mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-10-15 15:02:20 +00:00
Merged V3.0 to HEAD
11905: Merged V2.2 to V3.0 11782: Fix security in RunAs using public APIs (ETWOTWO-816). 11907: ETHREEOH-846 11908: More work on Shutdown Backstop 11909: Speculative fix for EHTREEOH-782. 11912: ETHREEOH-746 Unable to view contents of previous versions of wiki page 11915: ETHREEOH-746 Unable to view contents of previous versions of wiki page 11916: Upgrade from YUI 2.5.2 to YUI 2.6.0 - Second stage (Paginators, DocLib Tree, Resizer widget) 11917: ETHREEOH-874 and ETHREEOH-875 11918: ETHREEOH-860 git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@12487 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
This commit is contained in:
@@ -48,6 +48,7 @@ import net.sf.acegisecurity.providers.dao.SaltSource;
|
||||
|
||||
import org.alfresco.model.ContentModel;
|
||||
import org.alfresco.repo.cache.SimpleCache;
|
||||
import org.alfresco.repo.security.authentication.AuthenticationUtil.RunAsWork;
|
||||
import org.alfresco.repo.security.authentication.InMemoryTicketComponentImpl.ExpiryMode;
|
||||
import org.alfresco.repo.security.authentication.InMemoryTicketComponentImpl.Ticket;
|
||||
import org.alfresco.repo.tenant.TenantService;
|
||||
@@ -58,6 +59,7 @@ import org.alfresco.service.cmr.repository.NodeService;
|
||||
import org.alfresco.service.cmr.repository.StoreRef;
|
||||
import org.alfresco.service.cmr.search.SearchService;
|
||||
import org.alfresco.service.cmr.security.AuthenticationService;
|
||||
import org.alfresco.service.cmr.security.PersonService;
|
||||
import org.alfresco.service.namespace.DynamicNamespacePrefixResolver;
|
||||
import org.alfresco.service.namespace.NamespacePrefixResolver;
|
||||
import org.alfresco.service.namespace.NamespaceService;
|
||||
@@ -109,6 +111,12 @@ public class AuthenticationTest extends TestCase
|
||||
|
||||
private AuthenticationComponent authenticationComponentImpl;
|
||||
|
||||
private TransactionService transactionService;
|
||||
|
||||
private PersonService pubPersonService;
|
||||
|
||||
private PersonService personService;
|
||||
|
||||
public AuthenticationTest()
|
||||
{
|
||||
super();
|
||||
@@ -132,6 +140,8 @@ public class AuthenticationTest extends TestCase
|
||||
pubAuthenticationService = (AuthenticationService) ctx.getBean("AuthenticationService");
|
||||
authenticationComponent = (AuthenticationComponent) ctx.getBean("authenticationComponent");
|
||||
authenticationComponentImpl = (AuthenticationComponent) ctx.getBean("authenticationComponent");
|
||||
pubPersonService = (PersonService) ctx.getBean("PersonService");
|
||||
personService = (PersonService) ctx.getBean("personService");
|
||||
// permissionServiceSPI = (PermissionServiceSPI)
|
||||
// ctx.getBean("permissionService");
|
||||
ticketsCache = (SimpleCache<String, Ticket>) ctx.getBean("ticketsCache");
|
||||
@@ -140,7 +150,7 @@ public class AuthenticationTest extends TestCase
|
||||
authenticationManager = (AuthenticationManager) ctx.getBean("authenticationManager");
|
||||
saltSource = (SaltSource) ctx.getBean("saltSource");
|
||||
|
||||
TransactionService transactionService = (TransactionService) ctx.getBean(ServiceRegistry.TRANSACTION_SERVICE.getLocalName());
|
||||
transactionService = (TransactionService) ctx.getBean(ServiceRegistry.TRANSACTION_SERVICE.getLocalName());
|
||||
userTransaction = transactionService.getUserTransaction();
|
||||
userTransaction.begin();
|
||||
|
||||
@@ -176,6 +186,12 @@ public class AuthenticationTest extends TestCase
|
||||
{
|
||||
dao.deleteUser("andy");
|
||||
}
|
||||
|
||||
if(personService.personExists("andy"))
|
||||
{
|
||||
personService.deletePerson("andy");
|
||||
}
|
||||
|
||||
}
|
||||
|
||||
@Override
|
||||
@@ -193,6 +209,76 @@ public class AuthenticationTest extends TestCase
|
||||
return properties;
|
||||
}
|
||||
|
||||
public void testSystemTicket() throws Exception
|
||||
{
|
||||
assertNull(AuthenticationUtil.getCurrentRealAuthentication());
|
||||
assertNull(AuthenticationUtil.getCurrentEffectiveAuthentication());
|
||||
assertNull(AuthenticationUtil.getCurrentStoredAuthentication());
|
||||
|
||||
|
||||
authenticationComponent.setSystemUserAsCurrentUser();
|
||||
pubAuthenticationService.createAuthentication("andy", "andy".toCharArray());
|
||||
|
||||
pubAuthenticationService.clearCurrentSecurityContext();
|
||||
|
||||
assertNull(AuthenticationUtil.getCurrentRealAuthentication());
|
||||
assertNull(AuthenticationUtil.getCurrentEffectiveAuthentication());
|
||||
assertNull(AuthenticationUtil.getCurrentStoredAuthentication());
|
||||
|
||||
// Authenticate
|
||||
pubAuthenticationService.authenticate("andy", "andy".toCharArray());
|
||||
|
||||
// Get current user name
|
||||
String userName = pubAuthenticationService.getCurrentUserName();
|
||||
assertEquals("andy", userName);
|
||||
|
||||
// Get ticket
|
||||
String ticket = pubAuthenticationService.getCurrentTicket();
|
||||
assertEquals("andy", ticketComponent.getAuthorityForTicket(ticket));
|
||||
|
||||
// Get logged in user ...
|
||||
// Get userName
|
||||
userName = pubAuthenticationService.getCurrentUserName();
|
||||
assertEquals("andy", userName);
|
||||
// get Person
|
||||
assertFalse(pubPersonService.personExists(userName));
|
||||
|
||||
AuthenticationUtil.runAs(new RunAsWork() {
|
||||
|
||||
public Object doWork() throws Exception
|
||||
{
|
||||
// TODO Auto-generated method stub
|
||||
assertEquals("andy", ticketComponent.getAuthorityForTicket(pubAuthenticationService.getCurrentTicket()));
|
||||
return null;
|
||||
}}, AuthenticationUtil.getSystemUserName());
|
||||
|
||||
pubPersonService.getPerson(userName);
|
||||
assertTrue(pubPersonService.personExists(userName));
|
||||
// re-getTicket
|
||||
String newticket = pubAuthenticationService.getCurrentTicket();
|
||||
assertEquals(ticket, newticket);
|
||||
assertEquals("andy", ticketComponent.getAuthorityForTicket(newticket));
|
||||
|
||||
|
||||
userName = pubAuthenticationService.getCurrentUserName();
|
||||
assertEquals("andy", userName);
|
||||
|
||||
// new TX
|
||||
|
||||
userTransaction.commit();
|
||||
userTransaction = transactionService.getUserTransaction();
|
||||
userTransaction.begin();
|
||||
|
||||
pubAuthenticationService.validate(ticket);
|
||||
userName = pubAuthenticationService.getCurrentUserName();
|
||||
assertEquals("andy", userName);
|
||||
|
||||
pubAuthenticationService.validate(newticket);
|
||||
userName = pubAuthenticationService.getCurrentUserName();
|
||||
assertEquals("andy", userName);
|
||||
|
||||
}
|
||||
|
||||
public void xtestScalability()
|
||||
{
|
||||
long create = 0;
|
||||
|
Reference in New Issue
Block a user