2 * Copyright 2005 the original author or authors.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
16 package org.wamblee.security.authorization;
18 import junit.framework.TestCase;
19 import static org.wamblee.security.authorization.AuthorizationResult.GRANTED;
20 import static org.wamblee.security.authorization.AuthorizationResult.UNDECIDED;
21 import static org.wamblee.security.authorization.AuthorizationResult.UNSUPPORTED_RESOURCE;
23 import org.wamblee.usermgt.User;
27 * Tests for the {@link
28 * org.wamblee.security.authorization.UrlAuthorizationRule}.
30 * @author Erik Brakkee
32 public class UrlAuthorizationRuleTest extends TestCase {
34 * Constructs the rule with a result of UNDECIDED. Verifies that an
35 * IllegalArgumentException is thrown.
37 public void testConstructWithUndecidedResult() {
39 new TestAuthorizationRule(UNDECIDED, "users", "/path",
42 } catch (IllegalArgumentException e) {
48 * Constructs the rule with a result of UNSUPPORTED_RESOURCE.
49 * Verifies that an IllegalArgumentException is thrown.
51 public void testConstructWithUnsupportedResult() {
53 new TestAuthorizationRule(UNSUPPORTED_RESOURCE, "users", "/path",
56 } catch (IllegalArgumentException e) {
62 * Constructs the authorization rule and applies it to an
63 * unsupported object type. Verifies that the result is
64 * UNSUPPORTED_RESOURCE.
66 public void testUnsupportedObject() {
67 AuthorizationRule rule = new TestAuthorizationRule(GRANTED, "users",
68 "/path", ReadOperation.class);
69 assertEquals(UNSUPPORTED_RESOURCE,
70 rule.isAllowed("hello", new ReadOperation(),
71 new TestUserAccessor().getCurrentUser()));
77 public void testMatchingScenarios() {
78 AuthorizationRule rule = new TestAuthorizationRule(GRANTED, "users",
79 "/path/", ReadOperation.class);
80 User user = new TestUserAccessor().getCurrentUser();
84 rule.isAllowed(new TestResource("/path/a"), new ReadOperation(),
87 rule.isAllowed(new TestResource("/path/"), new ReadOperation(), user));
89 // path does not match.
90 assertEquals(UNDECIDED,
91 rule.isAllowed(new TestResource("/path"), new ReadOperation(), user));
93 // operation does not match.
94 assertEquals(UNDECIDED,
95 rule.isAllowed(new TestResource("/path/"), new WriteOperation(),
98 // group does not match.
99 AuthorizationRule rule2 = new TestAuthorizationRule(GRANTED, "users2",
100 "/path/", ReadOperation.class);
101 assertEquals(UNDECIDED,
102 rule2.isAllowed(new TestResource("/path/a"), new ReadOperation(),