List of usage examples for org.springframework.security.web FilterInvocation FilterInvocation
public FilterInvocation(String servletPath, String method)
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
/** * Testet den Fall, dass der Benutzer in der Rolle der geschtzten * Web-Ressource ist. Ergebnis Zugriff erlaubt. * * @throws Exception/* w w w . j a v a2s .c om*/ */ @Test public void testEvaluateHasAuthorityConfigAttributeUserIsInRole() throws Exception { // Testfix erstellen List<GrantedAuthority> grantedAuthorities = new ArrayList<GrantedAuthority>(); grantedAuthorities.add(new SimpleGrantedAuthority("ROLE_JUNIT_TEST")); Authentication authenticationToken = new UsernamePasswordAuthenticationToken("JUnit", "JUnit", grantedAuthorities); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); Authority authority = new Authority(); authority.setSystemName("ROLE_JUNIT_TEST"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setAuthority(authority); HasAuthorityConfigAttribute configAttribute = new HasAuthorityConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertTrue(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
/** * Test den Fall, dass der Benutzer nicht in der Rolle der geschtzten * Web-Ressource ist. Ergebnis Zugriff verweigert. * * @throws Exception/*from w ww . j a va2 s.c om*/ */ @Test public void testEvaluateHasAuthorityConfigAttributeUserIsNotInRole() throws Exception { // Testfix erstellen Authentication authenticationToken = newUserAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); Authority authority = new Authority(); authority.setSystemName("ROLE_JUNIT_TEST"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setAuthority(authority); HasAuthorityConfigAttribute configAttribute = new HasAuthorityConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test(expected = IllegalArgumentException.class) public void testEvaluateFlagConfigAttributeAllFlagsAreFalseException() { // Testfix erstellen Authentication authenticationToken = newAnonymousAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); /// Alle Flags sind per Default FALSE FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsPermitAll() throws Exception { // Fall 1: Nutzer ist Anonym ////////////////////////////////////////// // Testfix erstellen Authentication authenticationToken = newAnonymousAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setPermitAll(true);/*from w w w . java 2 s. co m*/ FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertTrue(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); // Fall 2: Nutzer ist angemeldet ////////////////////////////////////// // Testfix erstellen List<GrantedAuthority> grantedAuthorities = new ArrayList<GrantedAuthority>(); grantedAuthorities.add(new SimpleGrantedAuthority("ROLE_JUNIT_TEST")); authenticationToken = new UsernamePasswordAuthenticationToken("JUnit", "JUnit", grantedAuthorities); rule = new WebResourceAccessRule(); rule.setPermitAll(true); configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertTrue(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsDenyAll() throws Exception { // Fall 1: Nutzer ist Anonym ////////////////////////////////////////// // Testfix erstellen Authentication authenticationToken = newAnonymousAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setDenyAll(true);/*from ww w .j a va 2 s. co m*/ FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); // Fall 2: Nutzer ist angemeldet ////////////////////////////////////// // Testfix erstellen List<GrantedAuthority> grantedAuthorities = new ArrayList<GrantedAuthority>(); grantedAuthorities.add(new SimpleGrantedAuthority("ROLE_JUNIT_TEST")); authenticationToken = new UsernamePasswordAuthenticationToken("JUnit", "JUnit", grantedAuthorities); rule = new WebResourceAccessRule(); rule.setDenyAll(true); configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsAnonymous() throws Exception { // Testfix erstellen Authentication authenticationToken = newAnonymousAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setAnonymous(true);/* ww w . j ava2 s. c o m*/ FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertTrue(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsNotAnonymous() throws Exception { // Testfix erstellen Authentication authenticationToken = newUserAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setAnonymous(true);//from ww w . j av a 2 s. co m FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsRememberMeGranted() throws Exception { // Testfix erstellen Authentication authenticationToken = newRememberMeAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setRememberMe(true);// w w w . ja va 2 s.com FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertTrue(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsRememberMeDeniedAsUser() throws Exception { // Testfix erstellen Authentication authenticationToken = newUserAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setRememberMe(true);/*from ww w. j a va 2 s . c om*/ FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }
From source file:de.iew.framework.security.access.WebResourceAccessEvaluatorTest.java
@Test public void testEvaluateFlagConfigAttributeIsRememberMeDeniedAsAnonymous() throws Exception { // Testfix erstellen Authentication authenticationToken = newAnonymousAuthenticationToken(); FilterInvocation filterInvocation = new FilterInvocation("/junit", "GET"); WebResourceAccessRule rule = new WebResourceAccessRule(); rule.setRememberMe(true);/* w ww. j a v a 2 s . co m*/ FlagConfigAttribute configAttribute = new FlagConfigAttribute(rule); // Das Testobjekt erstellen WebResourceAccessEvaluator webResourceAccessEvaluator = new WebResourceAccessEvaluator(); // Test und Auswertung assertFalse(webResourceAccessEvaluator.evaluate(authenticationToken, filterInvocation, configAttribute)); }