org.everit.osgi.authentication.http.session.tests.SessionAuthenticationTestComponent.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.everit.osgi.authentication.http.session.tests.SessionAuthenticationTestComponent.java

Introduction

Here is the source code for org.everit.osgi.authentication.http.session.tests.SessionAuthenticationTestComponent.java

Source

/*
 * Copyright (C) 2011 Everit Kft. (http://www.everit.org)
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *         http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.everit.osgi.authentication.http.session.tests;

import java.io.IOException;
import java.io.InputStream;
import java.io.StringWriter;
import java.util.Map;

import javax.servlet.Filter;
import javax.servlet.Servlet;
import javax.servlet.http.HttpServletResponse;

import org.apache.commons.io.IOUtils;
import org.apache.felix.scr.annotations.Activate;
import org.apache.felix.scr.annotations.Component;
import org.apache.felix.scr.annotations.ConfigurationPolicy;
import org.apache.felix.scr.annotations.Deactivate;
import org.apache.felix.scr.annotations.Properties;
import org.apache.felix.scr.annotations.Property;
import org.apache.felix.scr.annotations.Reference;
import org.apache.felix.scr.annotations.Service;
import org.apache.http.Header;
import org.apache.http.HttpEntity;
import org.apache.http.HttpHost;
import org.apache.http.HttpResponse;
import org.apache.http.client.ClientProtocolException;
import org.apache.http.client.CookieStore;
import org.apache.http.client.HttpClient;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.client.methods.HttpUriRequest;
import org.apache.http.client.protocol.ClientContext;
import org.apache.http.impl.client.BasicCookieStore;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.protocol.BasicHttpContext;
import org.apache.http.protocol.ExecutionContext;
import org.apache.http.protocol.HttpContext;
import org.eclipse.jetty.server.Server;
import org.eclipse.jetty.servlet.FilterHolder;
import org.eclipse.jetty.servlet.ServletContextHandler;
import org.eclipse.jetty.servlet.ServletHolder;
import org.everit.osgi.authentication.context.AuthenticationContext;
import org.everit.osgi.authentication.http.session.SessionAuthenticationConstants;
import org.everit.osgi.dev.testrunner.TestRunnerConstants;
import org.junit.Assert;
import org.junit.Test;
import org.osgi.framework.BundleContext;

@Component(name = "SessionAuthenticationTest", metatype = true, configurationFactory = true, policy = ConfigurationPolicy.REQUIRE, immediate = true)
@Properties({ @Property(name = TestRunnerConstants.SERVICE_PROPERTY_TESTRUNNER_ENGINE_TYPE, value = "junit4"),
        @Property(name = TestRunnerConstants.SERVICE_PROPERTY_TEST_ID, value = "SessionAuthenticationTest"),
        @Property(name = "authenticationContext.target"), @Property(name = "helloWorldServlet.target"),
        @Property(name = "sessionAuthenticationFilter.target"), @Property(name = "sessionLogoutServlet.target") })
@Service(value = SessionAuthenticationTestComponent.class)
public class SessionAuthenticationTestComponent {

    private static final String LOGOUT_SERVLET_ALIAS = "/logout-action";

    private static final String HELLO_SERVLET_ALIAS = "/hello";

    @Reference(bind = "setAuthenticationContext")
    private AuthenticationContext authenticationContext;

    @Reference(bind = "setHelloWorldServlet")
    private Servlet helloWorldServlet;

    @Reference(bind = "setSessionAuthenticationFilter")
    private Filter sessionAuthenticationFilter;

    @Reference(bind = "setSessionLogoutServlet")
    private Servlet sessionLogoutServlet;

    private String helloUrl;

    private String logoutUrl;

    private String loggedOutUrl;

    private Server testServer;

    @Activate
    public void activate(final BundleContext context, final Map<String, Object> componentProperties)
            throws Exception {
        testServer = new Server(0);
        ServletContextHandler servletContextHandler = new ServletContextHandler(ServletContextHandler.SESSIONS);
        testServer.setHandler(servletContextHandler);

        servletContextHandler.addServlet(new ServletHolder("helloWorldServlet", helloWorldServlet),
                HELLO_SERVLET_ALIAS);
        servletContextHandler.addFilter(new FilterHolder(sessionAuthenticationFilter), "/*", null);
        servletContextHandler.addServlet(new ServletHolder("sessionLogoutServlet", sessionLogoutServlet),
                LOGOUT_SERVLET_ALIAS);

        testServer.start();

        String testServerURI = testServer.getURI().toString();
        String testServerURL = testServerURI.substring(0, testServerURI.length() - 1);

        helloUrl = testServerURL + HELLO_SERVLET_ALIAS;
        logoutUrl = testServerURL + LOGOUT_SERVLET_ALIAS;
        loggedOutUrl = testServerURL + SessionAuthenticationConstants.DEFAULT_LOGGED_OUT_URL;
    }

    @Deactivate
    public void deactivate() throws Exception {
        if (testServer != null) {
            testServer.stop();
            testServer.destroy();
        }
    }

    private long hello(final HttpContext httpContext, final long expectedResourceId) throws IOException {
        HttpClient httpClient = new DefaultHttpClient();
        HttpGet httpGet = new HttpGet(helloUrl);
        HttpResponse httpResponse = httpClient.execute(httpGet, httpContext);
        Assert.assertEquals(HttpServletResponse.SC_OK, httpResponse.getStatusLine().getStatusCode());
        HttpEntity responseEntity = httpResponse.getEntity();
        InputStream inputStream = responseEntity.getContent();
        StringWriter writer = new StringWriter();
        IOUtils.copy(inputStream, writer);
        String[] responseBodyAsString = writer.toString().split(":");
        long actualResourceId = Long.parseLong(responseBodyAsString[0]);
        long newResourceId = Long.parseLong(responseBodyAsString[1]);
        String st = responseBodyAsString.length == 3 ? responseBodyAsString[2] : "should be success";
        Assert.assertEquals(st.replaceAll("-->", ":"), expectedResourceId, actualResourceId);
        return newResourceId;
    }

    private void logoutGet(final HttpContext httpContext) throws ClientProtocolException, IOException {
        HttpClient httpClient = new DefaultHttpClient();
        HttpGet httpGet = new HttpGet(logoutUrl);
        HttpResponse httpResponse = httpClient.execute(httpGet, httpContext);
        Assert.assertEquals(HttpServletResponse.SC_NOT_FOUND, httpResponse.getStatusLine().getStatusCode());

        HttpUriRequest currentReq = (HttpUriRequest) httpContext.getAttribute(ExecutionContext.HTTP_REQUEST);
        HttpHost currentHost = (HttpHost) httpContext.getAttribute(ExecutionContext.HTTP_TARGET_HOST);
        String currentUrl = (currentReq.getURI().isAbsolute()) ? currentReq.getURI().toString()
                : (currentHost.toURI() + currentReq.getURI());
        Assert.assertEquals(loggedOutUrl, currentUrl);
    }

    private void logoutPost(final HttpContext httpContext) throws ClientProtocolException, IOException {
        HttpClient httpClient = new DefaultHttpClient();
        HttpPost httpPost = new HttpPost(logoutUrl);
        HttpResponse httpResponse = httpClient.execute(httpPost, httpContext);
        Assert.assertEquals(HttpServletResponse.SC_MOVED_TEMPORARILY, httpResponse.getStatusLine().getStatusCode());
        Header locationHeader = httpResponse.getFirstHeader("Location");
        Assert.assertEquals(loggedOutUrl, locationHeader.getValue());
    }

    public void setAuthenticationContext(final AuthenticationContext authenticationContext) {
        this.authenticationContext = authenticationContext;
    }

    public void setHelloWorldServlet(final Servlet helloWorldServlet) {
        this.helloWorldServlet = helloWorldServlet;
    }

    public void setSessionAuthenticationFilter(final Filter sessionAuthenticationFilter) {
        this.sessionAuthenticationFilter = sessionAuthenticationFilter;
    }

    public void setSessionLogoutServlet(final Servlet sessionLogoutServlet) {
        this.sessionLogoutServlet = sessionLogoutServlet;
    }

    @Test
    public void testAccessHelloPage() throws Exception {
        CookieStore cookieStore = new BasicCookieStore();
        HttpContext httpContext = new BasicHttpContext();
        httpContext.setAttribute(ClientContext.COOKIE_STORE, cookieStore);

        long sessionResourceId = hello(httpContext, authenticationContext.getDefaultResourceId());
        sessionResourceId = hello(httpContext, sessionResourceId);
        sessionResourceId = hello(httpContext, sessionResourceId);
        logoutPost(httpContext);

        sessionResourceId = hello(httpContext, authenticationContext.getDefaultResourceId());
        sessionResourceId = hello(httpContext, sessionResourceId);
        hello(httpContext, sessionResourceId);
        logoutGet(httpContext);

        hello(httpContext, authenticationContext.getDefaultResourceId());
    }

}