@Test
public void canOverrideAuthorities() throws Exception {
UaaUser joe = new UaaUser("joe", "password", "*****@*****.**", "Joe", "User");
joe = joe.authorities(AuthorityUtils.commaSeparatedStringToAuthorityList("openid,read"));
ScimUserBootstrap bootstrap = new ScimUserBootstrap(db, gdb, mdb, Arrays.asList(joe));
bootstrap.afterPropertiesSet();
joe = joe.authorities(AuthorityUtils.commaSeparatedStringToAuthorityList("openid,read,write"));
bootstrap = new ScimUserBootstrap(db, gdb, mdb, Arrays.asList(joe));
bootstrap.setOverride(true);
bootstrap.afterPropertiesSet();
@SuppressWarnings("unchecked")
Collection<Map<String, Object>> users =
(Collection<Map<String, Object>>)
userEndpoints.findUsers("id", "id pr", "id", "ascending", 1, 100).getResources();
assertEquals(1, users.size());
String id = (String) users.iterator().next().get("id");
ScimUser user = userEndpoints.getUser(id, new MockHttpServletResponse());
// uaa.user is always added
assertEquals(4, user.getGroups().size());
}
@Test(expected = InvalidTokenException.class)
public void revokingScopesFromUser_invalidatesToken() throws Exception {
user = user.authorities(UaaAuthority.NONE_AUTHORITIES);
mockUserDatabase(userId, user);
endpoint.checkToken(accessToken.getValue());
}
