Select Git revision
ServerIT.java
Emmanuel Bruno authored
ServerIT.java 10.04 KiB
package fr.univtln.bruno.samples.jaxrs;
import fr.univtln.bruno.samples.jaxrs.model.BiblioModel.Auteur;
import fr.univtln.bruno.samples.jaxrs.security.InMemoryLoginModule;
import fr.univtln.bruno.samples.jaxrs.server.BiblioServer;
import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jws;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import io.jsonwebtoken.security.Keys;
import jakarta.ws.rs.client.Client;
import jakarta.ws.rs.client.ClientBuilder;
import jakarta.ws.rs.client.Entity;
import jakarta.ws.rs.client.WebTarget;
import jakarta.ws.rs.core.GenericType;
import jakarta.ws.rs.core.MediaType;
import jakarta.ws.rs.core.Response;
import org.glassfish.grizzly.http.server.HttpServer;
import org.glassfish.jersey.message.internal.MediaTypes;
import org.junit.*;
import java.time.LocalDateTime;
import java.time.ZoneId;
import java.time.temporal.ChronoUnit;
import java.util.Collection;
import java.util.Date;
import java.util.List;
import static org.junit.Assert.*;
/**
* A simple junit integration test for A REST service.
*/
public class ServerIT {
private static HttpServer httpServer;
private static WebTarget webTarget;
/**
* Starts the application before the tests.
*/
@BeforeClass
public static void setUp() {
//start the Grizzly2 web container
httpServer = BiblioServer.startServer();
// create the client
Client client = ClientBuilder.newClient();
webTarget = client.target(BiblioServer.BASE_URI);
}
/**
* Stops the application at the end of the test.
*/
@AfterClass
public static void tearDown() {
httpServer.shutdown();
}
/**
* Adds two authors before each tests.
*/
@Before
public void beforeEach() {
webTarget.path("biblio/init").request().put(Entity.entity("", MediaType.TEXT_PLAIN));
}
/**
* Clears the data after each tests.
*/
@After public void afterEach() {
webTarget.path("biblio/auteurs").request().delete();
}
@Test
public void testHello() {
String hello = webTarget.path("biblio").request(MediaType.TEXT_PLAIN).get(String.class);
assertEquals("hello", hello);
}
/**
* Tests to get a author by id in JSON.
*/
@Test
public void testGetAuteurJSON() {
Auteur responseAuteur = webTarget.path("biblio/auteurs/1").request(MediaType.APPLICATION_JSON).get(Auteur.class);
assertNotNull(responseAuteur);
assertEquals("Alfred", responseAuteur.getPrenom());
assertEquals("Martin", responseAuteur.getNom());
}
/**
* Tests to get a author by id in XML.
*/
@Test
public void testGetAuteurXML() {
Auteur responseAuteur = webTarget.path("biblio/auteurs/1").request(MediaType.TEXT_XML).get(Auteur.class);
assertNotNull(responseAuteur);
assertEquals("Alfred", responseAuteur.getPrenom());
assertEquals("Martin", responseAuteur.getNom());
}
/**
* Tests to get a author by id in JSON.
*/
@Test
public void testGetAuteurJSONNotFoundException() {
Response response = webTarget.path("biblio/auteurs/10").request(MediaType.APPLICATION_JSON).get();
assertEquals(Response.Status.NOT_FOUND.getStatusCode(), response.getStatus());
}
/**
* Tests to get a collection of authors in JSON.
*/
@Test
public void testGetAuteurs() {
Collection<Auteur> responseAuteurs = webTarget.path("biblio/auteurs").request(MediaType.APPLICATION_JSON).get(new GenericType<>() {
});
assertEquals(2, responseAuteurs.size());
}
/**
* Tests to clear authors.
*/
@Test
public void deleteAuteurs() {
webTarget.path("biblio/auteurs").request().delete();
Collection<Auteur> responseAuteurs = webTarget.path("biblio/auteurs").request(MediaType.APPLICATION_JSON).get(new GenericType<>() {
});
assertEquals(0, responseAuteurs.size());
}
/**
* Tests to delete an author.
*/
@Test
public void deleteAuteur() {
webTarget.path("biblio/auteurs/1").request().delete();
Collection<Auteur> responseAuteurs = webTarget.path("biblio/auteurs").request(MediaType.APPLICATION_JSON).get(new GenericType<>() {
}); assertEquals(1, responseAuteurs.size());
assertEquals(2, responseAuteurs.iterator().next().getId());
}
/**
* Tests to add an author in JSON.
*/
@Test
public void addAuteur() {
webTarget.path("biblio/auteurs")
.request(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
.post(Entity.entity("{\"nom\":\"Smith\",\"prenom\":\"John\",\"biographie\":\"My life\"}", MediaType.APPLICATION_JSON));
Collection<Auteur> responseAuteurs = webTarget.path("biblio/auteurs").request(MediaType.APPLICATION_JSON).get(new GenericType<>() {
});
assertEquals(3, responseAuteurs.size());
Auteur responseAuteur = webTarget.path("biblio/auteurs/3").request(MediaType.APPLICATION_JSON).get(Auteur.class);
assertNotNull(responseAuteur);
assertEquals("John", responseAuteur.getPrenom());
assertEquals("Smith", responseAuteur.getNom());
assertEquals("My life", responseAuteur.getBiographie());
}
/**
* Tests update an author in JSON.
*/
@Test
public void updateAuteur() {
webTarget.path("biblio/auteurs/1")
.request(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
.put(Entity.entity("{\"nom\":\"Doe\",\"prenom\":\"Jim\",\"biographie\":\"My weird life\"}", MediaType.APPLICATION_JSON));
Auteur responseAuteur = webTarget.path("biblio/auteurs/1").request(MediaType.APPLICATION_JSON).get(Auteur.class);
assertNotNull(responseAuteur);
assertEquals("Jim", responseAuteur.getPrenom());
assertEquals("Doe", responseAuteur.getNom());
assertEquals("My weird life", responseAuteur.getBiographie());
}
/**
* Tests update an author in JSON.
*/
@Test
public void updateAuteurIllegalArgument() {
Response response = webTarget.path("biblio/auteurs/1")
.request(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
.put(Entity.entity("{\"id\":\"1\",\"nom\":\"Doe\",\"prenom\":\"Jim\",\"biographie\":\"My weird life\"}", MediaType.APPLICATION_JSON));
assertEquals(Response.Status.NOT_ACCEPTABLE.getStatusCode(), response.getStatus());
}
/**
* Test if a WADL document is available at the relative path
* "application.wadl".
*/
@Test
public void testApplicationWadl() {
String serviceWadl = webTarget.path("application.wadl")
.request(MediaTypes.WADL_TYPE)
.get(String.class);
assertTrue(serviceWadl.length() > 0);
}
/**
* Tests filters and query param.
*/
@Test
public void filter() {
List<Auteur> auteurs = webTarget.path("biblio/auteurs/filter") .queryParam("prenom","Marie")
.request(MediaType.APPLICATION_JSON)
.get(new GenericType<>() {});
assertEquals(1, auteurs.size());
assertEquals("Marie", auteurs.get(0).getPrenom());
}
@Test
public void refusedLogin() {
Response result = webTarget.path("biblio/login")
.request()
.get();
assertEquals(Response.Status.UNAUTHORIZED.getStatusCode(), result.getStatus());
}
@Test
public void acceptedLogin() {
String email="john.doe@nowhere.com";
String password="admin";
Response result = webTarget.path("biblio/login")
.request()
.accept(MediaType.TEXT_PLAIN)
.header("Authorization", "Basic "+java.util.Base64.getEncoder().encodeToString((email+":"+password).getBytes()))
.get();
String entity = result.readEntity(String.class);
assertEquals(Response.Status.OK.getStatusCode(), result.getStatus());
Jws<Claims> jws = Jwts.parserBuilder()
.setSigningKey(InMemoryLoginModule.KEY)
.build()
.parseClaimsJws(entity);
assertEquals(email,jws.getBody().getSubject());
}
@Test
public void jwtAccess() {
//Log in to get the token
String email="john.doe@nowhere.com";
String password="admin";
String token = webTarget.path("biblio/login")
.request()
.accept(MediaType.TEXT_PLAIN)
.header("Authorization", "Basic "+java.util.Base64.getEncoder().encodeToString((email+":"+password).getBytes()))
.get(String.class);
//We access a JWT protected URL with the token
Response result = webTarget.path("biblio/secured")
.request()
.header( "Authorization", "Bearer "+token)
.get();
assertEquals(Response.Status.OK.getStatusCode(), result.getStatus());
assertEquals("Access with JWT ok for Doe, John <john.doe@nowhere.com>",result.readEntity(String.class));
}
@Test
public void jwtAccessDenied() {
String forgedToken = Jwts.builder()
.setIssuer("sample-jaxrs")
.setIssuedAt(Date.from(LocalDateTime.now().atZone(ZoneId.systemDefault()).toInstant()))
.setSubject("john.doe@nowhere.com")
.claim("firstname", "John")
.claim("lastname", "Doe")
.setExpiration(Date.from(LocalDateTime.now().plus(15, ChronoUnit.MINUTES).atZone(ZoneId.systemDefault()).toInstant()))
//A RANDOM KEY DIFFERENT FROM THE SERVER
.signWith( Keys.secretKeyFor(SignatureAlgorithm.HS256)).compact();
//We access a JWT protected URL with the token
Response result = webTarget.path("biblio/secured")
.request() .header( "Authorization", "Bearer "+forgedToken)
.get();
assertNotEquals(Response.Status.OK.getStatusCode(), result.getStatus());
}
}