KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > test > security > test > LoginModulesUnitTestCase


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */
22 package org.jboss.test.security.test;
23
24 import java.lang.reflect.Method JavaDoc;
25 import java.io.Serializable JavaDoc;
26 import java.io.IOException JavaDoc;
27 import java.security.MessageDigest JavaDoc;
28 import java.security.Principal JavaDoc;
29 import java.security.KeyStore JavaDoc;
30 import java.security.cert.X509Certificate JavaDoc;
31 import java.security.acl.Group JavaDoc;
32 import java.sql.Connection JavaDoc;
33 import java.sql.DriverManager JavaDoc;
34 import java.sql.SQLException JavaDoc;
35 import java.sql.Statement JavaDoc;
36 import java.util.Enumeration JavaDoc;
37 import java.util.HashMap JavaDoc;
38 import java.util.Iterator JavaDoc;
39 import java.util.Map JavaDoc;
40 import java.util.Set JavaDoc;
41 import java.net.URL JavaDoc;
42 import javax.naming.InitialContext JavaDoc;
43 import javax.security.auth.Subject JavaDoc;
44 import javax.security.auth.login.AppConfigurationEntry JavaDoc;
45 import javax.security.auth.login.Configuration JavaDoc;
46 import javax.security.auth.login.LoginContext JavaDoc;
47 import javax.security.auth.login.LoginException JavaDoc;
48 import javax.sql.DataSource JavaDoc;
49 import javax.resource.spi.security.PasswordCredential JavaDoc;
50 import javax.management.MBeanServerFactory JavaDoc;
51 import javax.management.MBeanServer JavaDoc;
52 import javax.management.ObjectName JavaDoc;
53 import javax.net.ssl.KeyManagerFactory;
54 import javax.net.ssl.TrustManagerFactory;
55
56 import junit.framework.TestSuite;
57
58 import org.jboss.logging.Logger;
59
60 import org.jboss.logging.XLevel;
61 import org.jboss.security.SimpleGroup;
62 import org.jboss.security.SimplePrincipal;
63 import org.jboss.security.Util;
64 import org.jboss.security.SecurityAssociation;
65 import org.jboss.security.SecurityDomain;
66 import org.jboss.security.plugins.JaasSecurityDomain;
67 import org.jboss.security.auth.callback.UsernamePasswordHandler;
68 import org.jboss.security.auth.callback.SecurityAssociationHandler;
69 import org.jboss.security.auth.spi.UsernamePasswordLoginModule;
70 import org.jboss.test.JBossTestCase;
71
72 /** Tests of the LoginModule classes.
73
74  @author Scott.Stark@jboss.org
75  @version $Revision: 58115 $
76  */
77 public class LoginModulesUnitTestCase extends JBossTestCase
78 {
79
80    /** Hard coded login configurations for the test cases. The configuration
81     name corresponds to the unit test function that uses the configuration.
82     */
83    static class TestConfig extends Configuration JavaDoc
84    {
85       public void refresh()
86       {
87       }
88
89       public AppConfigurationEntry JavaDoc[] getAppConfigurationEntry(String JavaDoc name)
90       {
91          AppConfigurationEntry JavaDoc[] entry = null;
92          try
93          {
94             Class JavaDoc[] parameterTypes = {};
95             Method JavaDoc m = getClass().getDeclaredMethod(name, parameterTypes);
96             Object JavaDoc[] args = {};
97             entry = (AppConfigurationEntry JavaDoc[]) m.invoke(this, args);
98          }
99          catch(Exception JavaDoc e)
100          {
101          }
102          return entry;
103       }
104
105       AppConfigurationEntry JavaDoc[] testClientLogin()
106       {
107          String JavaDoc name = "org.jboss.security.ClientLoginModule";
108          HashMap JavaDoc options = new HashMap JavaDoc();
109          options.put("restore-login-identity", "true");
110          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
111          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
112          AppConfigurationEntry JavaDoc[] entry = {ace};
113          return entry;
114       }
115       AppConfigurationEntry JavaDoc[] testIdentity()
116       {
117          String JavaDoc name = "org.jboss.security.auth.spi.IdentityLoginModule";
118          HashMap JavaDoc options = new HashMap JavaDoc();
119          options.put("principal", "stark");
120          options.put("roles", "Role3,Role4");
121          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
122          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
123          AppConfigurationEntry JavaDoc[] entry = {ace};
124          return entry;
125       }
126       AppConfigurationEntry JavaDoc[] testJdbc()
127       {
128          String JavaDoc name = "org.jboss.security.auth.spi.DatabaseServerLoginModule";
129          HashMap JavaDoc options = new HashMap JavaDoc();
130          options.put("dsJndiName", "testJdbc");
131          options.put("principalsQuery", "select Password from Principals where PrincipalID=?");
132          options.put("rolesQuery", "select Role, RoleGroup from Roles where PrincipalID=?");
133          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
134          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
135          AppConfigurationEntry JavaDoc[] entry = {ace};
136          return entry;
137       }
138       AppConfigurationEntry JavaDoc[] testSimple()
139       {
140          String JavaDoc name = "org.jboss.security.auth.spi.SimpleServerLoginModule";
141          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
142          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, new HashMap JavaDoc());
143          AppConfigurationEntry JavaDoc[] entry = {ace};
144          return entry;
145       }
146       AppConfigurationEntry JavaDoc[] testUsernamePassword()
147       {
148          return other();
149       }
150       AppConfigurationEntry JavaDoc[] testUsernamePasswordHash()
151       {
152          HashMap JavaDoc options = new HashMap JavaDoc();
153          options.put("hashAlgorithm", "MD5");
154          options.put("hashEncoding", "base64");
155          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(HashTestLoginModule.class.getName(),
156             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
157          AppConfigurationEntry JavaDoc[] entry = {ace};
158          return entry;
159       }
160       AppConfigurationEntry JavaDoc[] testUsernamePasswordHashWithDigestCallback()
161       {
162          HashMap JavaDoc options = new HashMap JavaDoc();
163          options.put("hashAlgorithm", "MD5");
164          options.put("hashEncoding", "base64");
165          options.put("hashCharset", "UTF-8");
166          options.put("digestCallback", "org.jboss.test.security.test.TestDigestCallback");
167          options.put("digest.preSalt", "pre");
168          options.put("digest.postSalt", "post");
169          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(HashTestDigestCallbackLoginModule.class.getName(),
170             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
171          AppConfigurationEntry JavaDoc[] entry = {ace};
172          return entry;
173       }
174       AppConfigurationEntry JavaDoc[] testAnon()
175       {
176          String JavaDoc name = "org.jboss.security.auth.spi.AnonLoginModule";
177          HashMap JavaDoc options = new HashMap JavaDoc();
178          options.put("unauthenticatedIdentity", "nobody");
179          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
180             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
181          AppConfigurationEntry JavaDoc[] entry = {ace};
182          return entry;
183       }
184       AppConfigurationEntry JavaDoc[] testNull()
185       {
186          String JavaDoc name = "org.jboss.security.auth.spi.AnonLoginModule";
187          HashMap JavaDoc options = new HashMap JavaDoc();
188          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
189          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
190          AppConfigurationEntry JavaDoc[] entry = {ace};
191          return entry;
192       }
193       AppConfigurationEntry JavaDoc[] testUsersRoles()
194       {
195          String JavaDoc name = "org.jboss.security.auth.spi.UsersRolesLoginModule";
196          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
197          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, new HashMap JavaDoc());
198          AppConfigurationEntry JavaDoc[] entry = {ace};
199          return entry;
200       }
201       AppConfigurationEntry JavaDoc[] testUsersRolesHash()
202       {
203          String JavaDoc name = "org.jboss.security.auth.spi.UsersRolesLoginModule";
204          HashMap JavaDoc options = new HashMap JavaDoc();
205          options.put("usersProperties", "usersb64.properties");
206          options.put("hashAlgorithm", "MD5");
207          options.put("hashEncoding", "base64");
208          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
209          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
210          AppConfigurationEntry JavaDoc[] entry = {ace};
211          return entry;
212       }
213       AppConfigurationEntry JavaDoc[] testAnonUsersRoles()
214       {
215          String JavaDoc name = "org.jboss.security.auth.spi.UsersRolesLoginModule";
216          HashMap JavaDoc options = new HashMap JavaDoc();
217          options.put("unauthenticatedIdentity", "nobody");
218          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
219          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
220          AppConfigurationEntry JavaDoc[] entry = {ace};
221          return entry;
222       }
223       AppConfigurationEntry JavaDoc[] testControlFlags()
224       {
225          String JavaDoc name1 = "org.jboss.security.auth.spi.UsersRolesLoginModule";
226          AppConfigurationEntry JavaDoc ace1 = new AppConfigurationEntry JavaDoc(name1,
227             AppConfigurationEntry.LoginModuleControlFlag.SUFFICIENT, new HashMap JavaDoc());
228
229          String JavaDoc name2 = "org.jboss.security.auth.spi.DatabaseServerLoginModule";
230          HashMap JavaDoc options = new HashMap JavaDoc();
231          options.put("dsJndiName", "testJdbc");
232          options.put("principalsQuery", "select Password from Principals where PrincipalID=?");
233          options.put("rolesQuery", "select Role, RoleGroup from Roles where PrincipalID=?");
234          AppConfigurationEntry JavaDoc ace2 = new AppConfigurationEntry JavaDoc(name2,
235             AppConfigurationEntry.LoginModuleControlFlag.SUFFICIENT, options);
236
237          AppConfigurationEntry JavaDoc[] entry = {ace1, ace2};
238          return entry;
239       }
240       AppConfigurationEntry JavaDoc[] testJCACallerIdentity()
241       {
242          String JavaDoc name = "org.jboss.resource.security.CallerIdentityLoginModule";
243          HashMap JavaDoc options = new HashMap JavaDoc();
244          options.put("userName", "jduke");
245          options.put("password", "theduke");
246          options.put("managedConnectionFactoryName", "jboss:name=fakeMCF");
247          options.put("ignoreMissigingMCF", Boolean.TRUE);
248          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
249             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
250          AppConfigurationEntry JavaDoc[] entry = {ace};
251          return entry;
252       }
253       AppConfigurationEntry JavaDoc[] testJaasSecurityDomainIdentityLoginModule()
254       {
255          String JavaDoc name = "org.jboss.resource.security.JaasSecurityDomainIdentityLoginModule";
256          HashMap JavaDoc options = new HashMap JavaDoc();
257          options.put("userName", "sa");
258          options.put("password", "E5gtGMKcXPP");
259          options.put("managedConnectionFactoryName", "jboss.jca:service=LocalTxCM,name=DefaultDS");
260          options.put("ignoreMissigingMCF", Boolean.TRUE);
261          options.put("jaasSecurityDomain", "jboss.test:service=JaasSecurityDomain,domain=testJaasSecurityDomainIdentityLoginModule");
262          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
263             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
264          AppConfigurationEntry JavaDoc[] entry = {ace};
265          return entry;
266       }
267       AppConfigurationEntry JavaDoc[] testCertLogin()
268       {
269          String JavaDoc name = "org.jboss.security.auth.spi.BaseCertLoginModule";
270          HashMap JavaDoc options = new HashMap JavaDoc();
271          options.put("securityDomain", "testCertLogin");
272          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
273             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
274          AppConfigurationEntry JavaDoc[] entry = {ace};
275          return entry;
276       }
277       AppConfigurationEntry JavaDoc[] testCertRoles()
278       {
279          String JavaDoc name = "org.jboss.security.auth.spi.CertRolesLoginModule";
280          HashMap JavaDoc options = new HashMap JavaDoc();
281          options.put("securityDomain", "testCertRoles");
282          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(name,
283             AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, options);
284          AppConfigurationEntry JavaDoc[] entry = {ace};
285          return entry;
286       }
287       AppConfigurationEntry JavaDoc[] other()
288       {
289          AppConfigurationEntry JavaDoc ace = new AppConfigurationEntry JavaDoc(TestLoginModule.class.getName(),
290          AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, new HashMap JavaDoc());
291          AppConfigurationEntry JavaDoc[] entry = {ace};
292          return entry;
293       }
294    }
295
296    public static class TestLoginModule extends UsernamePasswordLoginModule
297    {
298       protected Group JavaDoc[] getRoleSets()
299       {
300          SimpleGroup roles = new SimpleGroup("Roles");
301          Group JavaDoc[] roleSets = {roles};
302          roles.addMember(new SimplePrincipal("TestRole"));
303          roles.addMember(new SimplePrincipal("Role2"));
304          return roleSets;
305       }
306       /** This represents the 'true' password
307        */
308       protected String JavaDoc getUsersPassword()
309       {
310          return "secret";
311       }
312    }
313    public static class HashTestLoginModule extends TestLoginModule
314    {
315       /** This represents the 'true' password in its hashed form
316        */
317       protected String JavaDoc getUsersPassword()
318       {
319          MessageDigest JavaDoc md = null;
320          try
321          {
322             md = MessageDigest.getInstance("MD5");
323          }
324          catch(Exception JavaDoc e)
325          {
326             e.printStackTrace();
327          }
328          byte[] passwordBytes = "secret".getBytes();
329          byte[] hash = md.digest(passwordBytes);
330          String JavaDoc passwordHash = Util.encodeBase64(hash);
331          return passwordHash;
332       }
333    }
334    public static class HashTestDigestCallbackLoginModule extends TestLoginModule
335    {
336       /** This represents the 'true' password in its hashed form
337        */
338       protected String JavaDoc getUsersPassword()
339       {
340          MessageDigest JavaDoc md = null;
341          try
342          {
343             md = MessageDigest.getInstance("MD5");
344          }
345          catch(Exception JavaDoc e)
346          {
347             e.printStackTrace();
348          }
349          byte[] passwordBytes = "secret".getBytes();
350          md.update("pre".getBytes());
351          md.update(passwordBytes);
352          md.update("post".getBytes());
353          byte[] hash = md.digest();
354          String JavaDoc passwordHash = Util.encodeBase64(hash);
355          return passwordHash;
356       }
357    }
358
359    /** A pseudo DataSource that is used to provide Hypersonic db
360     connections to the DatabaseServerLoginModule.
361     */
362    static class TestDS implements DataSource JavaDoc, Serializable JavaDoc
363    {
364       private static final long serialVersionUID = 1;
365       public java.sql.Connection JavaDoc getConnection() throws java.sql.SQLException JavaDoc
366       {
367          return getConnection("sa", "");
368       }
369       public java.sql.Connection JavaDoc getConnection(String JavaDoc user, String JavaDoc pass) throws java.sql.SQLException JavaDoc
370       {
371             java.sql.Connection JavaDoc con = null;
372             String JavaDoc jdbcURL = "";
373             try
374          {
375             jdbcURL = "jdbc:hsqldb:hsql://" + System.getProperty("jbosstest.server.host", "localhost") + ":1701";
376             con = DriverManager.getConnection(jdbcURL, user, pass);
377             }
378          catch(java.sql.SQLException JavaDoc sqle)
379          {
380                 jdbcURL = "jdbc:hsqldb:."; // only memory jdbc url
381 con = DriverManager.getConnection(jdbcURL, user, pass);
382             }
383          return con;
384       }
385       public java.io.PrintWriter JavaDoc getLogWriter() throws java.sql.SQLException JavaDoc
386       {
387          return null;
388       }
389       public void setLogWriter(java.io.PrintWriter JavaDoc out)
390          throws java.sql.SQLException JavaDoc
391       {
392       }
393       public int getLoginTimeout() throws java.sql.SQLException JavaDoc
394       {
395          return 0;
396       }
397       public void setLoginTimeout(int seconds) throws java.sql.SQLException JavaDoc
398       {
399       }
400    }
401
402    static class TestSecurityDomain implements SecurityDomain, Serializable JavaDoc
403    {
404       private static final long serialVersionUID = 1;
405
406       private transient KeyStore JavaDoc store;
407
408       public KeyStore JavaDoc getKeyStore() throws SecurityException JavaDoc
409       {
410          return store;
411       }
412
413       public KeyManagerFactory getKeyManagerFactory() throws SecurityException JavaDoc
414       {
415          return null;
416       }
417
418       public KeyStore JavaDoc getTrustStore() throws SecurityException JavaDoc
419       {
420          return store;
421       }
422
423       public TrustManagerFactory getTrustManagerFactory() throws SecurityException JavaDoc
424       {
425          return null;
426       }
427
428       public String JavaDoc getSecurityDomain()
429       {
430          return null;
431       }
432
433       public Subject JavaDoc getActiveSubject()
434       {
435          return null;
436       }
437
438       public boolean isValid(Principal JavaDoc principal, Object JavaDoc credential,
439          Subject JavaDoc activeSubject)
440       {
441          return false;
442       }
443
444       public boolean isValid(Principal JavaDoc principal, Object JavaDoc credential)
445       {
446          return false;
447       }
448
449       public Principal JavaDoc getPrincipal(Principal JavaDoc principal)
450       {
451          return null;
452       }
453
454       public boolean doesUserHaveRole(Principal JavaDoc principal, Set JavaDoc roles)
455       {
456          return false;
457       }
458
459       public Set JavaDoc getUserRoles(Principal JavaDoc principal)
460       {
461          return null;
462       }
463
464       private void readObject(java.io.ObjectInputStream JavaDoc in)
465          throws IOException JavaDoc
466       {
467          try
468          {
469             store = KeyStore.getInstance("JKS");
470             ClassLoader JavaDoc loader = Thread.currentThread().getContextClassLoader();
471             URL JavaDoc resURL = loader.getResource("security/tst.keystore");
472             store.load(resURL.openStream(), "unit-tests".toCharArray());
473          }
474          catch(Exception JavaDoc e)
475          {
476             throw new IOException JavaDoc(e.toString());
477          }
478       }
479       
480       /**
481        * @see AuthenticationManager#getTargetPrincipal(Principal,Map)
482        */
483       public Principal JavaDoc getTargetPrincipal(Principal JavaDoc anotherDomainPrincipal, Map JavaDoc contextMap)
484       {
485          throw new RuntimeException JavaDoc("Not implemented yet");
486       }
487    }
488
489    public LoginModulesUnitTestCase(String JavaDoc testName)
490    {
491       super(testName);
492    }
493
494    protected void setUp() throws Exception JavaDoc
495    {
496       // Install the custom JAAS configuration
497 Configuration.setConfiguration(new TestConfig());
498    }
499
500    public void testClientLogin() throws Exception JavaDoc
501    {
502       getLog().info("testClientLogin");
503       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", "secret".toCharArray());
504       LoginContext JavaDoc lc = new LoginContext JavaDoc("testClientLogin", handler);
505       lc.login();
506       Subject JavaDoc subject = lc.getSubject();
507       Principal JavaDoc scott = new SimplePrincipal("scott");
508       assertTrue("Principals contains scott", subject.getPrincipals().contains(scott));
509       Principal JavaDoc saPrincipal = SecurityAssociation.getPrincipal();
510       assertTrue("SecurityAssociation.getPrincipal == scott", saPrincipal.equals(scott));
511
512       UsernamePasswordHandler handler2 = new UsernamePasswordHandler("scott2", "secret2".toCharArray());
513       LoginContext JavaDoc lc2 = new LoginContext JavaDoc("testClientLogin", handler2);
514       lc2.login();
515       Principal JavaDoc scott2 = new SimplePrincipal("scott2");
516       saPrincipal = SecurityAssociation.getPrincipal();
517       assertTrue("SecurityAssociation.getPrincipal == scott2", saPrincipal.equals(scott2));
518       lc2.logout();
519       saPrincipal = SecurityAssociation.getPrincipal();
520       assertTrue("SecurityAssociation.getPrincipal == scott", saPrincipal.equals(scott));
521       
522       lc.logout();
523    }
524
525    public void testUsernamePassword() throws Exception JavaDoc
526    {
527       getLog().info("testUsernamePassword");
528       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", "secret".toCharArray());
529       LoginContext JavaDoc lc = new LoginContext JavaDoc("testUsernamePassword", handler);
530       lc.login();
531       Subject JavaDoc subject = lc.getSubject();
532       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
533       assertTrue("Principals contains scott", subject.getPrincipals().contains(new SimplePrincipal("scott")));
534       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
535       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
536       assertTrue("TestRole is a role", roles.isMember(new SimplePrincipal("TestRole")));
537       assertTrue("Role2 is a role", roles.isMember(new SimplePrincipal("Role2")));
538
539       lc.logout();
540    }
541    public void testUsernamePasswordHash() throws Exception JavaDoc
542    {
543       getLog().info("testUsernamePasswordHash");
544       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", "secret".toCharArray());
545       LoginContext JavaDoc lc = new LoginContext JavaDoc("testUsernamePasswordHash", handler);
546       lc.login();
547       Subject JavaDoc subject = lc.getSubject();
548       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
549       assertTrue("Principals contains scott", subject.getPrincipals().contains(new SimplePrincipal("scott")));
550       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
551       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
552       assertTrue("TestRole is a role", roles.isMember(new SimplePrincipal("TestRole")));
553       assertTrue("Role2 is a role", roles.isMember(new SimplePrincipal("Role2")));
554
555       lc.logout();
556    }
557
558    public void testUsernamePasswordHashWithDigestCallback() throws Exception JavaDoc
559    {
560       getLog().info("testUsernamePasswordHashWithDigestCallback");
561       // secret in ascii
562 byte[] passBytes = {115, 101, 99, 114, 101, 116};
563       String JavaDoc pass = new String JavaDoc(passBytes, "UTF-8");
564       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", pass.toCharArray());
565       LoginContext JavaDoc lc = new LoginContext JavaDoc("testUsernamePasswordHashWithDigestCallback", handler);
566       lc.login();
567       Subject JavaDoc subject = lc.getSubject();
568       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
569       assertTrue("Principals contains scott", subject.getPrincipals().contains(new SimplePrincipal("scott")));
570       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
571       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
572       assertTrue("TestRole is a role", roles.isMember(new SimplePrincipal("TestRole")));
573       assertTrue("Role2 is a role", roles.isMember(new SimplePrincipal("Role2")));
574
575       lc.logout();
576    }
577
578    public void testUsersRoles() throws Exception JavaDoc
579    {
580       getLog().info("testUsersRoles");
581       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", "echoman".toCharArray());
582       LoginContext JavaDoc lc = new LoginContext JavaDoc("testUsersRoles", handler);
583       lc.login();
584       Subject JavaDoc subject = lc.getSubject();
585       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
586       assertTrue("Principals contains scott", subject.getPrincipals().contains(new SimplePrincipal("scott")));
587       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
588       assertTrue("Principals contains CallerPrincipal", groups.contains(new SimplePrincipal("CallerPrincipal")));
589       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
590       Iterator JavaDoc groupsIter = groups.iterator();
591       while( groupsIter.hasNext() )
592       {
593          roles = (Group JavaDoc) groupsIter.next();
594          if( roles.getName().equals("Roles") )
595          {
596             assertTrue("Echo is a role", roles.isMember(new SimplePrincipal("Echo")));
597             assertTrue("Java is NOT a role", roles.isMember(new SimplePrincipal("Java")) == false);
598             assertTrue("Coder is NOT a role", roles.isMember(new SimplePrincipal("Coder")) == false);
599          }
600          else if( roles.getName().equals("CallerPrincipal") )
601          {
602             getLog().info("CallerPrincipal is "+roles.members().nextElement());
603             boolean isMember = roles.isMember(new SimplePrincipal("callerScott"));
604             assertTrue("CallerPrincipal is callerScott", isMember);
605          }
606       }
607       lc.logout();
608
609       handler = new UsernamePasswordHandler("stark", "javaman".toCharArray());
610       lc = new LoginContext JavaDoc("testUsersRoles", handler);
611       lc.login();
612       subject = lc.getSubject();
613       groups = subject.getPrincipals(Group JavaDoc.class);
614       assertTrue("Principals contains stark", subject.getPrincipals().contains(new SimplePrincipal("stark")));
615       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
616       assertTrue("Principals contains CallerPrincipal", groups.contains(new SimplePrincipal("CallerPrincipal")));
617       groupsIter = groups.iterator();
618       while( groupsIter.hasNext() )
619       {
620          roles = (Group JavaDoc) groupsIter.next();
621          if( roles.getName().equals("Roles") )
622          {
623             assertTrue("Echo is NOT a role", roles.isMember(new SimplePrincipal("Echo")) == false);
624             assertTrue("Java is a role", roles.isMember(new SimplePrincipal("Java")));
625             assertTrue("Coder is a role", roles.isMember(new SimplePrincipal("Coder")));
626          }
627          else if( roles.getName().equals("CallerPrincipal") )
628          {
629             getLog().info("CallerPrincipal is "+roles.members().nextElement());
630             boolean isMember = roles.isMember(new SimplePrincipal("callerStark"));
631             assertTrue("CallerPrincipal is callerStark", isMember);
632          }
633       }
634       lc.logout();
635
636       // Test the usernames with common prefix
637 getLog().info("Testing similar usernames");
638       handler = new UsernamePasswordHandler("jdukeman", "anotherduke".toCharArray());
639       lc = new LoginContext JavaDoc("testUsersRoles", handler);
640       lc.login();
641       subject = lc.getSubject();
642       groups = subject.getPrincipals(Group JavaDoc.class);
643       assertTrue("Principals contains jdukeman", subject.getPrincipals().contains(new SimplePrincipal("jdukeman")));
644       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
645       assertTrue("Principals contains CallerPrincipal", groups.contains(new SimplePrincipal("CallerPrincipal")));
646       groupsIter = groups.iterator();
647       while( groupsIter.hasNext() )
648       {
649          roles = (Group JavaDoc) groupsIter.next();
650          if( roles.getName().equals("Roles") )
651          {
652             assertTrue("Role1 is NOT a role", roles.isMember(new SimplePrincipal("Role1")) == false);
653             assertTrue("Role2 is a role", roles.isMember(new SimplePrincipal("Role2")));
654             assertTrue("Role3 is a role", roles.isMember(new SimplePrincipal("Role3")));
655          }
656          else if( roles.getName().equals("CallerPrincipal") )
657          {
658             getLog().info("CallerPrincipal is "+roles.members().nextElement());
659             boolean isMember = roles.isMember(new SimplePrincipal("callerJdukeman"));
660             assertTrue("CallerPrincipal is callerJdukeman", isMember);
661          }
662       }
663       lc.logout();
664    }
665
666    public void testUsersRolesHash() throws Exception JavaDoc
667    {
668       getLog().info("testUsersRolesHash");
669       UsernamePasswordHandler handler = new UsernamePasswordHandler("scott", "echoman".toCharArray());
670       LoginContext JavaDoc lc = new LoginContext JavaDoc("testUsersRolesHash", handler);
671       lc.login();
672       Subject JavaDoc subject = lc.getSubject();
673       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
674       assertTrue("Principals contains scott", subject.getPrincipals().contains(new SimplePrincipal("scott")));
675       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
676       assertTrue("Principals contains CallerPrincipal", groups.contains(new SimplePrincipal("CallerPrincipal")));
677       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
678       Iterator JavaDoc groupsIter = groups.iterator();
679       while( groupsIter.hasNext() )
680       {
681          roles = (Group JavaDoc) groupsIter.next();
682          if( roles.getName().equals("Roles") )
683          {
684             assertTrue("Echo is a role", roles.isMember(new SimplePrincipal("Echo")));
685             assertTrue("Java is NOT a role", roles.isMember(new SimplePrincipal("Java")) == false);
686             assertTrue("Coder is NOT a role", roles.isMember(new SimplePrincipal("Coder")) == false);
687          }
688          else if( roles.getName().equals("CallerPrincipal") )
689          {
690             getLog().info("CallerPrincipal is "+roles.members().nextElement());
691             boolean isMember = roles.isMember(new SimplePrincipal("callerScott"));
692             assertTrue("CallerPrincipal is callerScott", isMember);
693          }
694       }
695       lc.logout();
696    }
697
698    public void testAnonUsersRoles() throws Exception JavaDoc
699    {
700       getLog().info("testAnonUsersRoles");
701       UsernamePasswordHandler handler = new UsernamePasswordHandler(null, null);
702       LoginContext JavaDoc lc = new LoginContext JavaDoc("testAnonUsersRoles", handler);
703       lc.login();
704       Subject JavaDoc subject = lc.getSubject();
705       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
706       assertTrue("Principals contains nobody", subject.getPrincipals().contains(new SimplePrincipal("nobody")));
707       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
708       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
709       assertTrue("Roles has no members", roles.members().hasMoreElements() == false);
710
711       lc.logout();
712    }
713    public void testAnon() throws Exception JavaDoc
714    {
715       getLog().info("testAnon");
716       UsernamePasswordHandler handler = new UsernamePasswordHandler(null, null);
717       LoginContext JavaDoc lc = new LoginContext JavaDoc("testAnon", handler);
718       lc.login();
719       Subject JavaDoc subject = lc.getSubject();
720       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
721       assertTrue("Principals contains nobody", subject.getPrincipals().contains(new SimplePrincipal("nobody")));
722       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
723       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
724       assertTrue("Roles has no members", roles.members().hasMoreElements() == false);
725
726       lc.logout();
727    }
728    public void testNull() throws Exception JavaDoc
729    {
730       getLog().info("testNull");
731       UsernamePasswordHandler handler = new UsernamePasswordHandler(null, null);
732       LoginContext JavaDoc lc = new LoginContext JavaDoc("testNull", handler);
733       try
734       {
735          lc.login();
736          fail("Should not be able to login as null, null");
737       }
738       catch(LoginException JavaDoc e)
739       {
740          // Ok
741 }
742    }
743
744    public void testIdentity() throws Exception JavaDoc
745    {
746       getLog().info("testIdentity");
747       LoginContext JavaDoc lc = new LoginContext JavaDoc("testIdentity");
748       lc.login();
749       Subject JavaDoc subject = lc.getSubject();
750       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
751       assertTrue("Principals contains stark", subject.getPrincipals().contains(new SimplePrincipal("stark")));
752       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
753       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
754       assertTrue("Role2 is not a role", roles.isMember(new SimplePrincipal("Role2")) == false);
755       assertTrue("Role3 is a role", roles.isMember(new SimplePrincipal("Role3")));
756       assertTrue("Role4 is a role", roles.isMember(new SimplePrincipal("Role4")));
757
758       lc.logout();
759    }
760    public void testJCACallerIdentity() throws Exception JavaDoc
761    {
762       log.info("testJCACallerIdentity");
763       MBeanServer JavaDoc server = MBeanServerFactory.createMBeanServer("jboss");
764       LoginContext JavaDoc lc = new LoginContext JavaDoc("testJCACallerIdentity");
765       lc.login();
766       Subject JavaDoc subject = lc.getSubject();
767       assertTrue("Principals contains jduke", subject.getPrincipals().contains(new SimplePrincipal("jduke")));
768       Set JavaDoc creds = subject.getPrivateCredentials(PasswordCredential JavaDoc.class);
769       PasswordCredential JavaDoc pc = (PasswordCredential JavaDoc) creds.iterator().next();
770       String JavaDoc username = pc.getUserName();
771       String JavaDoc password = new String JavaDoc(pc.getPassword());
772       assertTrue("PasswordCredential.username = jduke", username.equals("jduke"));
773       assertTrue("PasswordCredential.password = theduke", password.equals("theduke"));
774       lc.logout();
775
776       // Test the override of the default identity
777 SecurityAssociation.setPrincipal(new SimplePrincipal("jduke2"));
778       SecurityAssociation.setCredential("theduke2".toCharArray());
779       lc.login();
780       subject = lc.getSubject();
781       Set JavaDoc principals = subject.getPrincipals();
782       assertTrue("Principals contains jduke2", principals.contains(new SimplePrincipal("jduke2")));
783       assertTrue("Principals does not contains jduke", principals.contains(new SimplePrincipal("jduke")) == false);
784       creds = subject.getPrivateCredentials(PasswordCredential JavaDoc.class);
785       pc = (PasswordCredential JavaDoc) creds.iterator().next();
786       username = pc.getUserName();
787       password = new String JavaDoc(pc.getPassword());
788       assertTrue("PasswordCredential.username = jduke2", username.equals("jduke2"));
789       assertTrue("PasswordCredential.password = theduke2", password.equals("theduke2"));
790       lc.logout();
791       MBeanServerFactory.releaseMBeanServer(server);
792    }
793    public void testJaasSecurityDomainIdentityLoginModule() throws Exception JavaDoc
794    {
795       log.info("testJaasSecurityDomainIdentityLoginModule");
796       MBeanServer JavaDoc server = MBeanServerFactory.createMBeanServer("jboss");
797       JaasSecurityDomain secDomain = new JaasSecurityDomain("testEncodeDecode");
798       secDomain.setSalt("abcdefgh");
799       secDomain.setIterationCount(13);
800       secDomain.setKeyStorePass("master");
801       secDomain.setManagerServiceName(null);
802       secDomain.start();
803       ObjectName JavaDoc name = new ObjectName JavaDoc("jboss.test:service=JaasSecurityDomain,domain=testJaasSecurityDomainIdentityLoginModule");
804       server.registerMBean(secDomain, name);
805
806       LoginContext JavaDoc lc = new LoginContext JavaDoc("testJaasSecurityDomainIdentityLoginModule");
807       lc.login();
808       Subject JavaDoc subject = lc.getSubject();
809       assertTrue("Principals contains sa", subject.getPrincipals().contains(new SimplePrincipal("sa")));
810       Set JavaDoc creds = subject.getPrivateCredentials(PasswordCredential JavaDoc.class);
811       PasswordCredential JavaDoc pc = (PasswordCredential JavaDoc) creds.iterator().next();
812       String JavaDoc username = pc.getUserName();
813       String JavaDoc password = new String JavaDoc(pc.getPassword());
814       assertTrue("PasswordCredential.username = sa", username.equals("sa"));
815       assertTrue("PasswordCredential.password = ", password.equals(""));
816       lc.logout();
817       server.unregisterMBean(name);
818       MBeanServerFactory.releaseMBeanServer(server);
819    }
820
821    public void testSimple() throws Exception JavaDoc
822    {
823       getLog().info("testSimple");
824       UsernamePasswordHandler handler = new UsernamePasswordHandler("jduke", "jduke".toCharArray());
825       LoginContext JavaDoc lc = new LoginContext JavaDoc("testSimple", handler);
826       lc.login();
827       Subject JavaDoc subject = lc.getSubject();
828       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
829       assertTrue("Principals contains jduke", subject.getPrincipals().contains(new SimplePrincipal("jduke")));
830       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
831       Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
832       assertTrue("user is a role", roles.isMember(new SimplePrincipal("user")));
833       assertTrue("guest is a role", roles.isMember(new SimplePrincipal("guest")));
834
835       lc.logout();
836    }
837
838    /** Use this DDL script to setup tables:
839     ; First load the JDBC driver and open a database.
840     d org.enhydra.instantdb.jdbc.idbDriver;
841     o jdbc:idb=/usr/local/src/cvsroot/jBoss/jboss/dist/conf/default/instantdb.properties;
842
843     ; Create the Principal table
844     e DROP TABLE Principals ;
845     e CREATE TABLE Principals (
846     PrincipalID VARCHAR(64) PRIMARY KEY,
847     Password VARCHAR(64) );
848
849     ; put some initial data in the table
850     e INSERT INTO Principals VALUES ("scott", "echoman");
851     e INSERT INTO Principals VALUES ("stark", "javaman");
852
853     ; Create the Roles table
854     e DROP TABLE Roles;
855     e CREATE TABLE Roles (
856     PrincipalID VARCHAR(64) PRIMARY KEY,
857     Role VARCHAR(64),
858     RoleGroup VARCHAR(64) );
859
860     ; put some initial data in the table
861     e INSERT INTO Roles VALUES ("scott", "Echo", "");
862     e INSERT INTO Roles VALUES ("scott", "caller_scott", "CallerPrincipal");
863     e INSERT INTO Roles VALUES ("stark", "Java", "");
864     e INSERT INTO Roles VALUES ("stark", "Coder", "");
865     e INSERT INTO Roles VALUES ("stark", "caller_stark", "CallerPrincipal");
866
867     c close;
868     */
869    public void testJdbc() throws Exception JavaDoc
870    {
871       getLog().info("testJdbc");
872       
873       Connection JavaDoc conn = setupLoginTables();
874       try
875       {
876          UsernamePasswordHandler handler = new UsernamePasswordHandler("stark", "javaman".toCharArray());
877          LoginContext JavaDoc lc = new LoginContext JavaDoc("testJdbc", handler);
878          lc.login();
879          Subject JavaDoc subject = lc.getSubject();
880          Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
881          assertTrue("Principals contains stark", subject.getPrincipals().contains(new SimplePrincipal("stark")));
882          assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
883          Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
884          assertTrue("Java is a role", roles.isMember(new SimplePrincipal("Java")));
885          assertTrue("Coder is a role", roles.isMember(new SimplePrincipal("Coder")));
886
887          lc.logout();
888       }
889       finally
890       {
891          conn.close();
892       }
893    }
894
895    public void testControlFlags() throws Exception JavaDoc
896    {
897       getLog().info("testControlFlags");
898       
899       Connection JavaDoc conn = setupLoginTables();
900       try
901       {
902          Configuration JavaDoc cfg = Configuration.getConfiguration();
903          AppConfigurationEntry JavaDoc[] ace = cfg.getAppConfigurationEntry("testControlFlags");
904          for(int n = 0; n < ace.length; n ++)
905          {
906             assertTrue("testControlFlags flag==SUFFICIENT",
907                ace[n].getControlFlag() == AppConfigurationEntry.LoginModuleControlFlag.SUFFICIENT);
908             getLog().info(ace[n].getControlFlag());
909          }
910
911          /* Test that the UsersRolesLoginModule is sufficient to login. Only the
912           users.properties file has a jduke=theduke username to password mapping,
913           and the DatabaseServerLoginModule will fail.
914          */
915          UsernamePasswordHandler handler = new UsernamePasswordHandler("jduke", "theduke".toCharArray());
916          LoginContext JavaDoc lc = new LoginContext JavaDoc("testControlFlags", handler);
917          lc.login();
918          Subject JavaDoc subject = lc.getSubject();
919          Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
920          assertTrue("Principals contains jduke", subject.getPrincipals().contains(new SimplePrincipal("jduke")));
921          assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
922          Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
923          // Only the roles from the DatabaseServerLoginModule should exist
924 assertTrue("Role1 is a role", roles.isMember(new SimplePrincipal("Role1")));
925          assertTrue("Role2 is a role", roles.isMember(new SimplePrincipal("Role2")));
926          assertTrue("Role3 is NOT a role", !roles.isMember(new SimplePrincipal("Role3")));
927          assertTrue("Role4 is NOT a role", !roles.isMember(new SimplePrincipal("Role4")));
928          lc.logout();
929
930          /* Test that the DatabaseServerLoginModule is sufficient to login. Only the
931            Principals table has a jduke=jduke username to password mapping, and
932            the UsersRolesLoginModule will fail.
933          */
934          handler = new UsernamePasswordHandler("jduke", "jduke".toCharArray());
935          lc = new LoginContext JavaDoc("testControlFlags", handler);
936          lc.login();
937          subject = lc.getSubject();
938          groups = subject.getPrincipals(Group JavaDoc.class);
939          assertTrue("Principals contains jduke", subject.getPrincipals().contains(new SimplePrincipal("jduke")));
940          assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
941          roles = (Group JavaDoc) groups.iterator().next();
942          Enumeration JavaDoc iter = roles.members();
943          while( iter.hasMoreElements() )
944             getLog().debug(iter.nextElement());
945          // Only the roles from the DatabaseServerLoginModule should exist
946 assertTrue("Role1 is NOT a role", !roles.isMember(new SimplePrincipal("Role1")));
947          assertTrue("Role2 is NOT a role", !roles.isMember(new SimplePrincipal("Role2")));
948          assertTrue("Role3 is a role", roles.isMember(new SimplePrincipal("Role3")));
949          assertTrue("Role4 is a role", roles.isMember(new SimplePrincipal("Role4")));
950          lc.logout();
951       }
952       finally
953       {
954          conn.close();
955       }
956    }
957
958    public void testCertLogin() throws Exception JavaDoc
959    {
960       getLog().info("testCertLogin");
961       InitialContext JavaDoc ctx = new InitialContext JavaDoc();
962       ctx.rebind("testCertLogin", new TestSecurityDomain());
963
964       KeyStore JavaDoc store = KeyStore.getInstance("JKS");
965       ClassLoader JavaDoc loader = Thread.currentThread().getContextClassLoader();
966       URL JavaDoc resURL = loader.getResource("security/tst.keystore");
967       store.load(resURL.openStream(), "unit-tests".toCharArray());
968       X509Certificate JavaDoc cert = (X509Certificate JavaDoc) store.getCertificate("unit-tests");
969       SimplePrincipal x509 = new SimplePrincipal("unit-tests");
970       SecurityAssociationHandler handler = new SecurityAssociationHandler(x509, cert);
971       LoginContext JavaDoc lc = new LoginContext JavaDoc("testCertLogin", handler);
972       lc.login();
973       Subject JavaDoc subject = lc.getSubject();
974       assertTrue("Principals contains unit-tests", subject.getPrincipals().contains(new SimplePrincipal("unit-tests")));
975       assertTrue("Principals contains x509cert",
976          subject.getPublicCredentials().contains(cert));
977    }
978
979    public void testCertRoles() throws Exception JavaDoc
980    {
981       getLog().info("testCertRoles");
982       InitialContext JavaDoc ctx = new InitialContext JavaDoc();
983       ctx.rebind("testCertRoles", new TestSecurityDomain());
984
985       KeyStore JavaDoc store = KeyStore.getInstance("JKS");
986       ClassLoader JavaDoc loader = Thread.currentThread().getContextClassLoader();
987       URL JavaDoc resURL = loader.getResource("security/tst.keystore");
988       store.load(resURL.openStream(), "unit-tests".toCharArray());
989       X509Certificate JavaDoc cert = (X509Certificate JavaDoc) store.getCertificate("unit-tests");
990       SimplePrincipal x509 = new SimplePrincipal("unit-tests");
991       SecurityAssociationHandler handler = new SecurityAssociationHandler(x509, cert);
992       LoginContext JavaDoc lc = new LoginContext JavaDoc("testCertRoles", handler);
993       lc.login();
994       Subject JavaDoc subject = lc.getSubject();
995       Set JavaDoc groups = subject.getPrincipals(Group JavaDoc.class);
996       assertTrue("Principals contains unit-tests", subject.getPrincipals().contains(new SimplePrincipal("unit-tests")));
997       assertTrue("Principals contains Roles", groups.contains(new SimplePrincipal("Roles")));
998       assertTrue("Principals contains x509cert",
999          subject.getPublicCredentials().contains(cert));
1000      Group JavaDoc roles = (Group JavaDoc) groups.iterator().next();
1001      Iterator JavaDoc groupsIter = groups.iterator();
1002      while( groupsIter.hasNext() )
1003      {
1004         roles = (Group JavaDoc) groupsIter.next();
1005         if( roles.getName().equals("Roles") )
1006         {
1007            assertTrue("CertUser is a role", roles.isMember(new SimplePrincipal("CertUser")));
1008            assertTrue("Java is NOT a role", roles.isMember(new SimplePrincipal("Java")) == false);
1009            assertTrue("Coder is NOT a role", roles.isMember(new SimplePrincipal("Coder")) == false);
1010         }
1011         else if( roles.getName().equals("CallerPrincipal") )
1012         {
1013            getLog().info("CallerPrincipal is "+roles.members().nextElement());
1014            boolean isMember = roles.isMember(new SimplePrincipal("callerX509"));
1015            assertTrue("CallerPrincipal is callerX509", isMember);
1016         }
1017      }
1018      lc.logout();
1019
1020   }
1021
1022   private Connection JavaDoc setupLoginTables() throws Exception JavaDoc
1023   {
1024      Class.forName("org.hsqldb.jdbcDriver");
1025      // Create a DataSource binding
1026 TestDS ds = new TestDS();
1027      InitialContext JavaDoc ctx = new InitialContext JavaDoc();
1028      ctx.rebind("testJdbc", ds);
1029
1030      // Start database and setup tables
1031 Connection JavaDoc conn = ds.getConnection("sa", "");
1032      Statement JavaDoc statement = conn.createStatement();
1033      createPrincipalsTable(statement);
1034      createRolesTable(statement);
1035      statement.close();
1036      
1037      // no connection closing, if hsql is in process
1038 // the database is disposed
1039 return conn;
1040   }
1041
1042   private void createPrincipalsTable(Statement JavaDoc statement) throws SQLException JavaDoc
1043   {
1044      try
1045      {
1046         statement.execute("DROP TABLE Principals");
1047      }
1048      catch(SQLException JavaDoc e)
1049      {
1050         // Ok, assume table does not exist
1051 }
1052      boolean result = statement.execute("CREATE TABLE Principals ("
1053      + "PrincipalID VARCHAR(64) PRIMARY KEY,"
1054      + "Password VARCHAR(64) )"
1055      );
1056      getLog().info("Created Principals table, result="+result);
1057      result = statement.execute("INSERT INTO Principals VALUES ('scott', 'echoman')");
1058      getLog().info("INSERT INTO Principals VALUES ('scott', 'echoman'), result="+result);
1059      result = statement.execute("INSERT INTO Principals VALUES ('stark', 'javaman')");
1060      getLog().info("INSERT INTO Principals VALUES ('stark', 'javaman'), result="+result);
1061      // This differs from the users.properties jduke settings
1062 result = statement.execute("INSERT INTO Principals VALUES ('jduke', 'jduke')");
1063      getLog().info("INSERT INTO Principals VALUES ('jduke', 'jduke'), result="+result);
1064   }
1065
1066   private void createRolesTable(Statement JavaDoc statement) throws SQLException JavaDoc
1067   {
1068      try
1069      {
1070         statement.execute("DROP TABLE Roles");
1071      }
1072      catch(SQLException JavaDoc e)
1073      {
1074         // Ok, assume table does not exist
1075 }
1076      boolean result = statement.execute("CREATE TABLE Roles ("
1077      + "PrincipalID VARCHAR(64),"
1078      + "Role VARCHAR(64),"
1079      + "RoleGroup VARCHAR(64) )"
1080      );
1081      getLog().info("Created Roles table, result="+result);
1082      result = statement.execute("INSERT INTO Roles VALUES ('scott', 'Echo', 'Roles')");
1083      getLog().info("INSERT INTO Roles VALUES ('scott', 'Echo', 'Roles'), result="+result);
1084      result = statement.execute("INSERT INTO Roles VALUES ('scott', 'callerScott', 'CallerPrincipal')");
1085      getLog().info("INSERT INTO Roles VALUES ('scott', 'callerScott', 'CallerPrincipal'), result="+result);
1086      result = statement.execute("INSERT INTO Roles VALUES ('stark', 'Java', 'Roles')");
1087      getLog().info("INSERT INTO Roles VALUES ('stark', 'Java', 'Roles'), result="+result);
1088      result = statement.execute("INSERT INTO Roles VALUES ('stark', 'Coder', 'Roles')");
1089      getLog().info("INSERT INTO Roles VALUES ('stark', 'Coder', 'Roles'), result="+result);
1090      result = statement.execute("INSERT INTO Roles VALUES ('stark', 'callerStark', 'CallerPrincipal')");
1091      getLog().info("INSERT INTO Roles VALUES ('stark', 'callerStark', 'CallerPrincipal'), result="+result);
1092      result = statement.execute("INSERT INTO Roles VALUES ('jduke', 'Role3', 'Roles')");
1093      getLog().info("INSERT INTO Roles VALUES ('jduke', 'Role3', 'Roles'), result="+result);
1094      result = statement.execute("INSERT INTO Roles VALUES ('jduke', 'Role4', 'Roles')");
1095      getLog().info("INSERT INTO Roles VALUES ('jduke', 'Role4', 'Roles'), result="+result);
1096   }
1097   
1098   public static void main(java.lang.String JavaDoc[] args)
1099   {
1100      // Print the location of the users.properties resource
1101 java.net.URL JavaDoc users = LoginModulesUnitTestCase.class.getResource("/users.properties");
1102      System.out.println("users.properties is here: "+users);
1103      TestSuite suite = new TestSuite(LoginModulesUnitTestCase.class);
1104      junit.textui.TestRunner.run(suite);
1105   }
1106
1107}
1108
Popular Tags