org.apache.qpid.server.security.auth.database.Base64MD5PasswordFilePrincipalDatabaseTest.java Source code

Java tutorial

Introduction

Here is the source code for org.apache.qpid.server.security.auth.database.Base64MD5PasswordFilePrincipalDatabaseTest.java

Source

/*
 *
 * Licensed to the Apache Software Foundation (ASF) under one
 * or more contributor license agreements.  See the NOTICE file
 * distributed with this work for additional information
 * regarding copyright ownership.  The ASF licenses this file
 * to you under the Apache License, Version 2.0 (the
 * "License"); you may not use this file except in compliance
 * with the License.  You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied.  See the License for the
 * specific language governing permissions and limitations
 * under the License.
 *
 */
package org.apache.qpid.server.security.auth.database;

import junit.framework.TestCase;
import org.apache.commons.codec.binary.Base64;

import org.apache.qpid.server.security.auth.UsernamePrincipal;

import javax.security.auth.callback.PasswordCallback;
import javax.security.auth.login.AccountNotFoundException;
import java.io.BufferedReader;
import java.io.BufferedWriter;
import java.io.File;
import java.io.FileNotFoundException;
import java.io.FileReader;
import java.io.FileWriter;
import java.io.IOException;
import java.io.UnsupportedEncodingException;
import java.security.Principal;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;
import java.util.regex.Pattern;

public class Base64MD5PasswordFilePrincipalDatabaseTest extends TestCase {

    private static final String TEST_COMMENT = "# Test Comment";

    private static final String USERNAME = "testUser";
    private static final String PASSWORD = "guest";
    private static final String PASSWORD_B64MD5HASHED = "CE4DQ6BIb/BVMN9scFyLtA==";
    private static char[] PASSWORD_MD5_CHARS;
    private static final String PRINCIPAL_USERNAME = "testUserPrincipal";
    private static final Principal PRINCIPAL = new UsernamePrincipal(PRINCIPAL_USERNAME);
    private Base64MD5PasswordFilePrincipalDatabase _database;
    private File _pwdFile;
    private List<File> _testPwdFiles = new ArrayList<File>();

    static {
        try {
            Base64 b64 = new Base64();
            byte[] md5passBytes = PASSWORD_B64MD5HASHED
                    .getBytes(Base64MD5PasswordFilePrincipalDatabase.DEFAULT_ENCODING);
            byte[] decoded = b64.decode(md5passBytes);

            PASSWORD_MD5_CHARS = new char[decoded.length];

            int index = 0;
            for (byte c : decoded) {
                PASSWORD_MD5_CHARS[index++] = (char) c;
            }
        } catch (UnsupportedEncodingException e) {
            fail("Unable to perform B64 decode to get the md5 char[] password");
        }
    }

    public void setUp() throws Exception {
        _database = new Base64MD5PasswordFilePrincipalDatabase();
        _pwdFile = File.createTempFile(this.getClass().getName(), "pwd");
        _pwdFile.deleteOnExit();
        _database.setPasswordFile(_pwdFile.getAbsolutePath());
        _testPwdFiles.clear();
    }

    public void tearDown() throws Exception {
        //clean up the created default password file and any backup
        File oldPwdFile = new File(_pwdFile.getAbsolutePath() + ".old");
        if (oldPwdFile.exists()) {
            oldPwdFile.delete();
        }

        _pwdFile.delete();

        //clean up any additional files and their backups
        for (File f : _testPwdFiles) {
            oldPwdFile = new File(f.getAbsolutePath() + ".old");
            if (oldPwdFile.exists()) {
                oldPwdFile.delete();
            }

            f.delete();
        }
    }

    private File createPasswordFile(int commentLines, int users) {
        try {
            File testFile = File.createTempFile("Base64MD5PDPDTest", "tmp");
            testFile.deleteOnExit();

            BufferedWriter writer = new BufferedWriter(new FileWriter(testFile));

            for (int i = 0; i < commentLines; i++) {
                writer.write(TEST_COMMENT);
                writer.newLine();
            }

            for (int i = 0; i < users; i++) {
                writer.write(USERNAME + i + ":Password");
                writer.newLine();
            }

            writer.flush();
            writer.close();

            _testPwdFiles.add(testFile);

            return testFile;

        } catch (IOException e) {
            fail("Unable to create test password file." + e.getMessage());
        }

        return null;
    }

    private void loadPasswordFile(File file) {
        try {
            _database.setPasswordFile(file.toString());
        } catch (IOException e) {
            fail("Password File was not created." + e.getMessage());
        }
    }

    /** **** Test Methods ************** */

    public void testCreatePrincipal() {
        File testFile = createPasswordFile(1, 0);

        loadPasswordFile(testFile);

        Principal principal = new Principal() {
            public String getName() {
                return USERNAME;
            }
        };

        assertTrue("New user not created.", _database.createPrincipal(principal, PASSWORD.toCharArray()));

        PasswordCallback callback = new PasswordCallback("prompt", false);
        try {
            _database.setPassword(principal, callback);
        } catch (AccountNotFoundException e) {
            fail("user account did not exist");
        }
        assertTrue("Password returned was incorrect.", Arrays.equals(PASSWORD_MD5_CHARS, callback.getPassword()));

        loadPasswordFile(testFile);

        try {
            _database.setPassword(principal, callback);
        } catch (AccountNotFoundException e) {
            fail("user account did not exist");
        }
        assertTrue("Password returned was incorrect.", Arrays.equals(PASSWORD_MD5_CHARS, callback.getPassword()));

        assertNotNull("Created User was not saved", _database.getUser(USERNAME));

        assertFalse("Duplicate user created.", _database.createPrincipal(principal, PASSWORD.toCharArray()));
    }

    public void testCreatePrincipalIsSavedToFile() {

        File testFile = createPasswordFile(1, 0);

        loadPasswordFile(testFile);

        final String CREATED_PASSWORD = "guest";
        final String CREATED_B64MD5HASHED_PASSWORD = "CE4DQ6BIb/BVMN9scFyLtA==";
        final String CREATED_USERNAME = "createdUser";

        Principal principal = new Principal() {
            public String getName() {
                return CREATED_USERNAME;
            }
        };

        _database.createPrincipal(principal, CREATED_PASSWORD.toCharArray());

        try {
            BufferedReader reader = new BufferedReader(new FileReader(testFile));

            assertTrue("File has no content", reader.ready());

            assertEquals("Comment line has been corrupted.", TEST_COMMENT, reader.readLine());

            assertTrue("File is missing user data.", reader.ready());

            String userLine = reader.readLine();

            String[] result = Pattern.compile(":").split(userLine);

            assertEquals("User line not complete '" + userLine + "'", 2, result.length);

            assertEquals("Username not correct,", CREATED_USERNAME, result[0]);
            assertEquals("Password not correct,", CREATED_B64MD5HASHED_PASSWORD, result[1]);

            assertFalse("File has more content", reader.ready());

        } catch (IOException e) {
            fail("Unable to valdate file contents due to:" + e.getMessage());
        }
    }

    public void testDeletePrincipal() {
        File testFile = createPasswordFile(1, 1);

        loadPasswordFile(testFile);

        Principal user = _database.getUser(USERNAME + "0");
        assertNotNull("Generated user not present.", user);

        try {
            _database.deletePrincipal(user);
        } catch (AccountNotFoundException e) {
            fail("User should be present" + e.getMessage());
        }

        try {
            _database.deletePrincipal(user);
            fail("User should not be present");
        } catch (AccountNotFoundException e) {
            //pass
        }

        loadPasswordFile(testFile);

        try {
            _database.deletePrincipal(user);
            fail("User should not be present");
        } catch (AccountNotFoundException e) {
            //pass
        }

        assertNull("Deleted user still present.", _database.getUser(USERNAME + "0"));
    }

    public void testGetUsers() {
        int USER_COUNT = 10;
        File testFile = createPasswordFile(1, USER_COUNT);

        loadPasswordFile(testFile);

        Principal user = _database.getUser("MISSING_USERNAME");
        assertNull("Missing user present.", user);

        List<Principal> users = _database.getUsers();

        assertNotNull("Users list is null.", users);

        assertEquals(USER_COUNT, users.size());

        boolean[] verify = new boolean[USER_COUNT];
        for (int i = 0; i < USER_COUNT; i++) {
            Principal principal = users.get(i);

            assertNotNull("Generated user not present.", principal);

            String name = principal.getName();

            int id = Integer.parseInt(name.substring(USERNAME.length()));

            assertFalse("Duplicated username retrieve", verify[id]);
            verify[id] = true;
        }

        for (int i = 0; i < USER_COUNT; i++) {
            assertTrue("User " + i + " missing", verify[i]);
        }
    }

    public void testUpdatePasswordIsSavedToFile() {

        File testFile = createPasswordFile(1, 1);

        loadPasswordFile(testFile);

        Principal testUser = _database.getUser(USERNAME + "0");

        assertNotNull(testUser);

        String NEW_PASSWORD = "guest";
        String NEW_PASSWORD_HASH = "CE4DQ6BIb/BVMN9scFyLtA==";
        try {
            _database.updatePassword(testUser, NEW_PASSWORD.toCharArray());
        } catch (AccountNotFoundException e) {
            fail(e.toString());
        }

        try {
            BufferedReader reader = new BufferedReader(new FileReader(testFile));

            assertTrue("File has no content", reader.ready());

            assertEquals("Comment line has been corrupted.", TEST_COMMENT, reader.readLine());

            assertTrue("File is missing user data.", reader.ready());

            String userLine = reader.readLine();

            String[] result = Pattern.compile(":").split(userLine);

            assertEquals("User line not complete '" + userLine + "'", 2, result.length);

            assertEquals("Username not correct,", USERNAME + "0", result[0]);
            assertEquals("New Password not correct,", NEW_PASSWORD_HASH, result[1]);

            assertFalse("File has more content", reader.ready());

        } catch (IOException e) {
            fail("Unable to valdate file contents due to:" + e.getMessage());
        }
    }

    public void testSetPasswordFileWithMissingFile() {
        try {
            _database.setPasswordFile("DoesntExist");
        } catch (FileNotFoundException fnfe) {
            assertTrue(fnfe.getMessage(), fnfe.getMessage().startsWith("Cannot find password file"));
        } catch (IOException e) {
            fail("Password File was not created." + e.getMessage());
        }

    }

    public void testSetPasswordFileWithReadOnlyFile() {

        File testFile = createPasswordFile(0, 0);

        testFile.setReadOnly();

        try {
            _database.setPasswordFile(testFile.toString());
        } catch (FileNotFoundException fnfe) {
            assertTrue(fnfe.getMessage().startsWith("Cannot read password file "));
        } catch (IOException e) {
            fail("Password File was not created." + e.getMessage());
        }
    }

    public void testCreateUserPrincipal() throws IOException {
        _database.createPrincipal(PRINCIPAL, PASSWORD.toCharArray());
        Principal newPrincipal = _database.getUser(PRINCIPAL_USERNAME);
        assertNotNull(newPrincipal);
        assertEquals(PRINCIPAL.getName(), newPrincipal.getName());
    }

    public void testVerifyPassword() throws IOException, AccountNotFoundException {
        testCreateUserPrincipal();
        //assertFalse(_pwdDB.verifyPassword(_username, null));
        assertFalse(_database.verifyPassword(PRINCIPAL_USERNAME, new char[] {}));
        assertFalse(_database.verifyPassword(PRINCIPAL_USERNAME, (PASSWORD + "z").toCharArray()));
        assertTrue(_database.verifyPassword(PRINCIPAL_USERNAME, PASSWORD.toCharArray()));

        try {
            _database.verifyPassword("made.up.username", PASSWORD.toCharArray());
            fail("Should not have been able to verify this non-existant users password.");
        } catch (AccountNotFoundException e) {
            // pass
        }
    }

    public void testUpdatePassword() throws IOException, AccountNotFoundException {
        testCreateUserPrincipal();
        char[] newPwd = "newpassword".toCharArray();
        _database.updatePassword(PRINCIPAL, newPwd);
        assertFalse(_database.verifyPassword(PRINCIPAL_USERNAME, PASSWORD.toCharArray()));
        assertTrue(_database.verifyPassword(PRINCIPAL_USERNAME, newPwd));
    }

}