simpleaclaccessservicetest.java

JXTA&#8482 is a set of open, generalized peer-to-peer (P2P) protocols that allow any networked devi

/*
 * Copyright (c) 2002-2007 Sun Microsystems, Inc.  All rights reserved.
 *  
 *  The Sun Project JXTA(TM) Software License
 *  
 *  Redistribution and use in source and binary forms, with or without 
 *  modification, are permitted provided that the following conditions are met:
 *  
 *  1. Redistributions of source code must retain the above copyright notice,
 *     this list of conditions and the following disclaimer.
 *  
 *  2. Redistributions in binary form must reproduce the above copyright notice, 
 *     this list of conditions and the following disclaimer in the documentation 
 *     and/or other materials provided with the distribution.
 *  
 *  3. The end-user documentation included with the redistribution, if any, must 
 *     include the following acknowledgment: "This product includes software 
 *     developed by Sun Microsystems, Inc. for JXTA(TM) technology." 
 *     Alternately, this acknowledgment may appear in the software itself, if 
 *     and wherever such third-party acknowledgments normally appear.
 *  
 *  4. The names "Sun", "Sun Microsystems, Inc.", "JXTA" and "Project JXTA" must 
 *     not be used to endorse or promote products derived from this software 
 *     without prior written permission. For written permission, please contact 
 *     Project JXTA at http://www.jxta.org.
 *  
 *  5. Products derived from this software may not be called "JXTA", nor may 
 *     "JXTA" appear in their name, without prior written permission of Sun.
 *  
 *  THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES,
 *  INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND 
 *  FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL SUN 
 *  MICROSYSTEMS OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 
 *  INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT 
 *  LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, 
 *  OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF 
 *  LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING 
 *  NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, 
 *  EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 *  
 *  JXTA is a registered trademark of Sun Microsystems, Inc. in the United 
 *  States and other countries.
 *  
 *  Please see the license information page at :
 *  <http://www.jxta.org/project/www/license.html> for instructions on use of 
 *  the license in source files.
 *  
 *  ====================================================================
 *  
 *  This software consists of voluntary contributions made by many individuals 
 *  on behalf of Project JXTA. For more information on Project JXTA, please see 
 *  http://www.jxta.org.
 *  
 *  This license is based on the BSD license adopted by the Apache Foundation. 
 */

package net.jxta.impl.access.simpleACL;


import java.io.Reader;
import java.io.StringReader;
import java.io.StringWriter;
import java.net.URI;
import java.util.Map;
import java.util.Iterator;

import java.net.URISyntaxException;

import junit.framework.*;

import net.jxta.access.AccessService;
import net.jxta.access.AccessService.AccessResult;
import net.jxta.credential.Credential;
import net.jxta.credential.PrivilegedOperation;
import net.jxta.document.AdvertisementFactory;
import net.jxta.document.Element;
import net.jxta.document.MimeMediaType;
import net.jxta.document.StructuredDocument;
import net.jxta.document.StructuredDocumentFactory;
import net.jxta.document.XMLDocument;
import net.jxta.document.XMLElement;
import net.jxta.discovery.DiscoveryService;
import net.jxta.id.ID;
import net.jxta.id.IDFactory;
import net.jxta.membership.MembershipService;
import net.jxta.peergroup.PeerGroup;
import net.jxta.peergroup.PeerGroupFactory;
import net.jxta.platform.ModuleSpecID;
import net.jxta.protocol.ModuleImplAdvertisement;
import net.jxta.protocol.PeerGroupAdvertisement;

import net.jxta.impl.peergroup.StdPeerGroupParamAdv;


public class SimpleACLAccessServiceTest extends TestCase {
    
    static PeerGroup npg = null;
    static PeerGroup pg = null;
    
    public SimpleACLAccessServiceTest(java.lang.String testName) {
        super(testName);
        
        synchronized (SimpleACLAccessServiceTest.class) {
            try {
                if (null == npg) {
                    npg = PeerGroupFactory.newNetPeerGroup();
                    
                    ModuleImplAdvertisement newGroupImpl = npg.getAllPurposePeerGroupImplAdvertisement();
                    
                    StdPeerGroupParamAdv params = new StdPeerGroupParamAdv(newGroupImpl.getParam());
                    
                    Map services = params.getServices();

                    ModuleImplAdvertisement aModuleAdv = (ModuleImplAdvertisement) services.get(PeerGroup.accessClassID);

                    services.remove(PeerGroup.accessClassID);
                    
                    ModuleImplAdvertisement implAdv = (ModuleImplAdvertisement)
                            AdvertisementFactory.newAdvertisement(ModuleImplAdvertisement.getAdvertisementType());
                    
                    implAdv.setModuleSpecID(SimpleACLAccessService.simpleACLAccessSpecID);
                    implAdv.setCompat(aModuleAdv.getCompat());
                    implAdv.setCode(SimpleACLAccessService.class.getName());
                    implAdv.setUri(aModuleAdv.getUri());
                    implAdv.setProvider(aModuleAdv.getProvider());
                    implAdv.setDescription("Simple ACL Access Service");
                    
                    // replace it
                    services.put(PeerGroup.accessClassID, implAdv);
                    
                    newGroupImpl.setParam((Element) params.getDocument(MimeMediaType.XMLUTF8));
                    
                    if (!newGroupImpl.getModuleSpecID().equals(PeerGroup.allPurposePeerGroupSpecID)) {
                        newGroupImpl.setModuleSpecID(IDFactory.newModuleSpecID(newGroupImpl.getModuleSpecID().getBaseClass()));
                    } else {
                        try {
                            ID simpleACLGrpModSpecID = ID.create(
                                    new URI(ID.URIEncodingName, "jxta:uuid-" + "DeadBeefDeafBabaFeedBabe000000010406", null));
                            
                            newGroupImpl.setModuleSpecID((ModuleSpecID) simpleACLGrpModSpecID);
                        } catch (URISyntaxException absurd) {// Fall through.
                        }
                    }
                    
                    npg.getDiscoveryService().publish(newGroupImpl, PeerGroup.DEFAULT_LIFETIME, PeerGroup.DEFAULT_EXPIRATION);
                    
                    npg.getDiscoveryService().remotePublish(newGroupImpl, PeerGroup.DEFAULT_LIFETIME);
                    
                    PeerGroupAdvertisement newPGAdv = (PeerGroupAdvertisement) AdvertisementFactory.newAdvertisement(
                            PeerGroupAdvertisement.getAdvertisementType());
                    
                    newPGAdv.setPeerGroupID(IDFactory.newPeerGroupID());
                    newPGAdv.setModuleSpecID(newGroupImpl.getModuleSpecID());
                    newPGAdv.setName("Test Group");
                    newPGAdv.setDescription("Created by Unit Test");
                    
                    XMLDocument accessparams = (XMLDocument) StructuredDocumentFactory.newStructuredDocument(MimeMediaType.XMLUTF8
                            ,
                            "Parm");
                    
                    XMLElement perm = accessparams.createElement("perm", "<<DEFAULT>>:nobody,permit");

                    accessparams.appendChild(perm);
                    
                    perm = accessparams.createElement("perm", "everyone:<<ALL>>");
                    accessparams.appendChild(perm);
                    
                    perm = accessparams.createElement("perm", "permit:nobody,permit,allow");
                    accessparams.appendChild(perm);
                    
                    perm = accessparams.createElement("perm", "deny:notpermit,notallow");
                    accessparams.appendChild(perm);
                    
                    newPGAdv.putServiceParam(PeerGroup.accessClassID, accessparams);
                    
                    npg.getDiscoveryService().publish(newPGAdv, PeerGroup.DEFAULT_LIFETIME, PeerGroup.DEFAULT_EXPIRATION);
                    
                    npg.getDiscoveryService().remotePublish(newPGAdv, PeerGroup.DEFAULT_LIFETIME);
                    
                    pg = npg.newGroup(newPGAdv);
                }
            } catch (Throwable all) {
                all.printStackTrace();
                fail("exception thrown : " + all.getMessage());
            }
        }
    }
    
    public static void main(java.lang.String[] args) {
        junit.textui.TestRunner.run(suite());
        
        synchronized (SimpleACLAccessServiceTest.class) {
            if (null != pg) {
                pg.stopApp();
                pg.unref();
                pg = null;
            }
            
            if (null != npg) {
                npg.stopApp();
                npg.unref();
                npg = null;
            }
        }
    }
    
    public static Test suite() {
        TestSuite suite = new TestSuite(SimpleACLAccessServiceTest.class);
        
        return suite;
    }
    
    public void testAllow() {
        try {
            AccessService access = pg.getAccessService();
            MembershipService membership = pg.getMembershipService();
            
            Credential cred = membership.getDefaultCredential();
            
            PrivilegedOperation allowed = access.newPrivilegedOperation("permit", cred);
            
            assertTrue("Operation should be allowed", AccessResult.PERMITTED == access.doAccessCheck(allowed, cred));
        } catch (Exception caught) {
            caught.printStackTrace();
            fail("exception thrown : " + caught.getMessage());
        }
    }
    
    public void testDefault() {
        try {
            AccessService access = pg.getAccessService();
            MembershipService membership = pg.getMembershipService();
            
            Credential cred = membership.getDefaultCredential();
            
            PrivilegedOperation allowed = access.newPrivilegedOperation("apermissionwhichijustmadeup", cred);
            
            assertTrue("Operation should be allowed", AccessResult.PERMITTED == access.doAccessCheck(allowed, cred));
        } catch (Exception caught) {
            caught.printStackTrace();
            fail("exception thrown : " + caught.getMessage());
        }
    }
    
    public void testDeny() {
        try {
            AccessService access = pg.getAccessService();
            MembershipService membership = pg.getMembershipService();
            
            Credential cred = membership.getDefaultCredential();
            
            PrivilegedOperation denied = access.newPrivilegedOperation("deny", cred);
            
            assertTrue("Operation should be denied", AccessResult.DISALLOWED == access.doAccessCheck(denied, cred));
            
            StringWriter serialed = new StringWriter();
            
            ((XMLDocument) denied.getDocument(MimeMediaType.XMLUTF8)).sendToWriter(serialed);
            
            Reader deserial = new StringReader(serialed.toString());
            
            PrivilegedOperation redenied = access.newPrivilegedOperation(
                    StructuredDocumentFactory.newStructuredDocument(MimeMediaType.XMLUTF8, deserial));
            
            assertTrue("Operation should be denied", AccessResult.DISALLOWED == access.doAccessCheck(redenied, cred));
        } catch (Exception caught) {
            caught.printStackTrace();
            fail("exception thrown : " + caught.getMessage());
        }
    }
}