@Test
  public void testAddTrialSubscriptionShouldReturnForbiddenResponse() throws Exception {
    SaasUserCredentials testUserCredentials =
        new SaasUserCredentials(TEST_ACCESS_TOKEN, TEST_ACCOUNT_ID);

    Response result = service.addTrialSubscription();
    assertEquals(result.getStatus(), Response.Status.FORBIDDEN.getStatusCode());
    verify(mockFacade, never()).addTrialSaasSubscription(testUserCredentials);
  }
Beispiel #2
0
 @Test
 public void testStatusOverride() {
   Response response =
       client
           .target("dummy")
           .register(new AbortWith(Response.ok().build()))
           .register(StatusOverrideFilter.class)
           .request()
           .get();
   Assert.assertEquals(response.getStatus(), Response.Status.FORBIDDEN.getStatusCode());
 }
 @Test(expected = WebApplicationException.class)
 public void testDatasourcesResourcesFilteringNoAccess() {
   setUpMockExpectations(requestPath, false, requestMethod);
   EasyMock.replay(req, request, authorizationInfo);
   // Assert.assertTrue(((AbstractResourceFilter)
   // resourceFilter.getRequestFilter()).isApplicable(requestPath));
   try {
     resourceFilter.getRequestFilter().filter(request);
   } catch (WebApplicationException e) {
     Assert.assertEquals(Response.Status.FORBIDDEN.getStatusCode(), e.getResponse().getStatus());
     throw e;
   }
   EasyMock.verify(req, request, authorizationInfo);
 }
 @Test
 public void testErrorDelete() {
   final Response json = target("user").path("1").request(MediaType.APPLICATION_JSON).delete();
   assertEquals(json.getStatus(), Response.Status.FORBIDDEN.getStatusCode());
 }
Beispiel #5
0
    public String requestString(
        int timeout, String url, String method, Object body, Pair<String, ?>... parameters)
        throws IOException, ServerException, ForbiddenException, NotFoundException,
            UnauthorizedException, ConflictException {
      final String authToken = getAuthenticationToken();
      if ((parameters != null && parameters.length > 0) || authToken != null) {
        final UriBuilder ub = UriBuilder.fromUri(url);
        // remove sensitive information from url.
        ub.replaceQueryParam("token", null);

        if (parameters != null && parameters.length > 0) {
          for (Pair<String, ?> parameter : parameters) {
            String name = URLEncoder.encode(parameter.first, "UTF-8");
            String value =
                parameter.second == null
                    ? null
                    : URLEncoder.encode(String.valueOf(parameter.second), "UTF-8");
            ub.replaceQueryParam(name, value);
          }
        }
        url = ub.build().toString();
      }
      final HttpURLConnection conn = (HttpURLConnection) new URL(url).openConnection();
      conn.setConnectTimeout(timeout > 0 ? timeout : 60000);
      conn.setReadTimeout(timeout > 0 ? timeout : 60000);
      try {
        conn.setRequestMethod(method);
        // drop a hint for server side that we want to receive application/json
        conn.addRequestProperty(HttpHeaders.ACCEPT, MediaType.APPLICATION_JSON);
        if (authToken != null) {
          conn.setRequestProperty(HttpHeaders.AUTHORIZATION, authToken);
        }
        if (body != null) {
          conn.addRequestProperty(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_JSON);
          conn.setDoOutput(true);

          if (HttpMethod.DELETE.equals(
              method)) { // to avoid jdk bug described here
                         // http://bugs.java.com/view_bug.do?bug_id=7157360
            conn.setRequestMethod(HttpMethod.POST);
            conn.setRequestProperty("X-HTTP-Method-Override", HttpMethod.DELETE);
          }

          try (OutputStream output = conn.getOutputStream()) {
            output.write(DtoFactory.getInstance().toJson(body).getBytes());
          }
        }

        final int responseCode = conn.getResponseCode();
        if ((responseCode / 100) != 2) {
          InputStream in = conn.getErrorStream();
          if (in == null) {
            in = conn.getInputStream();
          }
          final String str;
          try (Reader reader = new InputStreamReader(in)) {
            str = CharStreams.toString(reader);
          }
          final String contentType = conn.getContentType();
          if (contentType != null && contentType.startsWith(MediaType.APPLICATION_JSON)) {
            final ServiceError serviceError =
                DtoFactory.getInstance().createDtoFromJson(str, ServiceError.class);
            if (serviceError.getMessage() != null) {
              if (responseCode == Response.Status.FORBIDDEN.getStatusCode()) {
                throw new ForbiddenException(serviceError);
              } else if (responseCode == Response.Status.NOT_FOUND.getStatusCode()) {
                throw new NotFoundException(serviceError);
              } else if (responseCode == Response.Status.UNAUTHORIZED.getStatusCode()) {
                throw new UnauthorizedException(serviceError);
              } else if (responseCode == Response.Status.CONFLICT.getStatusCode()) {
                throw new ConflictException(serviceError);
              } else if (responseCode == Response.Status.INTERNAL_SERVER_ERROR.getStatusCode()) {
                throw new ServerException(serviceError);
              }
              throw new ServerException(serviceError);
            }
          }
          // Can't parse content as json or content has format other we expect for error.
          throw new IOException(
              String.format(
                  "Failed access: %s, method: %s, response code: %d, message: %s",
                  UriBuilder.fromUri(url).replaceQuery("token").build(),
                  method,
                  responseCode,
                  str));
        }
        final String contentType = conn.getContentType();
        if (!(contentType == null || contentType.startsWith(MediaType.APPLICATION_JSON))) {
          throw new IOException(conn.getResponseMessage());
        }

        try (Reader reader = new InputStreamReader(conn.getInputStream())) {
          return CharStreams.toString(reader);
        }
      } finally {
        conn.disconnect();
      }
    }
Beispiel #6
0
 private void checkResponseStatus(Response response) {
   final int statusCode = response.getStatus();
   if (statusCode == Response.Status.OK.getStatusCode()) return;
   if (statusCode == Response.Status.FORBIDDEN.getStatusCode())
     throw new PrismaticAuthenticationException(response);
 }
Beispiel #7
0
 @Override
 public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext)
     throws IOException {
   responseContext.setStatus(Response.Status.FORBIDDEN.getStatusCode());
 }