/* * The contents of this file are subject to the terms of the Common Development and * Distribution License (the License). You may not use this file except in compliance with the * License. * * You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the * specific language governing permission and limitations under the License. * * When distributing Covered Software, include this CDDL Header Notice in each file and include * the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL * Header, with the fields enclosed by brackets [] replaced by your own identifying * information: "Portions copyright [year] [name of copyright owner]". * * Copyright 2013 ForgeRock AS. */ package org.forgerock.opendj.rest2ldap; import static org.fest.assertions.Assertions.assertThat; import java.util.LinkedHashMap; import java.util.Map; import org.forgerock.json.resource.ForbiddenException; import org.forgerock.opendj.ldap.schema.Schema; import org.forgerock.testng.ForgeRockTestCase; import org.testng.annotations.DataProvider; import org.testng.annotations.Test; /** * Tests the AuthzIdTemplate class. */ @SuppressWarnings({ "javadoc" }) @Test public final class AuthzIdTemplateTest extends ForgeRockTestCase { @DataProvider public Object[][] templateData() { // @formatter:off return new Object[][] { { "dn:uid={uid},ou={realm},dc=example,dc=com", "dn:uid=test.user,ou=acme,dc=example,dc=com", map("uid", "test.user", "realm", "acme") }, { // Should perform DN quoting. "dn:uid={uid},ou={realm},dc=example,dc=com", "dn:uid=test.user,ou=test\\+cn\\=quoting,dc=example,dc=com", map("uid", "test.user", "realm", "test+cn=quoting") }, { // Should not perform DN quoting. "dn:{dn}", "dn:uid=test.user,ou=acme,dc=example,dc=com", map("dn", "uid=test.user,ou=acme,dc=example,dc=com") }, { "u:{uid}@{realm}.example.com", "u:test.user@acme.example.com", map("uid", "test.user", "realm", "acme") }, { // Should not perform any DN quoting. "u:{uid}@{realm}.example.com", "u:test.user@test+cn=quoting.example.com", map("uid", "test.user", "realm", "test+cn=quoting") }, }; // @formatter:on } @Test(dataProvider = "templateData") public void testTemplates(final String template, final String expected, Map principals) throws Exception { assertThat( new AuthzIdTemplate(template) .formatAsAuthzId(principals, Schema.getDefaultSchema())) .isEqualTo(expected); } @DataProvider public Object[][] invalidTemplateData() { // @formatter:off return new Object[][] { { "dn:uid={uid},ou={realm},dc=example,dc=com", map("uid", "test.user") }, { // Malformed DN. "dn:{dn}", map("dn", "uid") }, { "u:{uid}@{realm}.example.com", map("uid", "test.user") }, }; // @formatter:on } @Test(dataProvider = "invalidTemplateData", expectedExceptions = ForbiddenException.class) public void testInvalidTemplateData(final String template, Map principals) throws Exception { new AuthzIdTemplate(template).formatAsAuthzId(principals, Schema.getDefaultSchema()); } @DataProvider public Object[][] invalidTemplates() { // @formatter:off return new Object[][] { { "x:uid={uid},ou={realm},dc=example,dc=com" }, }; // @formatter:on } @Test(dataProvider = "invalidTemplates", expectedExceptions = IllegalArgumentException.class) public void testInvalidTemplates(final String template) throws Exception { new AuthzIdTemplate(template); } private Map map(String... keyValues) { Map map = new LinkedHashMap(); for (int i = 0; i < keyValues.length; i += 2) { map.put(keyValues[i], keyValues[i + 1]); } return map; } }