You are viewing a plain text version of this content. The canonical link for it is here.
Posted to oak-commits@jackrabbit.apache.org by an...@apache.org on 2013/05/02 16:36:17 UTC
svn commit: r1478390 -
/jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java
Author: angela
Date: Thu May 2 14:36:16 2013
New Revision: 1478390
URL: http://svn.apache.org/r1478390
Log:
OAK-50 : Implement User Management (tests)
Added:
jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java
Added: jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java
URL: http://svn.apache.org/viewvc/jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java?rev=1478390&view=auto
==============================================================================
--- jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java (added)
+++ jackrabbit/oak/trunk/oak-core/src/test/java/org/apache/jackrabbit/oak/spi/security/user/action/AccessControlActionTest.java Thu May 2 14:36:16 2013
@@ -0,0 +1,102 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.apache.jackrabbit.oak.spi.security.user.action;
+
+import java.util.HashMap;
+import java.util.Map;
+import javax.jcr.security.AccessControlList;
+import javax.jcr.security.AccessControlManager;
+import javax.jcr.security.AccessControlPolicy;
+import javax.jcr.security.Privilege;
+
+import com.google.common.collect.ImmutableMap;
+import org.apache.jackrabbit.api.security.user.Authorizable;
+import org.apache.jackrabbit.api.security.user.Group;
+import org.apache.jackrabbit.api.security.user.User;
+import org.apache.jackrabbit.api.security.user.UserManager;
+import org.apache.jackrabbit.oak.AbstractSecurityTest;
+import org.apache.jackrabbit.oak.spi.security.ConfigurationParameters;
+import org.apache.jackrabbit.oak.spi.security.privilege.PrivilegeConstants;
+import org.apache.jackrabbit.oak.spi.security.user.UserConfiguration;
+import org.junit.Test;
+
+import static org.junit.Assert.assertArrayEquals;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertTrue;
+
+/**
+ * Testing the {@code AccessControlAction}
+ */
+public class AccessControlActionTest extends AbstractSecurityTest {
+
+ @Override
+ protected ConfigurationParameters getSecurityConfigParameters() {
+ Map<String, String> map = new HashMap<String, String>();
+ map.put(AccessControlAction.GROUP_PRIVILEGE_NAMES, PrivilegeConstants.JCR_READ);
+ map.put(AccessControlAction.USER_PRIVILEGE_NAMES, PrivilegeConstants.JCR_ALL);
+
+ ConfigurationParameters userConfig = new ConfigurationParameters(map);
+ return new ConfigurationParameters(ImmutableMap.of(UserConfiguration.PARAM_USER_OPTIONS, userConfig));
+ }
+
+ @Test
+ public void testAccessControlActionForUser() throws Exception {
+ UserManager userMgr = getUserManager();
+ User u = null;
+ try {
+ String uid = "actionTestUser";
+ u = userMgr.createUser(uid, uid);
+ root.commit();
+
+ assertAcAction(u, PrivilegeConstants.JCR_ALL);
+ } finally {
+ root.refresh();
+ if (u != null) {
+ u.remove();
+ }
+ root.commit();
+ }
+ }
+
+ @Test
+ public void testAccessControlAction() throws Exception {
+ UserManager userMgr = getUserManager();
+ Group gr = null;
+ try {
+ gr = userMgr.createGroup("actionTestGroup");
+ root.commit();
+
+ assertAcAction(gr, PrivilegeConstants.JCR_READ);
+ } finally {
+ root.refresh();
+ if (gr != null) {
+ gr.remove();
+ }
+ root.commit();
+ }
+ }
+
+ private void assertAcAction(Authorizable a, String expectedPrivName) throws Exception {
+ AccessControlManager acMgr = getAccessControlManager(root);
+ AccessControlPolicy[] policies = acMgr.getPolicies(a.getPath());
+ assertEquals(1, policies.length);
+ assertTrue(policies[0] instanceof AccessControlList);
+ AccessControlList acl = (AccessControlList) policies[0];
+ assertEquals(1, acl.getAccessControlEntries().length);
+ assertArrayEquals(new Privilege[]{getPrivilegeManager().getPrivilege(expectedPrivName)}, acl.getAccessControlEntries()[0].getPrivileges());
+ }
+}
\ No newline at end of file