@Test public void skipAllEmailConfiguration() throws Exception { setup.set(PROPERTIES_SYSADMIN_APPROVES_ORGANIZATIONS, "false"); setup.set(PROPERTIES_ORGANIZATIONS_REQUIRE_CONFIRMATION, "false"); setup.set(PROPERTIES_SYSADMIN_APPROVES_ADMIN_USERS, "false"); setup.set(PROPERTIES_ADMIN_USERS_REQUIRE_CONFIRMATION, "false"); final String orgName = uniqueOrg(); final String userName = uniqueUsername(); final String email = uniqueEmail(); OrganizationOwnerInfo ooi = setup .getMgmtSvc() .createOwnerAndOrganization(orgName, userName, "Test User", email, "testpassword"); EntityManager em = setup.getEmf().getEntityManager(setup.getEmf().getManagementAppId()); User user = em.get(ooi.getOwner().getUuid(), User.class); assertTrue(user.activated()); assertFalse(user.disabled()); assertTrue(user.confirmed()); }
/** Tests to make sure a normal user must be activated by the admin after confirmation. */ @Test public void testAppUserConfirmationMail() throws Exception { final String orgName = uniqueOrg(); final String appName = uniqueApp(); final String userName = uniqueUsername(); final String email = uniqueEmail(); final String passwd = "testpassword"; OrganizationOwnerInfo orgOwner; orgOwner = createOwnerAndOrganization(orgName, appName, userName, email, passwd, false, false); assertNotNull(orgOwner); setup.getEntityIndex().refresh(app.getId()); ApplicationInfo app = setup.getMgmtSvc().createApplication(orgOwner.getOrganization().getUuid(), appName); setup.refreshIndex(app.getId()); assertNotNull(app); enableEmailConfirmation(app.getId()); enableAdminApproval(app.getId()); setup.getEntityIndex().refresh(app.getId()); final String appUserEmail = uniqueEmail(); final String appUserUsername = uniqueUsername(); User user = setupAppUser(app.getId(), appUserUsername, appUserEmail, true); OrganizationConfig orgConfig = setup.getMgmtSvc().getOrganizationConfigByUuid(orgOwner.getOrganization().getUuid()); String subject = "User Account Confirmation: " + appUserEmail; String confirmation_url = orgConfig.getFullUrl( WorkflowUrl.USER_CONFIRMATION_URL, orgName, appName, user.getUuid().toString()); // request confirmation setup.getMgmtSvc().startAppUserActivationFlow(app.getId(), user); List<Message> inbox = Mailbox.get(appUserEmail); assertFalse(inbox.isEmpty()); MockImapClient client = new MockImapClient("test.com", appUserUsername, "somepassword"); client.processMail(); // subject ok Message confirmation = inbox.get(0); assertEquals(subject, confirmation.getSubject()); // confirmation url ok String mailContent = (String) ((MimeMultipart) confirmation.getContent()).getBodyPart(1).getContent(); logger.info(mailContent); assertTrue(StringUtils.contains(mailContent.toLowerCase(), confirmation_url.toLowerCase())); // token ok String token = getTokenFromMessage(confirmation); logger.info(token); ActivationState activeState = setup.getMgmtSvc().handleConfirmationTokenForAppUser(app.getId(), user.getUuid(), token); assertEquals(ActivationState.CONFIRMED_AWAITING_ACTIVATION, activeState); }
/** * Tests that when a user is added to an app and activation on that app is required, the org admin * is emailed * * @throws Exception * <p>TODO, I'm not convinced this worked correctly. IT can't find users collection in the * orgs. Therefore, I think this is a legitimate bug that was just found from fixing the tests * to be unique admins orgs and emails */ @Test public void testAppUserActivationResetpwdMail() throws Exception { final String orgName = uniqueOrg(); final String appName = uniqueApp(); final String adminUserName = uniqueUsername(); final String adminEmail = uniqueEmail(); final String adminPasswd = "testpassword"; OrganizationOwnerInfo orgOwner = createOwnerAndOrganization( orgName, appName, adminUserName, adminEmail, adminPasswd, false, false); assertNotNull(orgOwner); ApplicationInfo app = setup.getMgmtSvc().createApplication(orgOwner.getOrganization().getUuid(), appName); this.app.refreshIndex(); // turn on app admin approval for app users enableAdminApproval(app.getId()); final String appUserUsername = uniqueUsername(); final String appUserEmail = uniqueEmail(); OrganizationConfig orgConfig = setup.getMgmtSvc().getOrganizationConfigByUuid(orgOwner.getOrganization().getUuid()); User appUser = setupAppUser(app.getId(), appUserUsername, appUserEmail, false); String subject = "Request For User Account Activation " + appUserEmail; String activation_url = orgConfig.getFullUrl( WorkflowUrl.USER_ACTIVATION_URL, orgName, appName, appUser.getUuid().toString()); setup.refreshIndex(app.getId()); // Activation setup.getMgmtSvc().startAppUserActivationFlow(app.getId(), appUser); List<Message> inbox = Mailbox.get(adminEmail); assertFalse(inbox.isEmpty()); MockImapClient client = new MockImapClient("usergrid.com", adminUserName, "somepassword"); client.processMail(); // subject ok Message activation = inbox.get(0); assertEquals(subject, activation.getSubject()); // activation url ok String mailContent = (String) ((MimeMultipart) activation.getContent()).getBodyPart(1).getContent(); logger.info(mailContent); assertTrue(StringUtils.contains(mailContent.toLowerCase(), activation_url.toLowerCase())); // token ok String token = getTokenFromMessage(activation); logger.info(token); ActivationState activeState = setup.getMgmtSvc().handleActivationTokenForAppUser(app.getId(), appUser.getUuid(), token); assertEquals(ActivationState.ACTIVATED, activeState); subject = "Password Reset"; String reset_url = orgConfig.getFullUrl( WorkflowUrl.USER_RESETPW_URL, orgName, appName, appUser.getUuid().toString()); // reset_pwd setup.getMgmtSvc().startAppUserPasswordResetFlow(app.getId(), appUser); inbox = Mailbox.get(appUserEmail); assertFalse(inbox.isEmpty()); client = new MockImapClient("test.com", appUserUsername, "somepassword"); client.processMail(); // subject ok Message reset = inbox.get(1); assertEquals(subject, reset.getSubject()); // resetpwd url ok mailContent = (String) ((MimeMultipart) reset.getContent()).getBodyPart(1).getContent(); logger.info(mailContent); assertTrue(StringUtils.contains(mailContent.toLowerCase(), reset_url.toLowerCase())); // token ok token = getTokenFromMessage(reset); logger.info(token); assertTrue( setup .getMgmtSvc() .checkPasswordResetTokenForAppUser(app.getId(), appUser.getUuid(), token)); // ensure revoke works setup.getMgmtSvc().revokeAccessTokenForAppUser(token); assertFalse( setup .getMgmtSvc() .checkPasswordResetTokenForAppUser(app.getId(), appUser.getUuid(), token)); }