added ScmRealm role based authorization tests

2025-11-12 16:35:45 +01:00 · 2013-01-31 16:20:47 +01:00
parent 16479bac68
commit f84b222938
1 changed files with 55 additions and 1 deletions
--- a/scm-webapp/src/test/java/sonia/scm/security/ScmRealmTest.java
+++ b/scm-webapp/src/test/java/sonia/scm/security/ScmRealmTest.java
@@ -36,12 +36,12 @@ package sonia.scm.security;
 import com.google.common.collect.ImmutableSet;
 import com.google.inject.Provider;

-import org.apache.http.annotation.Immutable;
 import org.apache.shiro.authc.AccountException;
 import org.apache.shiro.authc.AuthenticationInfo;
 import org.apache.shiro.authc.AuthenticationToken;
 import org.apache.shiro.authc.UnknownAccountException;
 import org.apache.shiro.authc.UsernamePasswordToken;
+import org.apache.shiro.authz.AuthorizationInfo;
 import org.apache.shiro.subject.PrincipalCollection;

 import org.junit.Test;
@@ -94,6 +94,41 @@ public class ScmRealmTest
    realm.getAuthenticationInfo(token("marvin", trillian.getPassword()));
  }

+  /**
+   * Method description
+   *
+   */
+  @Test
+  public void testAuthorizationAdminRoles()
+  {
+    User trillian = createSampleUser();
+
+    trillian.setAdmin(true);
+
+    AuthorizationInfo aci = authorizationInfo(trillian);
+    Collection<String> roles = aci.getRoles();
+
+    assertNotNull(roles);
+    assertEquals(2, roles.size());
+    assertTrue(roles.contains(Role.ADMIN));
+    assertTrue(roles.contains(Role.USER));
+  }
+
+  /**
+   * Method description
+   *
+   */
+  @Test
+  public void testAuthorizationUserRoles()
+  {
+    AuthorizationInfo aci = authorizationInfo(createSampleUser());
+    Collection<String> roles = aci.getRoles();
+
+    assertNotNull(roles);
+    assertEquals(1, roles.size());
+    assertEquals(Role.USER, roles.iterator().next());
+  }
+
  /**
   * Method description
   *
@@ -136,6 +171,25 @@ public class ScmRealmTest
    assertThat(groups, containsInAnyOrder("g1", "g2"));
  }

+  /**
+   * Method description
+   *
+   *
+   * @param user
+   *
+   * @return
+   */
+  private AuthorizationInfo authorizationInfo(User user)
+  {
+    ScmRealm realm = createRealm(user);
+    AuthenticationInfo aui = realm.getAuthenticationInfo(token(user));
+    AuthorizationInfo aci = realm.doGetAuthorizationInfo(aui.getPrincipals());
+
+    assertNotNull(aci);
+
+    return aci;
+  }
+
  /**
   * Method description
   *