private final PluginSecurityManager pluginSecurityManager;
+ private final Props props;
+
+ private boolean applied;
+
+ public WebSecurityManager(PluginSecurityManager pluginSecurityManager, Props props) {
+ this.pluginSecurityManager = pluginSecurityManager;
+ this.props = props;
+ }
+
+ public void apply() {
+ if (applied) {
+ throw new IllegalStateException("can't apply twice");
+ }
+ applied = true;
+
+ PluginFileWriteRule writeRule = new PluginFileWriteRule(
+ props.nonNullValueAsFile(ProcessProperties.Property.PATH_HOME.getKey()).toPath(),
+ props.nonNullValueAsFile(ProcessProperties.Property.PATH_TEMP.getKey()).toPath());
+ pluginSecurityManager.restrictPlugins(writeRule);
+ }
+}
diff --git a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java
index a3ddfc67900..12c959c986d 100644
--- a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java
+++ b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java
@@ -24,11 +24,9 @@ import java.io.File;
import org.slf4j.LoggerFactory;
import org.sonar.process.MinimumViableSystem;
import org.sonar.process.Monitored;
-import org.sonar.process.PluginFileWriteRule;
import org.sonar.process.PluginSecurityManager;
import org.sonar.process.ProcessEntryPoint;
import org.sonar.process.ProcessId;
-import org.sonar.process.ProcessProperties;
import org.sonar.process.Props;
import org.sonar.process.sharedmemoryfile.DefaultProcessCommands;
@@ -98,12 +96,7 @@ public class WebServer implements Monitored {
ProcessEntryPoint entryPoint = ProcessEntryPoint.createForArguments(args);
Props props = entryPoint.getProps();
new WebServerProcessLogging().configure(props);
-
-
- PluginFileWriteRule writeRule = new PluginFileWriteRule(
- props.nonNullValueAsFile(ProcessProperties.Property.PATH_HOME.getKey()).toPath(),
- props.nonNullValueAsFile(ProcessProperties.Property.PATH_TEMP.getKey()).toPath());
- PluginSecurityManager.restrictPlugins(writeRule);
+ new WebSecurityManager(new PluginSecurityManager(), props).apply();
WebServer server = new WebServer(props);
entryPoint.launch(server);
diff --git a/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java
new file mode 100644
index 00000000000..4d3c71eaadd
--- /dev/null
+++ b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java
@@ -0,0 +1,60 @@
+/*
+ * SonarQube
+ * Copyright (C) 2009-2021 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.app;
+
+import java.util.Properties;
+import org.junit.Test;
+import org.sonar.process.PluginFileWriteRule;
+import org.sonar.process.PluginSecurityManager;
+import org.sonar.process.Props;
+
+import static org.junit.Assert.assertThrows;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.verify;
+import static org.sonar.process.ProcessProperties.Property.PATH_HOME;
+import static org.sonar.process.ProcessProperties.Property.PATH_TEMP;
+
+public class WebSecurityManagerTest {
+ private final PluginSecurityManager pluginSecurityManager = mock(PluginSecurityManager.class);
+
+ @Test
+ public void apply_calls_PluginSecurityManager() {
+ Properties properties = new Properties();
+ properties.setProperty(PATH_HOME.getKey(), "home");
+ properties.setProperty(PATH_TEMP.getKey(), "temp");
+ Props props = new Props(properties);
+ WebSecurityManager securityManager = new WebSecurityManager(pluginSecurityManager, props);
+ securityManager.apply();
+
+ verify(pluginSecurityManager).restrictPlugins(any(PluginFileWriteRule.class));
+ }
+
+ @Test
+ public void fail_if_runs_twice() {
+ Properties properties = new Properties();
+ properties.setProperty(PATH_HOME.getKey(), "home");
+ properties.setProperty(PATH_TEMP.getKey(), "temp");
+ Props props = new Props(properties);
+ WebSecurityManager securityManager = new WebSecurityManager(pluginSecurityManager, props);
+ securityManager.apply();
+ assertThrows(IllegalStateException.class, securityManager::apply);
+ }
+}
diff --git a/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java
new file mode 100644
index 00000000000..88258837d09
--- /dev/null
+++ b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java
@@ -0,0 +1,37 @@
+/*
+ * SonarQube
+ * Copyright (C) 2009-2021 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.app;
+
+import org.junit.Assert;
+import org.junit.Test;
+import org.junit.function.ThrowingRunnable;
+
+public class WebServerTest {
+
+ @Test
+ public void main_givenNoArguments() {
+ String[] arguments = {};
+
+ ThrowingRunnable runnable = () -> WebServer.main(arguments);
+
+ Assert.assertThrows("Only a single command-line argument is accepted (absolute path to configuration file)",
+ IllegalArgumentException.class, runnable);
+ }
+}