diff options
author | Duarte Meneses <duarte.meneses@sonarsource.com> | 2021-06-15 15:53:40 -0500 |
---|---|---|
committer | sonartech <sonartech@sonarsource.com> | 2021-06-17 20:03:08 +0000 |
commit | f9d6d236fe015483086c06993c16826375e78b9e (patch) | |
tree | 1b65ff913cd6b593c1faa7a3db4892dea6e79d88 /server/sonar-webserver | |
parent | 2754feca4e5fa8fdd804c827783250f48676296c (diff) | |
download | sonarqube-f9d6d236fe015483086c06993c16826375e78b9e.tar.gz sonarqube-f9d6d236fe015483086c06993c16826375e78b9e.zip |
Improve test coverage
Diffstat (limited to 'server/sonar-webserver')
4 files changed, 147 insertions, 8 deletions
diff --git a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java new file mode 100644 index 00000000000..f17b076b9ba --- /dev/null +++ b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebSecurityManager.java @@ -0,0 +1,49 @@ +/* + * SonarQube + * Copyright (C) 2009-2021 SonarSource SA + * mailto:info AT sonarsource DOT com + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 3 of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program; if not, write to the Free Software Foundation, + * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. + */ +package org.sonar.server.app; + +import org.sonar.process.PluginFileWriteRule; +import org.sonar.process.PluginSecurityManager; +import org.sonar.process.ProcessProperties; +import org.sonar.process.Props; + +public class WebSecurityManager { + private final PluginSecurityManager pluginSecurityManager; + private final Props props; + + private boolean applied; + + public WebSecurityManager(PluginSecurityManager pluginSecurityManager, Props props) { + this.pluginSecurityManager = pluginSecurityManager; + this.props = props; + } + + public void apply() { + if (applied) { + throw new IllegalStateException("can't apply twice"); + } + applied = true; + + PluginFileWriteRule writeRule = new PluginFileWriteRule( + props.nonNullValueAsFile(ProcessProperties.Property.PATH_HOME.getKey()).toPath(), + props.nonNullValueAsFile(ProcessProperties.Property.PATH_TEMP.getKey()).toPath()); + pluginSecurityManager.restrictPlugins(writeRule); + } +} diff --git a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java index a3ddfc67900..12c959c986d 100644 --- a/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java +++ b/server/sonar-webserver/src/main/java/org/sonar/server/app/WebServer.java @@ -24,11 +24,9 @@ import java.io.File; import org.slf4j.LoggerFactory; import org.sonar.process.MinimumViableSystem; import org.sonar.process.Monitored; -import org.sonar.process.PluginFileWriteRule; import org.sonar.process.PluginSecurityManager; import org.sonar.process.ProcessEntryPoint; import org.sonar.process.ProcessId; -import org.sonar.process.ProcessProperties; import org.sonar.process.Props; import org.sonar.process.sharedmemoryfile.DefaultProcessCommands; @@ -98,12 +96,7 @@ public class WebServer implements Monitored { ProcessEntryPoint entryPoint = ProcessEntryPoint.createForArguments(args); Props props = entryPoint.getProps(); new WebServerProcessLogging().configure(props); - - - PluginFileWriteRule writeRule = new PluginFileWriteRule( - props.nonNullValueAsFile(ProcessProperties.Property.PATH_HOME.getKey()).toPath(), - props.nonNullValueAsFile(ProcessProperties.Property.PATH_TEMP.getKey()).toPath()); - PluginSecurityManager.restrictPlugins(writeRule); + new WebSecurityManager(new PluginSecurityManager(), props).apply(); WebServer server = new WebServer(props); entryPoint.launch(server); diff --git a/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java new file mode 100644 index 00000000000..4d3c71eaadd --- /dev/null +++ b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebSecurityManagerTest.java @@ -0,0 +1,60 @@ +/* + * SonarQube + * Copyright (C) 2009-2021 SonarSource SA + * mailto:info AT sonarsource DOT com + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 3 of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program; if not, write to the Free Software Foundation, + * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. + */ +package org.sonar.server.app; + +import java.util.Properties; +import org.junit.Test; +import org.sonar.process.PluginFileWriteRule; +import org.sonar.process.PluginSecurityManager; +import org.sonar.process.Props; + +import static org.junit.Assert.assertThrows; +import static org.mockito.ArgumentMatchers.any; +import static org.mockito.Mockito.mock; +import static org.mockito.Mockito.verify; +import static org.sonar.process.ProcessProperties.Property.PATH_HOME; +import static org.sonar.process.ProcessProperties.Property.PATH_TEMP; + +public class WebSecurityManagerTest { + private final PluginSecurityManager pluginSecurityManager = mock(PluginSecurityManager.class); + + @Test + public void apply_calls_PluginSecurityManager() { + Properties properties = new Properties(); + properties.setProperty(PATH_HOME.getKey(), "home"); + properties.setProperty(PATH_TEMP.getKey(), "temp"); + Props props = new Props(properties); + WebSecurityManager securityManager = new WebSecurityManager(pluginSecurityManager, props); + securityManager.apply(); + + verify(pluginSecurityManager).restrictPlugins(any(PluginFileWriteRule.class)); + } + + @Test + public void fail_if_runs_twice() { + Properties properties = new Properties(); + properties.setProperty(PATH_HOME.getKey(), "home"); + properties.setProperty(PATH_TEMP.getKey(), "temp"); + Props props = new Props(properties); + WebSecurityManager securityManager = new WebSecurityManager(pluginSecurityManager, props); + securityManager.apply(); + assertThrows(IllegalStateException.class, securityManager::apply); + } +} diff --git a/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java new file mode 100644 index 00000000000..88258837d09 --- /dev/null +++ b/server/sonar-webserver/src/test/java/org/sonar/server/app/WebServerTest.java @@ -0,0 +1,37 @@ +/* + * SonarQube + * Copyright (C) 2009-2021 SonarSource SA + * mailto:info AT sonarsource DOT com + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 3 of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program; if not, write to the Free Software Foundation, + * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. + */ +package org.sonar.server.app; + +import org.junit.Assert; +import org.junit.Test; +import org.junit.function.ThrowingRunnable; + +public class WebServerTest { + + @Test + public void main_givenNoArguments() { + String[] arguments = {}; + + ThrowingRunnable runnable = () -> WebServer.main(arguments); + + Assert.assertThrows("Only a single command-line argument is accepted (absolute path to configuration file)", + IllegalArgumentException.class, runnable); + } +} |