private void badNodeNameParam(String name, String exception) throws RepositoryException {
CreateSakaiUserServlet csus = new CreateSakaiUserServlet();
csus.requestTrustValidatorService = requestTrustValidatorService;
JackrabbitSession session = createMock(JackrabbitSession.class);
ResourceResolver rr = createMock(ResourceResolver.class);
SlingHttpServletRequest request = createMock(SlingHttpServletRequest.class);
UserManager userManager = createMock(UserManager.class);
User user = createMock(User.class);
expect(request.getResourceResolver()).andReturn(rr).anyTimes();
expect(rr.adaptTo(Session.class)).andReturn(session).anyTimes();
expect(session.getUserManager()).andReturn(userManager);
expect(session.getUserID()).andReturn("userID");
expect(userManager.getAuthorizable("userID")).andReturn(user);
expect(user.isAdmin()).andReturn(false);
expect(request.getParameter(":create-auth")).andReturn("reCAPTCHA");
expect(request.getParameter(SlingPostConstants.RP_NODE_NAME)).andReturn(name);
HtmlResponse response = new HtmlResponse();
replay();
try {
csus.handleOperation(request, response, null);
fail();
} catch (RepositoryException e) {
assertEquals(exception, e.getMessage());
}
verify();
}
@Test
public void testRequestTrusted() throws RepositoryException {
CreateSakaiUserServlet csus = new CreateSakaiUserServlet();
JackrabbitSession session = createMock(JackrabbitSession.class);
ResourceResolver rr = createMock(ResourceResolver.class);
expect(rr.adaptTo(Session.class)).andReturn(session);
SlingHttpServletRequest request = createMock(SlingHttpServletRequest.class);
UserManager userManager = createMock(UserManager.class);
User user = createMock(User.class);
expect(request.getResourceResolver()).andReturn(rr).anyTimes();
expect(rr.adaptTo(Session.class)).andReturn(session).anyTimes();
expect(session.getUserManager()).andReturn(userManager);
expect(session.getUserID()).andReturn("userID");
expect(userManager.getAuthorizable("userID")).andReturn(user);
expect(user.isAdmin()).andReturn(false);
expect(request.getParameter(":create-auth")).andReturn("typeA");
RequestTrustValidatorService requestTrustValidatorService =
createMock(RequestTrustValidatorService.class);
RequestTrustValidator requestTrustValidator = createMock(RequestTrustValidator.class);
expect(requestTrustValidatorService.getValidator("typeA")).andReturn(requestTrustValidator);
expect(requestTrustValidator.getLevel()).andReturn(RequestTrustValidator.CREATE_USER);
expect(requestTrustValidator.isTrusted(request)).andReturn(true);
expect(request.getParameter(SlingPostConstants.RP_NODE_NAME)).andReturn("foo");
expect(request.getParameter("pwd")).andReturn("bar");
expect(request.getParameter("pwdConfirm")).andReturn("baz");
HtmlResponse response = new HtmlResponse();
csus.requestTrustValidatorService = requestTrustValidatorService;
replay();
try {
csus.handleOperation(request, response, null);
fail();
} catch (RepositoryException e) {
assertEquals("Password value does not match the confirmation password", e.getMessage());
}
verify();
}
@Test
public void testSiteRemoveException() throws ServletException, IOException, RepositoryException {
Node site = mock(Node.class);
when(site.getSession()).thenReturn(session);
when(session.hasPendingChanges()).thenReturn(true);
doThrow(new RepositoryException()).when(session).save();
when(resource.adaptTo(Node.class)).thenReturn(site);
when(siteService.isSite(any(Item.class))).thenReturn(true);
servlet.doPost(request, response);
verify(response).setStatus(HttpServletResponse.SC_INTERNAL_SERVER_ERROR);
}
@Test
public void testProperPost()
throws ServletException, IOException, RepositoryException, JSONException,
AccessDeniedException, StorageClientException {
SlingHttpServletRequest request = createMock(SlingHttpServletRequest.class);
SlingHttpServletResponse response = createMock(SlingHttpServletResponse.class);
javax.jcr.Session jcrSession =
Mockito.mock(
javax.jcr.Session.class,
Mockito.withSettings().extraInterfaces(SessionAdaptable.class));
Session mockSession = mock(Session.class);
ContentManager contentManager = mock(ContentManager.class);
when(mockSession.getContentManager()).thenReturn(contentManager);
Mockito.when(((SessionAdaptable) jcrSession).getSession()).thenReturn(mockSession);
ResourceResolver resourceResolver = mock(ResourceResolver.class);
Mockito.when(resourceResolver.adaptTo(javax.jcr.Session.class)).thenReturn(jcrSession);
expect(request.getResourceResolver()).andReturn(resourceResolver);
// Provide parameters
String[] dimensions = new String[] {"16x16", "32x32"};
addStringRequestParameter(request, "img", "/~johndoe/people.png");
addStringRequestParameter(request, "save", "/~johndoe/breadcrumbs");
addStringRequestParameter(request, "x", "10");
addStringRequestParameter(request, "y", "10");
addStringRequestParameter(request, "width", "70");
addStringRequestParameter(request, "height", "70");
addStringRequestParameter(request, "dimensions", StringUtils.join(dimensions, 0, ';'));
expect(request.getRemoteUser()).andReturn("johndoe");
String imagePath = "a:johndoe/people.png";
when(contentManager.getInputStream(imagePath))
.thenReturn(getClass().getClassLoader().getResourceAsStream("people.png"));
when(contentManager.get(anyString())).thenReturn(new Content("foo", null));
SparseContentResource someResource = mock(SparseContentResource.class);
when(someResource.adaptTo(Content.class))
.thenReturn(
new Content(
imagePath,
ImmutableMap.of(
"mimeType", (Object) "image/png", "_bodyLocation", "2011/lt/zz/x8")));
JackrabbitSession jrSession = mock(JackrabbitSession.class);
SparseMapUserManager userManager = mock(SparseMapUserManager.class);
when(userManager.getSession()).thenReturn(mockSession);
when(jrSession.getUserManager()).thenReturn(userManager);
when(resourceResolver.adaptTo(javax.jcr.Session.class)).thenReturn(jrSession);
when(resourceResolver.getResource(anyString())).thenReturn(someResource);
// Capture output.
ByteArrayOutputStream baos = new ByteArrayOutputStream();
PrintWriter write = new PrintWriter(baos);
response.setContentType("application/json");
response.setCharacterEncoding("UTF-8");
expect(response.getWriter()).andReturn(write);
replay();
servlet.doPost(request, response);
write.flush();
String s = baos.toString("UTF-8");
JSONObject o = new JSONObject(s);
JSONArray files = o.getJSONArray("files");
assertEquals(2, files.length());
for (int i = 0; i < files.length(); i++) {
String url = files.getString(i);
assertEquals("/~johndoe/breadcrumbs/" + dimensions[i] + "_people.png", url);
}
}
@Test
public void testCreate() throws Exception {
// activate
when(slingRepository.loginAdministrative(null)).thenReturn(adminSession);
when(request.getResourceResolver()).thenReturn(resourceResolver);
when(resourceResolver.adaptTo(javax.jcr.Session.class)).thenReturn(jcrSesson);
Session session = repository.loginAdministrative("ieb");
when(jcrSesson.getUserManager()).thenReturn(sparseMapUserManager);
when(sparseMapUserManager.getSession()).thenReturn(session);
when(clusterTrackingService.getClusterUniqueId())
.thenReturn(String.valueOf(System.currentTimeMillis()));
when(request.getRequestPathInfo()).thenReturn(requestPathInfo);
when(requestPathInfo.getExtension()).thenReturn(null);
when(adminSession.getUserManager()).thenReturn(userManager);
when(adminSession.getPrincipalManager()).thenReturn(principalManager);
when(adminSession.getAccessControlManager()).thenReturn(accessControlManager);
when(request.getRemoteUser()).thenReturn("ieb");
when(request.getRequestParameterMap()).thenReturn(requestParameterMap);
Map<String, RequestParameter[]> map = new HashMap<String, RequestParameter[]>();
RequestParameter[] requestParameters =
new RequestParameter[] {
requestParameter1, requestParameterNot, requestParameter2,
};
map.put("files", requestParameters);
when(requestParameterMap.entrySet()).thenReturn(map.entrySet());
when(requestParameter1.isFormField()).thenReturn(false);
when(requestParameter1.getContentType()).thenReturn("application/pdf");
when(requestParameter1.getFileName()).thenReturn("testfilename.pdf");
InputStream input1 = new ByteArrayInputStream(new byte[10]);
when(requestParameter1.getInputStream()).thenReturn(input1);
when(requestParameter2.isFormField()).thenReturn(false);
when(requestParameter2.getContentType()).thenReturn("text/html");
when(requestParameter2.getFileName()).thenReturn("index.html");
InputStream input2 = new ByteArrayInputStream(new byte[10]);
when(requestParameter2.getInputStream()).thenReturn(input2);
when(requestParameterNot.isFormField()).thenReturn(true);
// deep create
// when(adminSession.nodeExists(CreateContentPoolServlet.POOLED_CONTENT_ROOT)).thenReturn(true);
when(adminSession.itemExists(Mockito.anyString())).thenReturn(true);
// Because the pooled content paths are generated by a private method,
// mocking the repository is more problematic than usual. The test
// therefore relies on inside knowledge that there should be three
// calls to deepGetOrCreateNode for each file: one for the pooled content
// node, one for its members node, and one for the manager node.
when(adminSession.getItem(Mockito.anyString()))
.thenAnswer(
new Answer<Item>() {
public Item answer(InvocationOnMock invocation) throws Throwable {
Object[] args = invocation.getArguments();
String path = (String) args[0];
if (path.endsWith(POOLED_CONTENT_MEMBERS_NODE)) {
return membersNode;
} else if (path.endsWith("ieb")) {
return memberNode;
} else {
return parentNode;
}
}
});
when(parentNode.addNode(JCR_CONTENT, NT_RESOURCE)).thenReturn(resourceNode);
when(adminSession.getValueFactory()).thenReturn(valueFactory);
when(valueFactory.createBinary(Mockito.any(InputStream.class))).thenReturn(binary);
// access control utils
accessControlList =
new AccessControlList() {
// Add an "addEntry" method so AccessControlUtil can execute something.
// This method doesn't do anything useful.
@SuppressWarnings("unused")
public boolean addEntry(Principal principal, Privilege[] privileges, boolean isAllow)
throws AccessControlException {
return true;
}
public void removeAccessControlEntry(AccessControlEntry ace)
throws AccessControlException, RepositoryException {}
public AccessControlEntry[] getAccessControlEntries() throws RepositoryException {
return new AccessControlEntry[0];
}
public boolean addAccessControlEntry(Principal principal, Privilege[] privileges)
throws AccessControlException, RepositoryException {
return false;
}
};
when(accessControlManager.privilegeFromName(Mockito.anyString())).thenReturn(allPrivilege);
AccessControlPolicy[] acp = new AccessControlPolicy[] {accessControlList};
when(accessControlManager.getPolicies(Mockito.anyString())).thenReturn(acp);
StringWriter stringWriter = new StringWriter();
when(response.getWriter()).thenReturn(new PrintWriter(stringWriter));
CreateContentPoolServlet cp = new CreateContentPoolServlet();
cp.eventAdmin = eventAdmin;
cp.clusterTrackingService = clusterTrackingService;
cp.sparseRepository = repository;
cp.doPost(request, response);
// Verify that we created all the nodes.
JSONObject jsonObject = new JSONObject(stringWriter.toString());
Assert.assertNotNull(jsonObject.getString("testfilename.pdf"));
Assert.assertNotNull(jsonObject.getString("index.html"));
Assert.assertEquals(2, jsonObject.length());
}