保誠-保戶業務員媒合平台
究查 | 歷程 | 原始
wayne
2021-11-08 5baaed06e6ef8f2bc29bf36bec6ed86a2f44e1cd 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101

package com.pollex.pam.security;


 


import static org.assertj.core.api.Assertions.assertThat;


 


import java.util.ArrayList;


import java.util.Collection;


import java.util.Optional;


import org.junit.jupiter.api.AfterEach;


import org.junit.jupiter.api.BeforeEach;


import org.junit.jupiter.api.Test;


import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;


import org.springframework.security.core.GrantedAuthority;


import org.springframework.security.core.authority.SimpleGrantedAuthority;


import org.springframework.security.core.context.SecurityContext;


import org.springframework.security.core.context.SecurityContextHolder;


 


/**


 * Test class for the {@link SecurityUtils} utility class.


 */


class SecurityUtilsUnitTest {


 


    @BeforeEach


    @AfterEach


    void cleanup() {


        SecurityContextHolder.clearContext();


    }


 


    @Test


    void testGetCurrentUserLogin() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("admin", "admin"));


        SecurityContextHolder.setContext(securityContext);


        Optional<String> login = SecurityUtils.getCurrentUserLogin();


        assertThat(login).contains("admin");


    }


 


    @Test


    void testGetCurrentUserJWT() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("admin", "token"));


        SecurityContextHolder.setContext(securityContext);


        Optional<String> jwt = SecurityUtils.getCurrentUserJWT();


        assertThat(jwt).contains("token");


    }


 


    @Test


    void testIsAuthenticated() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("admin", "admin"));


        SecurityContextHolder.setContext(securityContext);


        boolean isAuthenticated = SecurityUtils.isAuthenticated();


        assertThat(isAuthenticated).isTrue();


    }


 


    @Test


    void testAnonymousIsNotAuthenticated() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        Collection<GrantedAuthority> authorities = new ArrayList<>();


        authorities.add(new SimpleGrantedAuthority(AuthoritiesConstants.ANONYMOUS));


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("anonymous", "anonymous", authorities));


        SecurityContextHolder.setContext(securityContext);


        boolean isAuthenticated = SecurityUtils.isAuthenticated();


        assertThat(isAuthenticated).isFalse();


    }


 


    @Test


    void testHasCurrentUserThisAuthority() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        Collection<GrantedAuthority> authorities = new ArrayList<>();


        authorities.add(new SimpleGrantedAuthority(AuthoritiesConstants.USER));


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("user", "user", authorities));


        SecurityContextHolder.setContext(securityContext);


 


        assertThat(SecurityUtils.hasCurrentUserThisAuthority(AuthoritiesConstants.USER)).isTrue();


        assertThat(SecurityUtils.hasCurrentUserThisAuthority(AuthoritiesConstants.ADMIN)).isFalse();


    }


 


    @Test


    void testHasCurrentUserAnyOfAuthorities() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        Collection<GrantedAuthority> authorities = new ArrayList<>();


        authorities.add(new SimpleGrantedAuthority(AuthoritiesConstants.USER));


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("user", "user", authorities));


        SecurityContextHolder.setContext(securityContext);


 


        assertThat(SecurityUtils.hasCurrentUserAnyOfAuthorities(AuthoritiesConstants.USER, AuthoritiesConstants.ADMIN)).isTrue();


        assertThat(SecurityUtils.hasCurrentUserAnyOfAuthorities(AuthoritiesConstants.ANONYMOUS, AuthoritiesConstants.ADMIN)).isFalse();


    }


 


    @Test


    void testHasCurrentUserNoneOfAuthorities() {


        SecurityContext securityContext = SecurityContextHolder.createEmptyContext();


        Collection<GrantedAuthority> authorities = new ArrayList<>();


        authorities.add(new SimpleGrantedAuthority(AuthoritiesConstants.USER));


        securityContext.setAuthentication(new UsernamePasswordAuthenticationToken("user", "user", authorities));


        SecurityContextHolder.setContext(securityContext);


 


        assertThat(SecurityUtils.hasCurrentUserNoneOfAuthorities(AuthoritiesConstants.USER, AuthoritiesConstants.ADMIN)).isFalse();


        assertThat(SecurityUtils.hasCurrentUserNoneOfAuthorities(AuthoritiesConstants.ANONYMOUS, AuthoritiesConstants.ADMIN)).isTrue();


    }


}