You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
125 lines
4.8 KiB
125 lines
4.8 KiB
/* |
|
* Copyright 2012-2014 the original author or authors. |
|
* |
|
* Licensed under the Apache License, Version 2.0 (the "License"); |
|
* you may not use this file except in compliance with the License. |
|
* You may obtain a copy of the License at |
|
* |
|
* http://www.apache.org/licenses/LICENSE-2.0 |
|
* |
|
* Unless required by applicable law or agreed to in writing, software |
|
* distributed under the License is distributed on an "AS IS" BASIS, |
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
|
* See the License for the specific language governing permissions and |
|
* limitations under the License. |
|
*/ |
|
|
|
package sample.ui.secure; |
|
|
|
import java.util.Arrays; |
|
import java.util.regex.Matcher; |
|
import java.util.regex.Pattern; |
|
|
|
import org.junit.Test; |
|
import org.junit.runner.RunWith; |
|
import org.springframework.beans.factory.annotation.Value; |
|
import org.springframework.boot.test.IntegrationTest; |
|
import org.springframework.boot.test.SpringApplicationConfiguration; |
|
import org.springframework.boot.test.TestRestTemplate; |
|
import org.springframework.http.HttpEntity; |
|
import org.springframework.http.HttpHeaders; |
|
import org.springframework.http.HttpMethod; |
|
import org.springframework.http.HttpStatus; |
|
import org.springframework.http.MediaType; |
|
import org.springframework.http.ResponseEntity; |
|
import org.springframework.test.annotation.DirtiesContext; |
|
import org.springframework.test.context.junit4.SpringJUnit4ClassRunner; |
|
import org.springframework.test.context.web.WebAppConfiguration; |
|
import org.springframework.util.LinkedMultiValueMap; |
|
import org.springframework.util.MultiValueMap; |
|
|
|
import static org.junit.Assert.assertEquals; |
|
import static org.junit.Assert.assertNotNull; |
|
import static org.junit.Assert.assertTrue; |
|
|
|
/** |
|
* Basic integration tests for demo application. |
|
* |
|
* @author Dave Syer |
|
*/ |
|
@RunWith(SpringJUnit4ClassRunner.class) |
|
@SpringApplicationConfiguration(classes = SampleWebSecureCustomApplication.class) |
|
@WebAppConfiguration |
|
@IntegrationTest("server.port:0") |
|
@DirtiesContext |
|
public class SampleWebSecureCustomApplicationTests { |
|
|
|
@Value("${local.server.port}") |
|
private int port; |
|
|
|
@Test |
|
public void testHome() throws Exception { |
|
HttpHeaders headers = new HttpHeaders(); |
|
headers.setAccept(Arrays.asList(MediaType.TEXT_HTML)); |
|
ResponseEntity<String> entity = new TestRestTemplate().exchange( |
|
"http://localhost:" + this.port, HttpMethod.GET, new HttpEntity<Void>( |
|
headers), String.class); |
|
assertEquals(HttpStatus.FOUND, entity.getStatusCode()); |
|
assertTrue("Wrong location:\n" + entity.getHeaders(), entity.getHeaders() |
|
.getLocation().toString().endsWith(port + "/login")); |
|
} |
|
|
|
@Test |
|
public void testLoginPage() throws Exception { |
|
HttpHeaders headers = new HttpHeaders(); |
|
headers.setAccept(Arrays.asList(MediaType.TEXT_HTML)); |
|
ResponseEntity<String> entity = new TestRestTemplate().exchange( |
|
"http://localhost:" + this.port + "/login", HttpMethod.GET, |
|
new HttpEntity<Void>(headers), String.class); |
|
assertEquals(HttpStatus.OK, entity.getStatusCode()); |
|
assertTrue("Wrong content:\n" + entity.getBody(), |
|
entity.getBody().contains("_csrf")); |
|
} |
|
|
|
@Test |
|
public void testLogin() throws Exception { |
|
HttpHeaders headers = getHeaders(); |
|
headers.setAccept(Arrays.asList(MediaType.TEXT_HTML)); |
|
headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED); |
|
MultiValueMap<String, String> form = new LinkedMultiValueMap<String, String>(); |
|
form.set("username", "user"); |
|
form.set("password", "user"); |
|
ResponseEntity<String> entity = new TestRestTemplate().exchange( |
|
"http://localhost:" + this.port + "/login", HttpMethod.POST, |
|
new HttpEntity<MultiValueMap<String, String>>(form, headers), |
|
String.class); |
|
assertEquals(HttpStatus.FOUND, entity.getStatusCode()); |
|
assertTrue("Wrong location:\n" + entity.getHeaders(), entity.getHeaders() |
|
.getLocation().toString().endsWith(port + "/")); |
|
assertNotNull("Missing cookie:\n" + entity.getHeaders(), |
|
entity.getHeaders().get("Set-Cookie")); |
|
} |
|
|
|
private HttpHeaders getHeaders() { |
|
HttpHeaders headers = new HttpHeaders(); |
|
ResponseEntity<String> page = new TestRestTemplate().getForEntity( |
|
"http://localhost:" + this.port + "/login", String.class); |
|
assertEquals(HttpStatus.OK, page.getStatusCode()); |
|
String cookie = page.getHeaders().getFirst("Set-Cookie"); |
|
headers.set("Cookie", cookie); |
|
Matcher matcher = Pattern.compile("(?s).*name=\"_csrf\".*?value=\"([^\"]+).*") |
|
.matcher(page.getBody()); |
|
assertTrue("No csrf token: " + page.getBody(), matcher.matches()); |
|
headers.set("X-CSRF-TOKEN", matcher.group(1)); |
|
return headers; |
|
} |
|
|
|
@Test |
|
public void testCss() throws Exception { |
|
ResponseEntity<String> entity = new TestRestTemplate().getForEntity( |
|
"http://localhost:" + this.port + "/css/bootstrap.min.css", String.class); |
|
assertEquals(HttpStatus.OK, entity.getStatusCode()); |
|
assertTrue("Wrong body:\n" + entity.getBody(), entity.getBody().contains("body")); |
|
} |
|
|
|
}
|
|
|