mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
blame | history | raw
vharseko
18.23.2023 bffeb78279ded6c57eb050f7237201ad93f8a4c2 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70

/*


 * The contents of this file are subject to the terms of the Common Development and


 * Distribution License (the License). You may not use this file except in compliance with the


 * License.


 *


 * You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the


 * specific language governing permission and limitations under the License.


 *


 * When distributing Covered Software, include this CDDL Header Notice in each file and include


 * the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL


 * Header, with the fields enclosed by brackets [] replaced by your own identifying


 * information: "Portions copyright [year] [name of copyright owner]".


 *


 * Copyright 2016 ForgeRock AS.


 */


package org.forgerock.opendj.rest2ldap.authz;


 


import static org.fest.assertions.Assertions.assertThat;


import static org.forgerock.opendj.rest2ldap.authz.CredentialExtractors.HTTP_BASIC_AUTH_HEADER;


import static org.forgerock.opendj.rest2ldap.authz.CredentialExtractors.httpBasicExtractor;


import static org.forgerock.opendj.rest2ldap.authz.CredentialExtractors.newCustomHeaderExtractor;


 


import org.forgerock.http.protocol.Headers;


import org.forgerock.testng.ForgeRockTestCase;


import org.forgerock.util.Pair;


import org.forgerock.util.encode.Base64;


import org.testng.annotations.Test;


 


@Test


public class CredentialExtractorsTest extends ForgeRockTestCase {


 


    @Test


    public void testBasicCanExtractValidCredentials() {


        final Headers headers = new Headers();


        headers.put(HTTP_BASIC_AUTH_HEADER, "basic " + Base64.encode("foo:bar".getBytes()));


        assertThat(httpBasicExtractor().apply(headers)).isEqualTo(Pair.of("foo", "bar"));


    }


 


    @Test


    public void testBasicReturnNullOnInvalidCredentials() {


        final Headers headers = new Headers();


        headers.put(HTTP_BASIC_AUTH_HEADER, "*invalid*");


        assertThat(httpBasicExtractor().apply(new Headers())).isNull();


    }


 


    @Test


    public void testBasicReturnNullOnMissingCredentials() {


        assertThat(httpBasicExtractor().apply(new Headers())).isNull();


    }


 


    @Test


    public void testCustomCanExtractValidCredentials() {


        final Headers headers = new Headers();


        headers.put("X-user", "foo");


        headers.put("X-password", "bar");


        assertThat(newCustomHeaderExtractor("X-user", "X-password").apply(headers)).isEqualTo(Pair.of("foo", "bar"));


    }


 


    @Test


    public void testCustomFallbackOnBasicIfMissingCustomCredentials() {


        final Headers headers = new Headers();


        headers.put(HTTP_BASIC_AUTH_HEADER, "basic " + Base64.encode("foo:bar".getBytes()));


        assertThat(newCustomHeaderExtractor("X-user", "X-password").apply(headers)).isEqualTo(Pair.of("foo", "bar"));


    }


 


    @Test


    public void testCustomReturnNullOnMissingCredentials() {


        assertThat(httpBasicExtractor().apply(new Headers())).isNull();


    }


}