Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / d5799aeae9a79182892692c61af76a6bb8465453 / . / src / test / java / de / ids_mannheim / korap / server / EmbeddedLdapServerTest.java
blob: 98b35cfb5fb86b270b47cc943f05eb2b4d84118e [file] [log] [blame]
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]1package de.ids_mannheim.korap.server;
2
3import com.unboundid.ldap.sdk.LDAPException;
4import com.unboundid.util.Base64;
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]5import de.ids_mannheim.korap.authentication.LdapAuth3;
Marc Kupietzd43a98d2023-09-22 17:11:46 +0200[diff] [blame]6import org.junit.jupiter.api.AfterAll;
7import org.junit.jupiter.api.Test;
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]8
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]9import javax.crypto.SecretKeyFactory;
10import javax.crypto.spec.PBEKeySpec;
Marc Kupietz9a1188e2022-05-05 23:26:14 +0200[diff] [blame]11import java.net.UnknownHostException;
12import java.security.GeneralSecurityException;
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]13import java.security.NoSuchAlgorithmException;
14import java.security.spec.InvalidKeySpecException;
15import java.security.spec.KeySpec;
Marc Kupietz9a1188e2022-05-05 23:26:14 +0200[diff] [blame]16
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]17import static de.ids_mannheim.korap.authentication.LdapAuth3.LDAP_AUTH_ROK;
Marc Kupietz7cb32132022-05-09 06:25:47 +0200[diff] [blame]18import static de.ids_mannheim.korap.authentication.LdapAuth3.LDAP_AUTH_RUNKNOWN;
Marc Kupietzd43a98d2023-09-22 17:11:46 +0200[diff] [blame]19import static org.junit.jupiter.api.Assertions.assertEquals;
20
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]21public class EmbeddedLdapServerTest {
22
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]23 public static final String TEST_EMBEDDED_LDAP_CONF = "src/test/resources/test-embedded-ldap.conf";
Marc Kupietz392f4782022-05-02 13:23:18 +0200[diff] [blame]24
Marc Kupietzd43a98d2023-09-22 17:11:46 +0200[diff] [blame]25 @AfterAll
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]26 static void shutdownEmbeddedLdapServer () {
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]27 EmbeddedLdapServer.stop();
28 }
29
30 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]31 public void embeddedServerStartsAutomaticallyAndUsersCanLogin ()
32 throws LDAPException {
33 assertEquals(LDAP_AUTH_ROK,
34 LdapAuth3.login("user", "password", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]35 }
36
37 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]38 public void usersWithClearPasswordCanLogin () throws LDAPException {
39 assertEquals(LDAP_AUTH_ROK,
40 LdapAuth3.login("user1", "password1", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]41 }
42
43 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]44 public void usersWithSHA1PasswordCanLogin ()
45 throws LDAPException, NoSuchAlgorithmException {
46 assertEquals(LDAP_AUTH_ROK,
47 LdapAuth3.login("user3", "password3", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]48 }
49
50 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]51 public void usersWithSHA256PasswordCanLogin () throws LDAPException,
52 NoSuchAlgorithmException, InvalidKeySpecException {
53 assertEquals(LDAP_AUTH_ROK,
54 LdapAuth3.login("user4", "password4", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]55 }
56
57 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]58 public void asteriskPasswordsFail () throws LDAPException {
59 assertEquals(LDAP_AUTH_RUNKNOWN,
60 LdapAuth3.login("user1", "*", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]61 }
62
63 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]64 public void loginWithPreencodedPBKDF2Password () throws LDAPException,
65 NoSuchAlgorithmException, InvalidKeySpecException {
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]66 byte[] salt = new byte[32];
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]67 KeySpec spec = new PBEKeySpec("password5".toCharArray(), salt, 65536,
68 256);
69 SecretKeyFactory f = SecretKeyFactory
70 .getInstance("PBKDF2withHmacSHA256");
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]71 byte[] hash = f.generateSecret(spec).getEncoded();
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]72 final String pbkdf2sha256Password = "{PBKDF2-SHA256}"
73 + Base64.encode(hash);
Marc Kupietzd43a98d2023-09-22 17:11:46 +0200[diff] [blame]74 // System.out.println(pbkdf2sha256Password);
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]75 assertEquals(LDAP_AUTH_ROK, LdapAuth3.login("user5",
76 pbkdf2sha256Password, TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]77 }
78
79 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]80 public void loginWithUnencodedPBKDF2PasswordFails () throws LDAPException,
81 NoSuchAlgorithmException, InvalidKeySpecException {
82 assertEquals(LDAP_AUTH_RUNKNOWN,
83 LdapAuth3.login("user5", "password5", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]84 }
85
86 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]87 public void unauthorizedUsersAreNotAllowed () throws LDAPException {
88 assertEquals(LDAP_AUTH_RUNKNOWN,
89 LdapAuth3.login("yuser", "password", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz1e388b42022-04-30 18:37:03 +0200[diff] [blame]90 }
Marc Kupietz75e78282022-05-02 20:39:20 +0200[diff] [blame]91
92 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]93 public void gettingMailForUser () throws LDAPException,
94 UnknownHostException, GeneralSecurityException {
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]95 EmbeddedLdapServer.startIfNotRunning(TEST_EMBEDDED_LDAP_CONF);
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]96 assertEquals(LdapAuth3.getEmail("user2", TEST_EMBEDDED_LDAP_CONF),
97 "user2@example.com");
Marc Kupietz75e78282022-05-02 20:39:20 +0200[diff] [blame]98 }
99
100 @Test
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]101 public void gettingMailForNAUTHUserIsNull () throws LDAPException,
102 UnknownHostException, GeneralSecurityException {
Marc Kupietz30925d82022-05-06 15:33:52 +0200[diff] [blame]103 EmbeddedLdapServer.startIfNotRunning(TEST_EMBEDDED_LDAP_CONF);
margaretha35e1ca22023-11-16 22:00:01 +0100[diff] [blame]104 assertEquals(null,
105 LdapAuth3.getEmail("user1000", TEST_EMBEDDED_LDAP_CONF));
Marc Kupietz75e78282022-05-02 20:39:20 +0200[diff] [blame]106 }
Marc Kupietz392f4782022-05-02 13:23:18 +0200[diff] [blame]107}