/*
* Copyright 2013 Red Hat Inc. and/or its affiliates and other contributors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
* http://www.apache.org/licenses/LICENSE-2.0
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.switchyard.security.credential.extractor;
import java.io.InputStream;
import java.security.cert.Certificate;
import java.util.Set;
import javax.xml.soap.MessageFactory;
import javax.xml.soap.SOAPConstants;
import javax.xml.soap.SOAPMessage;
import junit.framework.Assert;
import org.junit.Test;
import org.switchyard.common.type.Classes;
import org.switchyard.security.credential.AssertionCredential;
import org.switchyard.security.credential.CertificateCredential;
import org.switchyard.security.credential.Credential;
import org.switchyard.security.credential.NameCredential;
import org.switchyard.security.credential.PasswordCredential;
import org.w3c.dom.Element;
/**
* SOAPMessageCredentialExtractor tests.
*
* @author David Ward <<a href="mailto:dward@jboss.org">dward@jboss.org</a>> © 2012 Red Hat Inc.
*/
public class SOAPMessageCredentialExtractorTests {
private static final String BASE_PATH = "/org/switchyard/security/credential/extractor/SOAPMessageCredentialExtractorTests-";
private static final String ASSERTION_XML = BASE_PATH + "Assertion.xml";
private static final String USERNAME_TOKEN_XML = BASE_PATH + "UsernameToken.xml";
private static final String BINARY_SECURITY_TOKEN_XML = BASE_PATH + "BinarySecurityToken.xml";
@Test
public void testAssertion() throws Exception {
SOAPMessage source = createMessage(ASSERTION_XML);
Set<Credential> creds = new SOAPMessageCredentialExtractor().extract(source);
boolean foundAssertion = false;
for (Credential cred : creds) {
if (cred instanceof AssertionCredential) {
foundAssertion = true;
Element assertion = ((AssertionCredential)cred).getAssertion();
Assert.assertEquals("ID_00cdd057-e611-439d-a189-581e1437e560", assertion.getAttribute("ID"));
}
}
if (!foundAssertion) {
Assert.fail("assertion not found");
}
}
@Test
public void testUsernameToken() throws Exception {
SOAPMessage source = createMessage(USERNAME_TOKEN_XML);
Set<Credential> creds = new SOAPMessageCredentialExtractor().extract(source);
boolean foundName = false;
boolean foundPassword = false;
for (Credential cred : creds) {
if (cred instanceof NameCredential) {
foundName = true;
String name = ((NameCredential)cred).getName();
Assert.assertEquals("Aladdin", name);
} else if (cred instanceof PasswordCredential) {
foundPassword = true;
String password = new String(((PasswordCredential)cred).getPassword());
Assert.assertEquals("open sesame", password);
}
}
if (!foundName) {
Assert.fail("name not found");
}
if (!foundPassword) {
Assert.fail("password not found");
}
}
@Test
public void testBinarySecurityToken() throws Exception {
CertificateCredential cred = getBinarySecurityTokenCertificateCredential();
if (cred == null) {
Assert.fail("certificate not found");
}
Certificate certificate = ((CertificateCredential)cred).getCertificate();
Assert.assertEquals("X.509", certificate.getType());
}
public static CertificateCredential getBinarySecurityTokenCertificateCredential() throws Exception {
SOAPMessage source = createMessage(BINARY_SECURITY_TOKEN_XML);
Set<Credential> creds = new SOAPMessageCredentialExtractor().extract(source);
for (Credential cred : creds) {
if (cred instanceof CertificateCredential) {
return (CertificateCredential)cred;
}
}
return null;
}
private static SOAPMessage createMessage(String path) throws Exception {
InputStream is = Classes.getResourceAsStream(path, SOAPMessageCredentialExtractorTests.class);
try {
return MessageFactory.newInstance(SOAPConstants.SOAP_1_1_PROTOCOL).createMessage(null, is);
} finally {
if (is != null) {
is.close();
}
}
}
}