diff options
Diffstat (limited to 'java/sca/itest')
13 files changed, 470 insertions, 29 deletions
diff --git a/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldClientImpl.java b/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldClientImpl.java index 55b798edbe..7345af7f7c 100644 --- a/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldClientImpl.java +++ b/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldClientImpl.java @@ -30,13 +30,11 @@ public class HelloWorldClientImpl implements HelloWorldService { @Reference protected HelloWorldService helloworldWS; - @Reference - protected HelloWorldService helloworldJMS; + public String getGreetings(String name) { return "Hello " + - helloworldWS.getGreetings(name) + - helloworldJMS.getGreetings(name); + helloworldWS.getGreetings(name); } } diff --git a/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldServiceImpl.java b/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldServiceImpl.java index 411dcae605..6372570d1f 100644 --- a/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldServiceImpl.java +++ b/java/sca/itest/policy-security-basicauth/src/main/java/helloworld/HelloWorldServiceImpl.java @@ -18,6 +18,10 @@ */ package helloworld; +import javax.security.auth.Subject; + +import org.osoa.sca.RequestContext; +import org.osoa.sca.annotations.Context; import org.osoa.sca.annotations.Service; /** @@ -26,8 +30,17 @@ import org.osoa.sca.annotations.Service; @Service(HelloWorldService.class) public class HelloWorldServiceImpl implements HelloWorldService { + @Context + protected RequestContext requestContext; + public String getGreetings(String name) { - return "Hello " + name; + Subject subject = requestContext.getSecuritySubject(); + + if (subject == null){ + return "Hello " + name + " null subject"; + } else { + return "Hello " + name + " " + subject.toString(); + } } } diff --git a/java/sca/itest/policy-security-basicauth/src/main/resources/definitions.xml b/java/sca/itest/policy-security-basicauth/src/main/resources/definitions.xml index 9099191b27..dbdf0cd263 100644 --- a/java/sca/itest/policy-security-basicauth/src/main/resources/definitions.xml +++ b/java/sca/itest/policy-security-basicauth/src/main/resources/definitions.xml @@ -27,21 +27,18 @@ <sca:policySet name="BasicAuthenticationPolicySet" provides="authentication" appliesTo="sca:binding.ws"> - <tuscany:basicAuthentication> <tuscany:userName>myname</tuscany:userName> <tuscany:password>mypassword</tuscany:password> </tuscany:basicAuthentication> - </sca:policySet> - - <!-- some authentication implementation policies - may think about these later - <policySet name="allowed_users" appliesTo="sca:implementation.java"> - <permitAll/> - </policySet> - <policySet name="runAsAdmin" appliesTo="sca:implementation.java"> - <runAs role="Administrator"/> - </policySet> - --> + <sca:policySet name="ImplementationIdentityPolicySet" + provides="tuscany:identity" + appliesTo="sca:implementation.java"> + <securityIdentity> + <useCallerIdentity/> + </securityIdentity> + </sca:policySet> + </definitions>
\ No newline at end of file diff --git a/java/sca/itest/policy-security-basicauth/src/main/resources/helloworld.composite b/java/sca/itest/policy-security-basicauth/src/main/resources/helloworld.composite index 247b2b56e4..f883629180 100644 --- a/java/sca/itest/policy-security-basicauth/src/main/resources/helloworld.composite +++ b/java/sca/itest/policy-security-basicauth/src/main/resources/helloworld.composite @@ -33,26 +33,14 @@ <reference name="helloworldWS" requires="authentication"> <binding.ws uri="http://localhost:8085/HelloWorldServiceWSComponent"/> </reference> - <reference name="helloworldJMS"> - <binding.jms uri="jms:HelloWorldService"/> - </reference> </component> <component name="HelloWorldServiceWSComponent"> - <implementation.java class="helloworld.HelloWorldServiceImpl" /> + <implementation.java class="helloworld.HelloWorldServiceImpl" requires="tuscany:identity"/> <service name="HelloWorldService" requires="authentication"> <interface.java interface="helloworld.HelloWorldService"/> <binding.ws uri="http://localhost:8085/HelloWorldServiceWSComponent"/> </service> </component> - <component name="HelloWorldServiceJMSComponent"> - <implementation.java class="helloworld.HelloWorldServiceImpl" /> - - <!--service name="HelloWorldService" requires="authentication"--> - <service name="HelloWorldService" > - <interface.java interface="helloworld.HelloWorldService"/> - <binding.jms/> - </service> - </component> </composite> diff --git a/java/sca/itest/policy-security-token/pom.xml b/java/sca/itest/policy-security-token/pom.xml new file mode 100644 index 0000000000..761aae3bc7 --- /dev/null +++ b/java/sca/itest/policy-security-token/pom.xml @@ -0,0 +1,106 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. +--> +<project> + <modelVersion>4.0.0</modelVersion> + <parent> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-itest</artifactId> + <version>1.4-SNAPSHOT</version> + <relativePath>../pom.xml</relativePath> + </parent> + <artifactId>itest-policy-security-token</artifactId> + <name>Apache Tuscany SCA Policy Token Authentication Integration Tests</name> + + <dependencies> + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-node-api</artifactId> + <version>1.4-SNAPSHOT</version> + </dependency> + + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-node-impl</artifactId> + <version>1.4-SNAPSHOT</version> + <scope>runtime</scope> + </dependency> + + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-implementation-java-runtime</artifactId> + <version>1.4-SNAPSHOT</version> + <scope>runtime</scope> + </dependency> + + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-binding-ws-axis2</artifactId> + <version>1.4-SNAPSHOT</version> + <scope>runtime</scope> + </dependency> + + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-host-tomcat</artifactId> + <version>1.4-SNAPSHOT</version> + <scope>runtime</scope> + </dependency> + + <dependency> + <groupId>org.apache.tuscany.sca</groupId> + <artifactId>tuscany-binding-jms-runtime</artifactId> + <version>1.4-SNAPSHOT</version> + </dependency> + + <dependency> + <groupId>org.apache.activemq</groupId> + <artifactId>activemq-core</artifactId> + <version>4.1.1</version> + <scope>runtime</scope> + </dependency> + + <dependency> + <groupId>org.apache.geronimo.specs</groupId> + <artifactId>geronimo-jms_1.1_spec</artifactId> + <version>1.1</version> + <scope>provided</scope> + <exclusions> + <exclusion> + <groupId>org.apache.geronimo.specs</groupId> + <artifactId>geronimo-jms_1.1_spec</artifactId> + </exclusion> + </exclusions> + </dependency> + + <dependency> + <groupId>junit</groupId> + <artifactId>junit</artifactId> + <version>4.2</version> + </dependency> + + <dependency> + <groupId>httpunit</groupId> + <artifactId>httpunit</artifactId> + <version>1.6.1</version> + <scope>test</scope> + </dependency> + + </dependencies> +</project> diff --git a/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldClientImpl.java b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldClientImpl.java new file mode 100644 index 0000000000..55b798edbe --- /dev/null +++ b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldClientImpl.java @@ -0,0 +1,42 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ +package helloworld; + +import org.osoa.sca.annotations.Reference; +import org.osoa.sca.annotations.Service; + +/** + * This class implements the HelloWorld service. + */ +@Service(HelloWorldService.class) +public class HelloWorldClientImpl implements HelloWorldService { + + @Reference + protected HelloWorldService helloworldWS; + + @Reference + protected HelloWorldService helloworldJMS; + + public String getGreetings(String name) { + return "Hello " + + helloworldWS.getGreetings(name) + + helloworldJMS.getGreetings(name); + } + +} diff --git a/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldService.java b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldService.java new file mode 100644 index 0000000000..268d90e910 --- /dev/null +++ b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldService.java @@ -0,0 +1,30 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ +package helloworld; + +import org.osoa.sca.annotations.Remotable; + +/** + * This is the business interface of the HelloWorld greetings service. + */ +@Remotable +public interface HelloWorldService { + + public String getGreetings(String name); +} diff --git a/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldServiceImpl.java b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldServiceImpl.java new file mode 100644 index 0000000000..6372570d1f --- /dev/null +++ b/java/sca/itest/policy-security-token/src/main/java/helloworld/HelloWorldServiceImpl.java @@ -0,0 +1,46 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ +package helloworld; + +import javax.security.auth.Subject; + +import org.osoa.sca.RequestContext; +import org.osoa.sca.annotations.Context; +import org.osoa.sca.annotations.Service; + +/** + * This class implements the HelloWorld service. + */ +@Service(HelloWorldService.class) +public class HelloWorldServiceImpl implements HelloWorldService { + + @Context + protected RequestContext requestContext; + + public String getGreetings(String name) { + Subject subject = requestContext.getSecuritySubject(); + + if (subject == null){ + return "Hello " + name + " null subject"; + } else { + return "Hello " + name + " " + subject.toString(); + } + } + +} diff --git a/java/sca/itest/policy-security-token/src/main/resources/definitions.xml b/java/sca/itest/policy-security-token/src/main/resources/definitions.xml new file mode 100644 index 0000000000..f7bb9bc374 --- /dev/null +++ b/java/sca/itest/policy-security-token/src/main/resources/definitions.xml @@ -0,0 +1,49 @@ +<?xml version="1.0" encoding="ASCII"?> +<!-- + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. +--> +<definitions xmlns="http://www.osoa.org/xmlns/sca/1.0" + targetNamespace="http://itest/policy" + xmlns:sca="http://www.osoa.org/xmlns/sca/1.0" + xmlns:tuscany="http://tuscany.apache.org/xmlns/sca/1.0" + xmlns:ip="http://itest/policy" > + + + <sca:policySet name="Axis2TokenAuthenticationPolicySet" + provides="authentication" + appliesTo="sca:binding.ws"> + + <tuscany:axis2TokenAuthentication xmlns:foo="http://tuscany.apache.org/foo" tokenName="foo:myname"/> + </sca:policySet> + + <sca:policySet name="JMSTokenAuthenticationPolicySet" + provides="authentication" + appliesTo="sca:binding.jms"> + + <tuscany:jmsTokenAuthentication xmlns:foo="http://tuscany.apache.org/foo" tokenName="foo:myname"/> + </sca:policySet> + + <sca:policySet name="ImplementationIdentityPolicySet" + provides="tuscany:identity" + appliesTo="sca:implementation.java"> + <securityIdentity> + <useCallerIdentity/> + </securityIdentity> + </sca:policySet> + +</definitions>
\ No newline at end of file diff --git a/java/sca/itest/policy-security-token/src/main/resources/helloworld.composite b/java/sca/itest/policy-security-token/src/main/resources/helloworld.composite new file mode 100644 index 0000000000..1db89fd502 --- /dev/null +++ b/java/sca/itest/policy-security-token/src/main/resources/helloworld.composite @@ -0,0 +1,56 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. +--> +<composite xmlns="http://www.osoa.org/xmlns/sca/1.0" + targetNamespace="http://itest/policy" + xmlns:sca="http://www.osoa.org/xmlns/sca/1.0" + xmlns:tuscany="http://tuscany.apache.org/xmlns/sca/1.0" + xmlns:ip="http://itest/policy" + name="Helloworld"> + + <component name="HelloWorldClientComponent"> + <implementation.java class="helloworld.HelloWorldClientImpl"/> + <service name="HelloWorldService"> + <interface.java interface="helloworld.HelloWorldService"/> + <binding.sca/> + </service> + <reference name="helloworldWS" requires="authentication"> + <binding.ws uri="http://localhost:8085/HelloWorldServiceWSComponent"/> + </reference> + <reference name="helloworldJMS" requires="authentication"> + <binding.jms uri="jms:HelloWorldService"/> + </reference> + </component> + + <component name="HelloWorldServiceWSComponent"> + <implementation.java class="helloworld.HelloWorldServiceImpl" requires="tuscany:identity"/> + <service name="HelloWorldService" requires="authentication"> + <interface.java interface="helloworld.HelloWorldService"/> + <binding.ws uri="http://localhost:8085/HelloWorldServiceWSComponent"/> + </service> + </component> + + <component name="HelloWorldServiceJMSComponent"> + <implementation.java class="helloworld.HelloWorldServiceImpl" requires="tuscany:identity"/> + <service name="HelloWorldService" requires="authentication"> + <interface.java interface="helloworld.HelloWorldService"/> + <binding.jms/> + </service> + </component> +</composite> diff --git a/java/sca/itest/policy-security-basicauth/src/main/resources/jndi.properties b/java/sca/itest/policy-security-token/src/main/resources/jndi.properties index 9abdff215d..9abdff215d 100644 --- a/java/sca/itest/policy-security-basicauth/src/main/resources/jndi.properties +++ b/java/sca/itest/policy-security-token/src/main/resources/jndi.properties diff --git a/java/sca/itest/policy-security-token/src/test/java/org/apache/tuscany/sca/itest/TokenAuthTestCase.java b/java/sca/itest/policy-security-token/src/test/java/org/apache/tuscany/sca/itest/TokenAuthTestCase.java new file mode 100644 index 0000000000..167e45738f --- /dev/null +++ b/java/sca/itest/policy-security-token/src/test/java/org/apache/tuscany/sca/itest/TokenAuthTestCase.java @@ -0,0 +1,115 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one + * or more contributor license agreements. See the NOTICE file + * distributed with this work for additional information + * regarding copyright ownership. The ASF licenses this file + * to you under the Apache License, Version 2.0 (the + * "License"); you may not use this file except in compliance + * with the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, + * software distributed under the License is distributed on an + * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + * KIND, either express or implied. See the License for the + * specific language governing permissions and limitations + * under the License. + */ + +package org.apache.tuscany.sca.itest; + +import java.io.ByteArrayInputStream; + +import junit.framework.Assert; +import helloworld.HelloWorldService; + +import org.apache.tuscany.sca.node.SCAClient; +import org.apache.tuscany.sca.node.SCANode; +import org.apache.tuscany.sca.node.SCANodeFactory; +import org.apache.ws.security.util.Base64; +import org.junit.AfterClass; +import org.junit.BeforeClass; +import org.junit.Ignore; +import org.junit.Test; + +import com.meterware.httpunit.PostMethodWebRequest; +import com.meterware.httpunit.WebConversation; +import com.meterware.httpunit.WebRequest; +import com.meterware.httpunit.WebResponse; + +public class TokenAuthTestCase { + private static SCANode node; + private static HelloWorldService service; + + @BeforeClass + public static void init() throws Exception { + try { + SCANodeFactory factory = SCANodeFactory.newInstance(); + node = factory.createSCANodeFromClassLoader("helloworld.composite", + TokenAuthTestCase.class.getClassLoader()); + node.start(); + + service = ((SCAClient)node).getService(HelloWorldService.class, "HelloWorldClientComponent"); + } catch (Exception ex) { + ex.printStackTrace(); + } + } + + @AfterClass + public static void destroy() throws Exception { + node.stop(); + } + + @Test + //@Ignore + public void testViaSCAClient() { + String greetings = service.getGreetings("Simon"); + System.out.println(">>>" + greetings); + } + + @Test + @Ignore + public void testWSViaNonSCAClient() { + + try { + String token ="MyToken"; + String encToken = Base64.encode(token.getBytes()); + + String response = callService("http://L3AW203:8085/HelloWorldServiceWSComponent", + "<?xml version='1.0' encoding='UTF-8'?>" + + "<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">" + + "<soapenv:Header>" + + "<ns2:Token xmlns:ns2=\"http://helloworld/\">" + encToken + "</ns2:Token>" + + "</soapenv:Header>" + + "<soapenv:Body>" + + "<ns2:getGreetings xmlns:ns2=\"http://helloworld/\">" + + "<arg0>Simon</arg0>" + + "</ns2:getGreetings>" + + "</soapenv:Body>" + + "</soapenv:Envelope>" ); + System.out.println(">>>" + response); + } catch(Exception ex) { + System.out.println(ex.toString()); + } + } + + @Test + @Ignore + public void testJMSViaNonSCAClient() { + // TODO + } + + public String callService(String url, String requestString) throws Exception { + System.out.println("Request = " + requestString); + WebConversation wc = new WebConversation(); + wc.setAuthorization("Me", "MyPasswd"); + WebRequest request = new PostMethodWebRequest( url, + new ByteArrayInputStream(requestString.getBytes("UTF-8")),"text/xml"); + request.setHeaderField("SOAPAction", ""); + WebResponse response = wc.getResource(request); + System.out.println("Response= " + response.getText()); + Assert.assertEquals(200, response.getResponseCode()); + return response.getText(); + } +} diff --git a/java/sca/itest/pom.xml b/java/sca/itest/pom.xml index b2af34b305..1c32e2489c 100644 --- a/java/sca/itest/pom.xml +++ b/java/sca/itest/pom.xml @@ -106,6 +106,7 @@ <module>policy-security</module> <module>policy-security-basicauth</module> <module>policy-security-jsr250</module> + <module>policy-security-token</module> <module>properties</module> <module>recursive</module> <module>recursive-multi-level</module> |