Java UserContext示例

示例#1

文件： RequestWrapper.java 项目： nurdiansyah/picketbox

  /*
   * (non-Javadoc)
   *
   * @see javax.servlet.http.HttpServletRequestWrapper#getUserPrincipal()
   */
  @Override
  public Principal getUserPrincipal() {
    UserContext userContext = getUserContext();

    if (userContext == null) {
      return null;
    }

    return userContext.getPrincipal();
  }

示例#2

文件： HTTPBasicAuthenticationTestCase.java 项目： picketbox/picketbox5-deprecate

  @Test
  public void testHttpBasic() throws Exception {
    TestServletRequest req =
        new TestServletRequest(
            new InputStream() {
              @Override
              public int read() throws IOException {
                return 0;
              }
            });

    TestServletResponse resp =
        new TestServletResponse(
            new OutputStream() {

              @Override
              public void write(int b) throws IOException {
                System.out.println(b);
              }
            });

    // Get Positive Authentication
    req.addHeader(PicketBoxConstants.HTTP_AUTHORIZATION_HEADER, "Basic " + getPositive());
    req.setContextPath("/test");
    req.setRequestURI(req.getContextPath() + "/index.html");

    UserContext authenticatedUser =
        this.picketBoxManager.authenticate(
            new HTTPUserContext(req, resp, new HTTPBasicCredential(req, resp)));

    assertNotNull(authenticatedUser);
    Assert.assertTrue(authenticatedUser.isAuthenticated());
    Assert.assertNotNull(authenticatedUser.getAuthenticationResult().getStatus());
    Assert.assertEquals(
        authenticatedUser.getAuthenticationResult().getStatus(), AuthenticationStatus.SUCCESS);

    req.clearHeaders();
    req.getSession().setAttribute(PicketBoxConstants.SUBJECT, null);
    // Get Negative Authentication
    req.addHeader(PicketBoxConstants.HTTP_AUTHORIZATION_HEADER, "Basic " + getNegative());

    authenticatedUser =
        this.picketBoxManager.authenticate(
            new HTTPUserContext(req, resp, new HTTPBasicCredential(req, resp)));

    assertNotNull(authenticatedUser);
    Assert.assertFalse(authenticatedUser.isAuthenticated());
    Assert.assertNotNull(authenticatedUser.getAuthenticationResult().getStatus());
    Assert.assertEquals(
        authenticatedUser.getAuthenticationResult().getStatus(),
        AuthenticationStatus.INVALID_CREDENTIALS);

    String basicHeader = resp.getHeader(PicketBoxConstants.HTTP_WWW_AUTHENTICATE);
    assertTrue(basicHeader.startsWith("basic realm="));
  }

示例#3

文件： SimpleAuthorizationManager.java 项目： nurdiansyah/picketbox

  @Override
  public boolean authorize(Resource resource, UserContext subject) throws AuthorizationException {
    if (stopped) {
      throw PicketBoxMessages.MESSAGES.instanceAlreadyStopped();
    }
    if (!started) {
      throw PicketBoxMessages.MESSAGES.instanceNotStarted();
    }

    for (String role : this.roleNames) {
      if (subject.hasRole(role)) {
        return true;
      }
    }

    return false;
  }

示例#4

文件： RequestWrapper.java 项目： nurdiansyah/picketbox

  /* (non-Javadoc)
   * @see javax.servlet.http.HttpServletRequestWrapper#isUserInRole(java.lang.String)
   */
  @Override
  public boolean isUserInRole(String role) {
    UserContext userContext = getUserContext();

    return userContext != null && userContext.hasRole(role);
  }

示例#5

文件： UserContextTestCase.java 项目： nurdiansyah/picketbox

 @Test
 public void testNonExistentRole() throws Exception {
   assertFalse(userContext.getRoleNames().contains("guest"));
 }

示例#6

文件： UserContextTestCase.java 项目： nurdiansyah/picketbox

 @Test
 public void testGetRoleNames() throws Exception {
   assertTrue(userContext.getRoleNames().containsAll(roleNames));
 }

示例#7

文件： UserContextTestCase.java 项目： nurdiansyah/picketbox

 @Before
 public void setUp() throws Exception {
   userContext.setRoles(buildRoles(roleNames));
 }