/** * converts an 2.3.x security configuration to 2.4.x * * @return <code>true</code> if migration has taken place */ boolean migrateFrom23() throws Exception { SecurityManagerConfig config = loadSecurityConfig(); RequestFilterChain webChain = config.getFilterChain() .getRequestChainByName(GeoServerSecurityFilterChain.WEB_CHAIN_NAME); boolean migrated = false; List<String> patterns = webChain.getPatterns(); if (patterns.contains("/") == false) { patterns.add("/"); saveSecurityConfig(config); migrated |= true; } return migrated; }
void init() throws Exception { init(loadMasterPasswordConfig()); init(loadSecurityConfig()); fireChanged(); }
protected void insertAnonymousFilter() throws Exception { SecurityManagerConfig mconfig = getSecurityManager().loadSecurityConfig(); mconfig.getFilterChain() .find(pattern) .getFilterNames() .add(GeoServerSecurityFilterChain.ANONYMOUS_FILTER); getSecurityManager().saveSecurityConfig(mconfig); }
protected void removeAnonymousFilter() throws Exception { SecurityManagerConfig mconfig = getSecurityManager().loadSecurityConfig(); mconfig.getFilterChain() .find(pattern) .getFilterNames() .remove(GeoServerSecurityFilterChain.ANONYMOUS_FILTER); getSecurityManager().saveSecurityConfig(mconfig); }
org.geoserver.util.IOUtils.copy( security().get("config.xml").in(), oldSecManagerConfig.out()); SecurityManagerConfig config = loadSecurityConfig(); for (RequestFilterChain chain : config.getFilterChain().getRequestChains()) { if (chain.getFilterNames()
protected void createServices() throws Exception { GeoServerRoleService rservice = createRoleService("rs1"); GeoServerRoleStore rstore = rservice.createStore(); GeoServerRole root, derived; rstore.addRole(root = rstore.createRoleObject(rootRole)); rstore.addRole(derived = rstore.createRoleObject(derivedRole)); rstore.setParentRole(derived, root); rstore.associateRoleToUser(derived, testUserName); rstore.associateRoleToUser(derived, "castest"); rstore.store(); SecurityManagerConfig mconfig = getSecurityManager().loadSecurityConfig(); mconfig.setRoleServiceName("rs1"); getSecurityManager().saveSecurityConfig(mconfig); GeoServerUserGroupService ugservice = createUserGroupService("ug1"); GeoServerUserGroupStore ugstore = ugservice.createStore(); GeoServerUser u1 = ugstore.createUserObject(testUserName, testPassword, true); ugstore.addUser(u1); GeoServerUser u2 = ugstore.createUserObject("abc@xyz.com", "abc", true); ugstore.addUser(u2); GeoServerUser u3 = ugstore.createUserObject("castest", "castest", true); ugstore.addUser(u3); ugstore.store(); GeoServerAuthenticationProvider prov = createAuthProvider(testProviderName, ugservice.getName()); prepareAuthProviders(prov.getName()); }
@Test public void testGeoServerEnvParametrization() throws Exception { GeoServerSecurityManager secMgr = getSecurityManager(); SecurityManagerConfig config = secMgr.loadSecurityConfig(); String oldRoleServiceName = config.getRoleServiceName(); try { if (GeoServerEnvironment.ALLOW_ENV_PARAMETRIZATION) { System.setProperty("TEST_SYS_PROPERTY", oldRoleServiceName); config.setRoleServiceName("${TEST_SYS_PROPERTY}"); secMgr.saveSecurityConfig(config); SecurityManagerConfig config1 = secMgr.loadSecurityConfig(); assertEquals(config1.getRoleServiceName(), oldRoleServiceName); } } finally { config.setRoleServiceName(oldRoleServiceName); secMgr.saveSecurityConfig(config); System.clearProperty("TEST_SYS_PROPERTY"); } } }
@Test public void testWebLoginChainSessionCreation() throws Exception { // GEOS-6077 GeoServerSecurityManager secMgr = getSecurityManager(); SecurityManagerConfig config = secMgr.loadSecurityConfig(); RequestFilterChain chain = config.getFilterChain() .getRequestChainByName(GeoServerSecurityFilterChain.WEB_LOGIN_CHAIN_NAME); assertTrue(chain.isAllowSessionCreation()); } }
@Test public void testWebLoginChainSessionCreation() throws Exception { // GEOS-6077 GeoServerSecurityManager secMgr = getSecurityManager(); SecurityManagerConfig config = secMgr.loadSecurityConfig(); RequestFilterChain chain = config.getFilterChain() .getRequestChainByName(GeoServerSecurityFilterChain.WEB_LOGIN_CHAIN_NAME); assertTrue(chain.isAllowSessionCreation()); }
GeoServerSecurityFilterChain.GUI_EXCEPTION_TRANSLATION_FILTER)); SecurityManagerConfig config = getSecurityManager().loadSecurityConfig(); for (RequestFilterChain chain : config.getFilterChain().getRequestChains()) { assertFalse(