public void testRevokeAuthorizationType() { Authorization revokeAuthorization = authorizationService.createNewAuthorization(AUTH_TYPE_REVOKE); // I can set userId = null revokeAuthorization.setUserId(null); // I can set userId = ANY revokeAuthorization.setUserId(ANY); // I can set anything else: revokeAuthorization.setUserId("something"); // I can set groupId = null revokeAuthorization.setGroupId(null); // I can set anything else: revokeAuthorization.setGroupId("something"); }
public void testGrantAuthorizationType() { Authorization grantAuthorization = authorizationService.createNewAuthorization(AUTH_TYPE_GRANT); // I can set userId = null grantAuthorization.setUserId(null); // I can set userId = ANY grantAuthorization.setUserId(ANY); // I can set anything else: grantAuthorization.setUserId("something"); // I can set groupId = null grantAuthorization.setGroupId(null); // I can set anything else: grantAuthorization.setGroupId("something"); }
protected void grouptGrant(String groupId, Resource resource, Permission... perms) { AuthorizationService authorizationService = engine.getAuthorizationService(); Authorization groupGrant = authorizationService.createNewAuthorization(AUTH_TYPE_GRANT); groupGrant.setResource(resource); groupGrant.setResourceId(ANY); for (Permission permission : perms) { groupGrant.addPermission(permission); } groupGrant.setGroupId(groupId); authorizationService.saveAuthorization(groupGrant); }
protected void createGroupGrantAuthorization(Resource resource, String resourceId, String groupId, Permission... permissions) { Authorization authorization = createGrantAuthorization(resource, resourceId); authorization.setGroupId(groupId); for (Permission permission : permissions) { authorization.addPermission(permission); } saveAuthorization(authorization); }
protected void createGrantAuthorizationGroup(Resource resource, String resourceId, String groupId, Permission... permissions) { Authorization authorization = createGrantAuthorization(resource, resourceId); authorization.setGroupId(groupId); for (Permission permission : permissions) { authorization.addPermission(permission); } saveAuthorization(authorization); }
public void testGlobalAuthorizationType() { Authorization globalAuthorization = authorizationService.createNewAuthorization(AUTH_TYPE_GLOBAL); // I can set userId = null globalAuthorization.setUserId(null); // I can set userId = ANY globalAuthorization.setUserId(ANY); try { // I cannot set anything else: globalAuthorization.setUserId("something"); fail("exception expected"); } catch (Exception e) { assertTextPresent("ENGINE-03028 Illegal value 'something' for userId for GLOBAL authorization. Must be '*'", e.getMessage()); } // I can set groupId = null globalAuthorization.setGroupId(null); try { // I cannot set anything else: globalAuthorization.setGroupId("something"); fail("exception expected"); } catch (Exception e) { assertTextPresent("ENGINE-03027 Cannot use 'groupId' for GLOBAL authorization", e.getMessage()); } }
public static void update(AuthorizationCreateDto dto, Authorization dbAuthorization) { dbAuthorization.setGroupId(dto.getGroupId()); dbAuthorization.setUserId(dto.getUserId()); dbAuthorization.setResourceType(dto.getResourceType()); dbAuthorization.setResourceId(dto.getResourceId()); dbAuthorization.setPermissions(PermissionConverter.getPermissionsForNames(dto.getPermissions(), dto.getResourceType())); }
public static void update(AuthorizationCreateDto dto, Authorization dbAuthorization) { dbAuthorization.setGroupId(dto.getGroupId()); dbAuthorization.setUserId(dto.getUserId()); dbAuthorization.setResourceType(dto.getResourceType()); dbAuthorization.setResourceId(dto.getResourceId()); dbAuthorization.setPermissions(PermissionConverter.getPermissionsForNames(dto.getPermissions(), dto.getResourceType())); }
@Test public void testUpdateAuthorization() { Authorization authorization = MockProvider.createMockGlobalAuthorization(); AuthorizationQuery authorizationQuery = mock(AuthorizationQuery.class); when(authorizationServiceMock.createAuthorizationQuery()).thenReturn(authorizationQuery); when(authorizationQuery.authorizationId(MockProvider.EXAMPLE_AUTHORIZATION_ID)).thenReturn(authorizationQuery); when(authorizationQuery.singleResult()).thenReturn(authorization); AuthorizationDto dto = AuthorizationDto.fromAuthorization(authorization); given() .pathParam("id", MockProvider.EXAMPLE_AUTHORIZATION_ID) .body(dto).contentType(ContentType.JSON) .then().expect() .statusCode(Status.NO_CONTENT.getStatusCode()) .when() .put(AUTH_RESOURCE_PATH); verify(authorizationQuery).authorizationId(MockProvider.EXAMPLE_AUTHORIZATION_ID); verify(authorization).setGroupId(dto.getGroupId()); verify(authorization).setUserId(dto.getUserId()); verify(authorization).setResourceId(dto.getResourceId()); verify(authorization).setResourceType(dto.getResourceType()); verify(authorizationServiceMock).saveAuthorization(authorization); }
public static void update(AuthorizationDto dto, Authorization dbAuthorization) { dbAuthorization.setGroupId(dto.getGroupId()); dbAuthorization.setUserId(dto.getUserId()); dbAuthorization.setResourceId(dto.getResourceId()); // update optional fields if(dto.getResourceType() != null) { dbAuthorization.setResourceType(dto.getResourceType()); } if(dto.getPermissions() != null) { dbAuthorization.setPermissions(PermissionConverter.getPermissionsForNames(dto.getPermissions(), dto.getResourceType())); } }
public static void update(AuthorizationDto dto, Authorization dbAuthorization) { dbAuthorization.setGroupId(dto.getGroupId()); dbAuthorization.setUserId(dto.getUserId()); dbAuthorization.setResourceId(dto.getResourceId()); // update optional fields if(dto.getResourceType() != null) { dbAuthorization.setResourceType(dto.getResourceType()); } if(dto.getPermissions() != null) { dbAuthorization.setPermissions(PermissionConverter.getPermissionsForNames(dto.getPermissions(), dto.getResourceType())); } }
protected void createAuthorization(String userId, String groupId, Resource resourceType, String resourceId, Permission... permissions) { Authorization authorization = authorizationService.createNewAuthorization(Authorization.AUTH_TYPE_GRANT); authorization.setUserId(userId); authorization.setGroupId(groupId); authorization.setResource(resourceType); authorization.setResourceId(resourceId); for (Permission permission : permissions) { authorization.addPermission(permission); } authorizationService.saveAuthorization(authorization); }
authorization1.setGroupId("someGroup"); authorization2.setGroupId("someGroup"); authorization3.setGroupId("someGroup"); authorization4.setGroupId("someGroup");
public void testQueryWithGroupAuthorizationRevokedReadPermission() { // given // given user gets all permissions on any process definition Authorization authorization = createGrantAuthorization(PROCESS_DEFINITION, ANY); authorization.setGroupId(groupId); authorization.addPermission(ALL); saveAuthorization(authorization); authorization = createRevokeAuthorization(PROCESS_DEFINITION, ONE_TASK_PROCESS_KEY); authorization.setGroupId(groupId); authorization.removePermission(READ); saveAuthorization(authorization); // when ProcessDefinitionQuery query = repositoryService.createProcessDefinitionQuery(); // then verifyQueryResults(query, 1); ProcessDefinition definition = query.singleResult(); assertNotNull(definition); assertEquals(TWO_TASKS_PROCESS_KEY, definition.getKey()); }
public void testCreateAuthorizationWithGroupId() { Resource resource1 = TestResource.RESOURCE1; // initially, no authorization exists: assertEquals(0, authorizationService.createAuthorizationQuery().count()); // simple create / delete with userId Authorization authorization = authorizationService.createNewAuthorization(AUTH_TYPE_GRANT); authorization.setGroupId("aGroupId"); authorization.setResource(resource1); // save the authorization authorizationService.saveAuthorization(authorization); // authorization exists assertEquals(1, authorizationService.createAuthorizationQuery().count()); // delete the authorization authorizationService.deleteAuthorization(authorization.getId()); // it's gone assertEquals(0, authorizationService.createAuthorizationQuery().count()); }
authorization.setGroupId("someId"); authorization.setUserId("someOtherId"); authorization.setResource(resource1);
accAuth.setGroupId("accounting"); accAuth.setResource(GROUP); accAuth.setResourceId("accounting"); salesAuth.setGroupId("sales"); salesAuth.setResource(GROUP); salesAuth.setResourceId("sales"); manAuth.setGroupId("management"); manAuth.setResource(GROUP); manAuth.setResourceId("management"); salesDemoAuth.setGroupId("sales"); salesDemoAuth.setResource(USER); salesDemoAuth.setResourceId("demo"); salesJohnAuth.setGroupId("sales"); salesJohnAuth.setResource(USER); salesJohnAuth.setResourceId("john"); manDemoAuth.setGroupId("management"); manDemoAuth.setResource(USER); manDemoAuth.setResourceId("demo"); manPeterAuth.setGroupId("management"); manPeterAuth.setResource(USER); manPeterAuth.setResourceId("peter"); accDemoAuth.setGroupId("accounting");
groupRevoke.setGroupId("sales"); groupRevoke.setResource(resource1); groupRevoke.setResourceId(ANY);
groupRevoke.setGroupId("sales"); groupRevoke.setResource(resource1); groupRevoke.setResourceId(ANY);
protected void createGroupGrantAuthorization(Resource resource, String resourceId, String groupId, Permission... permissions) { Authorization authorization = createGrantAuthorization(resource, resourceId); authorization.setGroupId(groupId); for (Permission permission : permissions) { authorization.addPermission(permission); } saveAuthorization(authorization); }