package io.dropwizard.auth.oauth;
import com.codahale.metrics.MetricRegistry;
import com.google.common.base.Optional;
import io.dropwizard.auth.AuthFactory;
import io.dropwizard.auth.AuthResource;
import io.dropwizard.auth.AuthenticationException;
import io.dropwizard.auth.Authenticator;
import io.dropwizard.jersey.DropwizardResourceConfig;
import io.dropwizard.logging.LoggingFactory;
import org.glassfish.jersey.servlet.ServletProperties;
import org.glassfish.jersey.test.DeploymentContext;
import org.glassfish.jersey.test.JerseyTest;
import org.glassfish.jersey.test.ServletDeploymentContext;
import org.glassfish.jersey.test.grizzly.GrizzlyWebTestContainerFactory;
import org.glassfish.jersey.test.spi.TestContainerException;
import org.glassfish.jersey.test.spi.TestContainerFactory;
import org.junit.Test;
import javax.ws.rs.WebApplicationException;
import javax.ws.rs.core.HttpHeaders;
import static org.assertj.core.api.Assertions.assertThat;
import static org.assertj.core.api.Assertions.failBecauseExceptionWasNotThrown;
public class OAuthProviderTest extends JerseyTest {
static {
LoggingFactory.bootstrap();
}
@Override
protected TestContainerFactory getTestContainerFactory()
throws TestContainerException {
return new GrizzlyWebTestContainerFactory();
}
@Override
protected DeploymentContext configureDeployment() {
return ServletDeploymentContext.builder(new BasicAuthTestResourceConfig())
.initParam(ServletProperties.JAXRS_APPLICATION_CLASS, BasicAuthTestResourceConfig.class.getName())
.build();
}
@Test
public void respondsToMissingCredentialsWith401() throws Exception {
try {
target("/test").request().get(String.class);
failBecauseExceptionWasNotThrown(WebApplicationException.class);
} catch (WebApplicationException e) {
assertThat(e.getResponse().getStatus()).isEqualTo(401);
assertThat(e.getResponse().getHeaders().get(HttpHeaders.WWW_AUTHENTICATE))
.containsOnly("Bearer realm=\"realm\"");
}
}
@Test
public void transformsCredentialsToPrincipals() throws Exception {
assertThat(target("/test").request().header(HttpHeaders.AUTHORIZATION, "Bearer good-guy").get(String.class))
.isEqualTo("good-guy");
}
@Test
public void respondsToNonBasicCredentialsWith401() throws Exception {
try {
target("/test").request().header(HttpHeaders.AUTHORIZATION, "Derp WHEE").get(String.class);
failBecauseExceptionWasNotThrown(WebApplicationException.class);
} catch (WebApplicationException e) {
assertThat(e.getResponse().getStatus()).isEqualTo(401);
assertThat(e.getResponse().getHeaders().get(HttpHeaders.WWW_AUTHENTICATE))
.containsOnly("Bearer realm=\"realm\"");
}
}
@Test
public void respondsToExceptionsWith500() throws Exception {
try {
target("/test").request().header(HttpHeaders.AUTHORIZATION, "Bearer bad-guy").get(String.class);
failBecauseExceptionWasNotThrown(WebApplicationException.class);
} catch (WebApplicationException e) {
assertThat(e.getResponse().getStatus()).isEqualTo(500);
}
}
public static class BasicAuthTestResourceConfig extends DropwizardResourceConfig {
public BasicAuthTestResourceConfig() {
super(true, new MetricRegistry());
final Authenticator<String, String> authenticator = new Authenticator<String, String>() {
@Override
public Optional<String> authenticate(String credentials) throws AuthenticationException {
if ("good-guy".equals(credentials)) {
return Optional.of("good-guy");
}
if ("bad-guy".equals(credentials)) {
throw new AuthenticationException("CRAP");
}
return Optional.absent();
}
};
register(AuthFactory.binder(new OAuthFactory<>(authenticator, "realm", String.class)));
register(AuthResource.class);
}
}
}