2 * Copyright 2005 the original author or authors.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 package org.wamblee.security.authorization;
19 import static org.wamblee.security.authorization.AuthorizationResult.GRANTED;
20 import static org.wamblee.security.authorization.AuthorizationResult.UNDECIDED;
21 import static org.wamblee.security.authorization.AuthorizationResult.UNSUPPORTED_RESOURCE;
22 import junit.framework.TestCase;
24 import org.wamblee.usermgt.User;
28 * Tests for the {@link org.wamblee.security.authorization.UrlAuthorizationRule}.
30 public class UrlAuthorizationRuleTest extends TestCase {
33 * Constructs the rule with a result of UNDECIDED. Verifies that an IllegalArgumentException
37 public void testConstructWithUndecidedResult() {
39 new TestAuthorizationRule(UNDECIDED, "users", "/path", ReadOperation.class);
41 } catch (IllegalArgumentException e) {
47 * Constructs the rule with a result of UNSUPPORTED_RESOURCE. Verifies that an IllegalArgumentException
51 public void testConstructWithUnsupportedResult() {
53 new TestAuthorizationRule(UNSUPPORTED_RESOURCE, "users", "/path", ReadOperation.class);
55 } catch (IllegalArgumentException e) {
61 * Constructs the authorization rule and applies it to an unsupported object type.
62 * Verifies that the result is UNSUPPORTED_RESOURCE.
65 public void testUnsupportedObject() {
66 AuthorizationRule rule = new TestAuthorizationRule(GRANTED, "users", "/path", ReadOperation.class);
67 assertEquals(UNSUPPORTED_RESOURCE, rule.isAllowed("hello", new ReadOperation(), new TestUserAccessor().getCurrentUser()));
70 public void testMatchingScenarios() {
71 AuthorizationRule rule = new TestAuthorizationRule(GRANTED, "users", "/path/", ReadOperation.class);
72 User user = new TestUserAccessor().getCurrentUser();
75 assertEquals(GRANTED, rule.isAllowed(new TestResource("/path/a"), new ReadOperation(), user));
76 assertEquals(GRANTED, rule.isAllowed(new TestResource("/path/"), new ReadOperation(), user));
78 // path does not match.
79 assertEquals(UNDECIDED, rule.isAllowed(new TestResource("/path"), new ReadOperation(), user));
81 // operation does not match.
82 assertEquals(UNDECIDED, rule.isAllowed(new TestResource("/path/"), new WriteOperation(), user));
84 // group does not match.
85 AuthorizationRule rule2 = new TestAuthorizationRule(GRANTED, "users2", "/path/", ReadOperation.class);
86 assertEquals(UNDECIDED, rule2.isAllowed(new TestResource("/path/a"), new ReadOperation(), user));