[jboss-cvs] JBossAS SVN: r89020 - in trunk/testsuite: src/main/org/jboss/test/web/test/ssl and 1 other directories.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Mon May 18 21:53:09 EDT 2009 

Author: anil.saldhana at jboss.com
Date: 2009-05-18 21:53:09 -0400 (Mon, 18 May 2009)
New Revision: 89020

Added:
   trunk/testsuite/src/main/org/jboss/test/web/test/ssl/ClientCertJaspiWebUnitTestCase.java
   trunk/testsuite/src/resources/security/jaspi/jaspi-webssl-jboss-beans.xml
Modified:
   trunk/testsuite/imports/sections/web.xml
Log:
JBAS-6066: JASPI server auth module for CLIENT-CERT

Modified: trunk/testsuite/imports/sections/web.xml
===================================================================
--- trunk/testsuite/imports/sections/web.xml	2009-05-19 01:32:01 UTC (rev 89019)
+++ trunk/testsuite/imports/sections/web.xml	2009-05-19 01:53:09 UTC (rev 89020)
@@ -347,6 +347,21 @@
       	 <zipfileset dir="${build.resources}/web/jaspi-form-auth" includes="jboss-service.xml"/>
       </zip>
 
+      <!-- war to test CLIENT-CERT auth using JASPI-->
+      <war warfile="${build.lib}/clientcert-jaspi.war"
+         webxml="${build.resources}/web/WEB-INF/clientcert-auth-web.xml">
+         <webinf dir="${build.resources}/security/jaspi/jaspi-web-form.war/WEB-INF">
+            <include name="jboss-web.xml"/>
+            <include name="context.xml"/>
+         </webinf>
+         <classes dir="${build.classes}">
+            <include name="org/jboss/test/web/servlets/ssl/*"/>
+         </classes>
+         <fileset dir="${build.resources}/web/html/ssl">
+            <include name="**/*.html"/>
+         </fileset>
+      </war>
+
       <!-- war to test SSL and CLIENT-CERT auth -->
       <war warfile="${build.lib}/clientcert-auth.war"
          webxml="${build.resources}/web/WEB-INF/clientcert-auth-web.xml">

Added: trunk/testsuite/src/main/org/jboss/test/web/test/ssl/ClientCertJaspiWebUnitTestCase.java
===================================================================
--- trunk/testsuite/src/main/org/jboss/test/web/test/ssl/ClientCertJaspiWebUnitTestCase.java	                        (rev 0)
+++ trunk/testsuite/src/main/org/jboss/test/web/test/ssl/ClientCertJaspiWebUnitTestCase.java	2009-05-19 01:53:09 UTC (rev 89020)
@@ -0,0 +1,114 @@
+/*
+ * JBoss, Home of Professional Open Source.
+ * Copyright 2008, Red Hat Middleware LLC, and individual contributors
+ * as indicated by the @author tags. See the copyright.txt file in the
+ * distribution for a full listing of individual contributors. 
+ *
+ * This is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this software; if not, write to the Free
+ * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+ * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+ */
+package org.jboss.test.web.test.ssl;
+
+import java.net.HttpURLConnection;
+
+import junit.extensions.TestSetup;
+import junit.framework.Test;
+import junit.framework.TestSuite;
+
+import org.apache.commons.httpclient.HttpClient;
+import org.apache.commons.httpclient.methods.GetMethod;
+import org.jboss.test.JBossTestCase;
+import org.jboss.test.JBossTestSetup;
+
+/**
+ * Unit Test the CLIENT-CERT JASPI integration
+ * @author Anil.Saldhana at redhat.com
+ * @since May 18, 2009
+ */
+public class ClientCertJaspiWebUnitTestCase extends JBossTestCase
+{ 
+   private String baseHttpsNoAuth; 
+
+   private static String login_config = 
+      "security/jaspi/jaspi-webssl-jboss-beans.xml";
+   
+   
+   public ClientCertJaspiWebUnitTestCase(String name)
+   {
+      super(name); 
+   }
+   
+   @Override
+   protected void setUp() throws Exception
+   {
+      super.setUp();
+      baseHttpsNoAuth = "https://" + getServerHost() + ":" + Integer.getInteger("secureweb.port", 8443) + "/"; 
+   }
+   
+   /** Test CLIENT-CERT
+    * 
+    * @throws Exception
+    */ 
+   public void testJASPIClientCert() throws Exception
+   {
+      log.info("+++ testJASPIClientCert");
+      doHttps(baseHttpsNoAuth);
+   }
+   
+   public void doHttps(String httpsNoAuth) throws Exception
+   {
+      log.info("+++ testJASPIClientCert, httpsNoAuth="+httpsNoAuth);
+      // Start by accessing the secured index.html of war1
+      HttpClient httpConn = new HttpClient();
+      String url = httpsNoAuth+"clientcert-jaspi/unrestricted/SecureServlet";
+      log.info("Accessing: "+url);
+      GetMethod get = new GetMethod(url);
+      int responseCode = httpConn.executeMethod(get);
+      String status = get.getStatusText();
+      log.debug(status);
+      assertTrue("Get OK("+responseCode+")", responseCode == HttpURLConnection.HTTP_OK);
+   } 
+    
+   /**
+    * Setup the test suite.
+    */
+   public static Test suite() throws Exception
+   {
+      TestSuite suite = new TestSuite();
+      suite.addTest(new TestSuite(ClientCertJaspiWebUnitTestCase.class));
+
+      // Create an initializer for the test suite
+      TestSetup wrapper = new JBossTestSetup(suite)
+      {
+         @Override
+         protected void setUp() throws Exception
+         {
+            super.setUp(); 
+            redeploy("clientcert-jaspi.war");
+            redeploy(getResourceURL(login_config));
+            flushAuthCache();
+         }
+
+         @Override
+         protected void tearDown() throws Exception
+         {
+            undeploy(getResourceURL(login_config));
+            undeploy("clientcert-jaspi.war");
+            super.tearDown();
+         }
+      };
+      return wrapper;
+   } 
+}
\ No newline at end of file

Added: trunk/testsuite/src/resources/security/jaspi/jaspi-webssl-jboss-beans.xml
===================================================================
--- trunk/testsuite/src/resources/security/jaspi/jaspi-webssl-jboss-beans.xml	                        (rev 0)
+++ trunk/testsuite/src/resources/security/jaspi/jaspi-webssl-jboss-beans.xml	2009-05-19 01:53:09 UTC (rev 89020)
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+NOTE: the securityDomain attribute in the BaseCertLoginModule refers to a JaasSecurityDomain 
+mbean service in the tomcat-ssl custom configuration deploy directory.
+-->
+
+<deployment xmlns="urn:jboss:bean-deployer:2.0">
+
+   <application-policy xmlns="urn:jboss:security-beans:1.0" name="jaspi-test">
+       <authentication-jaspi>
+         <login-module-stack name="lm-stack">
+            <login-module code="org.jboss.security.auth.spi.BaseCertLoginModule"
+                          flag = "required">
+               <module-option name="password-stacking">useFirstPass</module-option>
+               <module-option name="securityDomain">java:/jaas/jbosstest-ssl</module-option>
+            </login-module>
+            <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+                          flag = "required">
+               <module-option name="password-stacking">useFirstPass</module-option>
+               <module-option name="usersProperties">ssl-users.properties</module-option>
+               <module-option name="rolesProperties">ssl-roles.properties</module-option>
+               <module-option name="roleGroupSeperator">:</module-option>
+            </login-module>
+         </login-module-stack>
+         <auth-module code="org.jboss.web.tomcat.security.jaspi.modules.HTTPClientCertServerAuthModule" login-module-stack-ref="lm-stack"/>
+       </authentication-jaspi>
+   </application-policy>
+
+</deployment>

More information about the jboss-cvs-commits mailing list