Author: tveronezi
Date: Fri Jul 20 12:55:03 2012
New Revision: 1363758
URL: http://svn.apache.org/viewvc?rev=1363758&view=rev
Log:
https://issues.apache.org/jira/browse/OPENEJB-1875
Added:
openejb/trunk/openejb/examples/testing-security-3/
openejb/trunk/openejb/examples/testing-security-3/README.md
openejb/trunk/openejb/examples/testing-security-3/build.xml
openejb/trunk/openejb/examples/testing-security-3/pom.xml
openejb/trunk/openejb/examples/testing-security-3/src/
openejb/trunk/openejb/examples/testing-security-3/src/main/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movie.java
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movies.java
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/MyLoginProvider.java
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/persistence.xml
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/org.apache.openejb.core.security.jaas.LoginProvider
openejb/trunk/openejb/examples/testing-security-3/src/test/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/MovieTest.java
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/groups.properties
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/users.properties
Added: openejb/trunk/openejb/examples/testing-security-3/README.md
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/README.md?rev=1363758&view=auto
==============================================================================
--- openejb/trunk/openejb/examples/testing-security-3/README.md (added)
+++ openejb/trunk/openejb/examples/testing-security-3/README.md Fri Jul 20
12:55:03 2012
@@ -0,0 +1,302 @@
+Title: Testing Security 3
+
+*Help us document this example! Click the blue pencil icon in the upper right
to edit this page.*
+
+## Movie
+
+ package org.superbiz.injection.secure;
+
+ import javax.persistence.Entity;
+
+ @Entity
+ public class Movie {
+
+ private String director;
+ private String title;
+ private int year;
+
+ public Movie() {
+ }
+
+ public Movie(String director, String title, int year) {
+ this.director = director;
+ this.title = title;
+ this.year = year;
+ }
+
+ public String getDirector() {
+ return director;
+ }
+
+ public void setDirector(String director) {
+ this.director = director;
+ }
+
+ public String getTitle() {
+ return title;
+ }
+
+ public void setTitle(String title) {
+ this.title = title;
+ }
+
+ public int getYear() {
+ return year;
+ }
+
+ public void setYear(int year) {
+ this.year = year;
+ }
+
+ }
+
+## Movies
+
+ package org.superbiz.injection.secure;
+
+ //START SNIPPET: code
+
+ import javax.annotation.security.PermitAll;
+ import javax.annotation.security.RolesAllowed;
+ import javax.ejb.Stateful;
+ import javax.ejb.TransactionAttribute;
+ import javax.ejb.TransactionAttributeType;
+ import javax.persistence.EntityManager;
+ import javax.persistence.PersistenceContext;
+ import javax.persistence.PersistenceContextType;
+ import javax.persistence.Query;
+ import java.util.List;
+
+ @Stateful
+ public class Movies {
+
+ @PersistenceContext(unitName = "movie-unit", type =
PersistenceContextType.EXTENDED)
+ private EntityManager entityManager;
+
+ @RolesAllowed({"Employee", "Manager"})
+ public void addMovie(Movie movie) throws Exception {
+ entityManager.persist(movie);
+ }
+
+ @RolesAllowed({"Manager"})
+ public void deleteMovie(Movie movie) throws Exception {
+ entityManager.remove(movie);
+ }
+
+ @PermitAll
+ @TransactionAttribute(TransactionAttributeType.SUPPORTS)
+ public List<Movie> getMovies() throws Exception {
+ Query query = entityManager.createQuery("SELECT m from Movie as
m");
+ return query.getResultList();
+ }
+ }
+
+## persistence.xml
+
+ <persistence xmlns="http://java.sun.com/xml/ns/persistence"; version="1.0">
+
+ <persistence-unit name="movie-unit">
+ <jta-data-source>movieDatabase</jta-data-source>
+ <non-jta-data-source>movieDatabaseUnmanaged</non-jta-data-source>
+ <class>org.superbiz.injection.secure.Movie</class>
+
+ <properties>
+ <property name="openjpa.jdbc.SynchronizeMappings"
value="buildSchema(ForeignKeys=true)"/>
+ </properties>
+ </persistence-unit>
+ </persistence>
+
+## MovieTest
+
+ package org.superbiz.injection.secure;
+
+ import junit.framework.TestCase;
+
+ import javax.ejb.EJB;
+ import javax.ejb.EJBAccessException;
+ import javax.ejb.embeddable.EJBContainer;
+ import javax.naming.Context;
+ import javax.naming.InitialContext;
+ import java.util.List;
+ import java.util.Properties;
+
+ public class MovieTest extends TestCase {
+
+ @EJB
+ private Movies movies;
+
+ protected void setUp() throws Exception {
+
+ // Uncomment this line to set the login/logout functionality on
Debug
+ //System.setProperty("log4j.category.OpenEJB.security", "debug");
+
+ Properties p = new Properties();
+ p.put("movieDatabase", "new://Resource?type=DataSource");
+ p.put("movieDatabase.JdbcDriver", "org.hsqldb.jdbcDriver");
+ p.put("movieDatabase.JdbcUrl", "jdbc:hsqldb:mem:moviedb");
+
+ EJBContainer.createEJBContainer(p).getContext().bind("inject",
this);
+ }
+
+ public void testAsManager() throws Exception {
+ Properties p = new Properties();
+ p.put(Context.INITIAL_CONTEXT_FACTORY,
"org.apache.openejb.core.LocalInitialContextFactory");
+ p.setProperty("openejb.authentication.realmName",
"ServiceProviderLogin");
+ p.put(Context.SECURITY_PRINCIPAL, "paul");
+ p.put(Context.SECURITY_CREDENTIALS, "");
+
+ InitialContext context = new InitialContext(p);
+
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir
Dogs", 1992));
+ movies.addMovie(new Movie("Joel Coen", "Fargo", 1996));
+ movies.addMovie(new Movie("Joel Coen", "The Big Lebowski",
1998));
+
+ List<Movie> list = movies.getMovies();
+ assertEquals("List.size()", 3, list.size());
+
+ for (Movie movie : list) {
+ movies.deleteMovie(movie);
+ }
+
+ assertEquals("Movies.getMovies()", 0,
movies.getMovies().size());
+ } finally {
+ context.close();
+ }
+ }
+
+ public void testAsEmployee() throws Exception {
+ Properties p = new Properties();
+ p.put(Context.INITIAL_CONTEXT_FACTORY,
"org.apache.openejb.core.LocalInitialContextFactory");
+ p.setProperty("openejb.authentication.realmName",
"ServiceProviderLogin");
+ p.put(Context.SECURITY_PRINCIPAL, "eddie");
+ p.put(Context.SECURITY_CREDENTIALS, "jump");
+
+ InitialContext context = new InitialContext(p);
+
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir
Dogs", 1992));
+ movies.addMovie(new Movie("Joel Coen", "Fargo", 1996));
+ movies.addMovie(new Movie("Joel Coen", "The Big Lebowski",
1998));
+
+ List<Movie> list = movies.getMovies();
+ assertEquals("List.size()", 3, list.size());
+
+ for (Movie movie : list) {
+ try {
+ movies.deleteMovie(movie);
+ fail("Employees should not be allowed to delete");
+ } catch (EJBAccessException e) {
+ // Good, Employees cannot delete things
+ }
+ }
+
+ // The list should still be three movies long
+ assertEquals("Movies.getMovies()", 3,
movies.getMovies().size());
+ } finally {
+ context.close();
+ }
+ }
+
+ public void testUnauthenticated() throws Exception {
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir
Dogs", 1992));
+ fail("Unauthenticated users should not be able to add movies");
+ } catch (EJBAccessException e) {
+ // Good, guests cannot add things
+ }
+
+ try {
+ movies.deleteMovie(null);
+ fail("Unauthenticated users should not be allowed to delete");
+ } catch (EJBAccessException e) {
+ // Good, Unauthenticated users cannot delete things
+ }
+
+ try {
+ // Read access should be allowed
+
+ List<Movie> list = movies.getMovies();
+
+ } catch (EJBAccessException e) {
+ fail("Read access should be allowed");
+ }
+
+ }
+ }
+
+# Running
+
+
+ -------------------------------------------------------
+ T E S T S
+ -------------------------------------------------------
+ Running org.superbiz.injection.secure.MovieTest
+ INFO -
********************************************************************************
+ INFO - OpenEJB http://openejb.apache.org/
+ INFO - Startup: Fri Jul 20 08:42:53 EDT 2012
+ INFO - Copyright 1999-2012 (C) Apache OpenEJB Project, All Rights Reserved.
+ INFO - Version: 4.1.0-SNAPSHOT
+ INFO - Build date: 20120720
+ INFO - Build time: 08:33
+ INFO -
********************************************************************************
+ INFO - openejb.home =
/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3
+ INFO - openejb.base =
/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3
+ INFO - Created new singletonService
org.apache.openejb.cdi.ThreadSingletonServiceImpl@38ee6681
+ INFO - Succeeded in installing singleton service
+ INFO - Using 'javax.ejb.embeddable.EJBContainer=true'
+ INFO - Cannot find the configuration file [conf/openejb.xml]. Will
attempt to create one for the beans deployed.
+ INFO - Configuring Service(id=Default Security Service,
type=SecurityService, provider-id=Default Security Service)
+ INFO - Configuring Service(id=Default Transaction Manager,
type=TransactionManager, provider-id=Default Transaction Manager)
+ INFO - Configuring Service(id=movieDatabase, type=Resource,
provider-id=Default JDBC Database)
+ INFO - Creating TransactionManager(id=Default Transaction Manager)
+ INFO - Creating SecurityService(id=Default Security Service)
+ INFO - Creating Resource(id=movieDatabase)
+ INFO - Beginning load:
/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3/target/classes
+ INFO - Configuring enterprise application:
/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3
+ INFO - Auto-deploying ejb Movies: EjbDeployment(deployment-id=Movies)
+ INFO - Configuring Service(id=Default Stateful Container, type=Container,
provider-id=Default Stateful Container)
+ INFO - Auto-creating a container for bean Movies: Container(type=STATEFUL,
id=Default Stateful Container)
+ INFO - Creating Container(id=Default Stateful Container)
+ INFO - Using directory /tmp for stateful session passivation
+ INFO - Configuring Service(id=Default Managed Container, type=Container,
provider-id=Default Managed Container)
+ INFO - Auto-creating a container for bean
org.superbiz.injection.secure.MovieTest: Container(type=MANAGED, id=Default
Managed Container)
+ INFO - Creating Container(id=Default Managed Container)
+ INFO - Using directory /tmp for stateful session passivation
+ INFO - Configuring PersistenceUnit(name=movie-unit)
+ INFO - Auto-creating a Resource with id 'movieDatabaseNonJta' of type
'DataSource for 'movie-unit'.
+ INFO - Configuring Service(id=movieDatabaseNonJta, type=Resource,
provider-id=movieDatabase)
+ INFO - Creating Resource(id=movieDatabaseNonJta)
+ INFO - Adjusting PersistenceUnit movie-unit <non-jta-data-source> to
Resource ID 'movieDatabaseNonJta' from 'movieDatabaseUnmanaged'
+ INFO - Enterprise application
"/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3" loaded.
+ INFO - Assembling app:
/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3
+ SEVERE - JAVA AGENT NOT INSTALLED. The JPA Persistence Provider requested
installation of a ClassFileTransformer which requires a JavaAgent. See
http://openejb.apache.org/3.0/javaagent.html
+ INFO - PersistenceUnit(name=movie-unit,
provider=org.apache.openjpa.persistence.PersistenceProviderImpl) - provider
time 268ms
+ INFO -
Jndi(name="java:global/testing-security-3/Movies!org.superbiz.injection.secure.Movies")
+ INFO - Jndi(name="java:global/testing-security-3/Movies")
+ INFO - Existing thread singleton service in SystemInstance()
org.apache.openejb.cdi.ThreadSingletonServiceImpl@38ee6681
+ INFO - OpenWebBeans Container is starting...
+ INFO - Adding OpenWebBeansPlugin : [CdiPlugin]
+ INFO - All injection points are validated successfully.
+ INFO - OpenWebBeans Container has started, it took 170 ms.
+ INFO - Created Ejb(deployment-id=Movies, ejb-name=Movies,
container=Default Stateful Container)
+ INFO - Started Ejb(deployment-id=Movies, ejb-name=Movies,
container=Default Stateful Container)
+ INFO - Deployed
Application(path=/home/boto/dev/ws/openejb_trunk/openejb/examples/testing-security-3)
+ 20-Jul-2012 8:42:55 AM null openjpa.Runtime
+ INFO: Starting OpenJPA 2.2.0
+ 20-Jul-2012 8:42:56 AM null openjpa.jdbc.JDBC
+ INFO: Using dictionary class "org.apache.openjpa.jdbc.sql.HSQLDictionary"
(HSQL Database Engine 2.2.8 ,HSQL Database Engine Driver 2.2.8).
+ 20-Jul-2012 8:42:57 AM null openjpa.Enhance
+ INFO: Creating subclass and redefining methods for "[class
org.superbiz.injection.secure.Movie]". This means that your application will be
less efficient than it would if you ran the OpenJPA enhancer.
+ INFO - Logging in
+ INFO - Logging out
+ INFO - EJBContainer already initialized. Call ejbContainer.close() to
allow reinitialization
+ INFO - Logging in
+ INFO - Logging out
+ INFO - EJBContainer already initialized. Call ejbContainer.close() to
allow reinitialization
+ Tests run: 3, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 6.069 sec
+
+ Results :
+
+ Tests run: 3, Failures: 0, Errors: 0, Skipped: 0
+
Added: openejb/trunk/openejb/examples/testing-security-3/build.xml
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/build.xml?rev=1363758&view=auto
==============================================================================
--- openejb/trunk/openejb/examples/testing-security-3/build.xml (added)
+++ openejb/trunk/openejb/examples/testing-security-3/build.xml Fri Jul 20
12:55:03 2012
@@ -0,0 +1,119 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+
+<!-- $Rev: 607077 $ $Date: 2007-12-27 06:55:23 -0800 (Thu, 27 Dec 2007) $ -->
+
+<project name="MyProject" default="dist" basedir="."
xmlns:artifact="antlib:org.apache.maven.artifact.ant">
+
+ <!-- ===============================================================
+
+ HOW TO RUN
+
+ Download
http://archive.apache.org/dist/maven/binaries/maven-ant-tasks-2.0.9.jar
+ Then execute ant as follows:
+
+ ant -lib maven-ant-tasks-2.0.9.jar
+
+ NOTE
+
+ You do NOT need maven-ant-tasks-2.0.9.jar to use OpenEJB for embedded EJB
+ testing with Ant. It is simply used in this example to make the build.xml
+ a bit simpler. As long as OpenEJB and it's required libraries are in the
+ <junit> classpath, the tests will run with OpenEJB embedded.
+
+ ================================================================= -->
+
+ <artifact:remoteRepository id="apache.snapshot.repository"
url="http://repository.apache.org/snapshots/"/>
+ <artifact:remoteRepository id="m2.repository"
url="http://repo1.maven.org/maven2/"/>
+
+ <!-- Build Classpath -->
+ <artifact:dependencies pathId="classpath.main">
+ <dependency groupId="org.apache.openejb" artifactId="javaee-api-embedded"
version="6.0-3"/>
+ </artifact:dependencies>
+
+ <!-- Test Build Classpath -->
+ <artifact:dependencies pathId="classpath.test.build">
+ <dependency groupId="junit" artifactId="junit" version="4.3.1"/>
+ </artifact:dependencies>
+
+ <!-- Test Run Classpath -->
+ <artifact:dependencies pathId="classpath.test.run">
+ <remoteRepository refid="apache.snapshot.repository"/>
+ <remoteRepository refid="m2.repository"/>
+
+ <dependency groupId="org.apache.openejb" artifactId="openejb-core"
version="4.0.0-beta-1"/>
+ <dependency groupId="junit" artifactId="junit" version="4.3.1"/>
+ </artifact:dependencies>
+
+ <!-- Properties -->
+
+ <property name="src.main.java" location="src/main/java"/>
+ <property name="src.main.resources" location="src/main/resources"/>
+ <property name="src.test.java" location="src/test/java"/>
+ <property name="build.main" location="target/classes"/>
+ <property name="build.test" location="target/test-classes"/>
+ <property name="test.reports" location="target/test-reports"/>
+ <property name="dist" location="target"/>
+
+
+ <target name="init">
+ <mkdir dir="${build.main}"/>
+ <mkdir dir="${build.test}"/>
+ <mkdir dir="${test.reports}"/>
+ </target>
+
+ <target name="compile" depends="init">
+
+ <javac srcdir="${src.main.java}" destdir="${build.main}">
+ <classpath refid="classpath.main"/>
+ </javac>
+ <copy todir="${build.main}">
+ <fileset dir="${src.main.resources}"/>
+ </copy>
+
+ <javac srcdir="${src.test.java}" destdir="${build.test}">
+ <classpath location="${build.main}"/>
+ <classpath refid="classpath.main"/>
+ <classpath refid="classpath.test.build"/>
+ </javac>
+ </target>
+
+ <target name="test" depends="compile">
+ <junit fork="yes" printsummary="yes">
+ <classpath location="${build.main}"/>
+ <classpath location="${build.test}"/>
+ <classpath refid="classpath.main"/>
+ <classpath refid="classpath.test.build"/>
+ <classpath refid="classpath.test.run"/>
+
+ <formatter type="plain"/>
+
+ <batchtest fork="yes" todir="${test.reports}">
+ <fileset dir="${src.test.java}">
+ <include name="**/*Test.java"/>
+ </fileset>
+ </batchtest>
+ </junit>
+ </target>
+
+ <target name="dist" depends="test">
+ <jar jarfile="${dist}/myproject-1.0.jar" basedir="${build.main}"/>
+ </target>
+
+</project>
Added: openejb/trunk/openejb/examples/testing-security-3/pom.xml
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/pom.xml?rev=1363758&view=auto
==============================================================================
--- openejb/trunk/openejb/examples/testing-security-3/pom.xml (added)
+++ openejb/trunk/openejb/examples/testing-security-3/pom.xml Fri Jul 20
12:55:03 2012
@@ -0,0 +1,104 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+
+<!-- $Rev: 636494 $ $Date: 2008-03-12 21:24:02 +0100 (Wed, 12 Mar 2008) $ -->
+
+<project xmlns="http://maven.apache.org/POM/4.0.0";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
http://maven.apache.org/maven-v4_0_0.xsd";>
+ <modelVersion>4.0.0</modelVersion>
+ <groupId>org.superbiz</groupId>
+ <artifactId>testing-security-3</artifactId>
+ <packaging>jar</packaging>
+ <version>1.1-SNAPSHOT</version>
+ <name>OpenEJB :: Examples :: Testing Security Service Provider</name>
+ <properties>
+ <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+ </properties>
+ <build>
+ <defaultGoal>install</defaultGoal>
+ <plugins>
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-compiler-plugin</artifactId>
+ <version>2.4</version>
+ <configuration>
+ <source>1.6</source>
+ <target>1.6</target>
+ </configuration>
+ </plugin>
+ <plugin>
+ <groupId>org.apache.maven.plugins</groupId>
+ <artifactId>maven-surefire-plugin</artifactId>
+ <version>2.12</version>
+ <configuration>
+ <forkMode>pertest</forkMode>
+ </configuration>
+ </plugin>
+ </plugins>
+ </build>
+ <repositories>
+ <repository>
+ <id>apache-m2-snapshot</id>
+ <name>Apache Snapshot Repository</name>
+ <url>http://repository.apache.org/snapshots</url>
+ </repository>
+ </repositories>
+ <dependencies>
+ <dependency>
+ <groupId>org.apache.openejb</groupId>
+ <artifactId>javaee-api</artifactId>
+ <version>6.0-4</version>
+ <scope>provided</scope>
+ </dependency>
+ <dependency>
+ <groupId>junit</groupId>
+ <artifactId>junit</artifactId>
+ <version>4.10</version>
+ <scope>test</scope>
+ </dependency>
+
+ <!--
+ The <scope>test</scope> guarantees that non of your runtime
+ code is dependent on any OpenEJB classes.
+ -->
+ <dependency>
+ <groupId>org.apache.openejb</groupId>
+ <artifactId>openejb-core</artifactId>
+ <version>4.1.0-SNAPSHOT</version>
+ <scope>provided</scope>
+ </dependency>
+
+ </dependencies>
+
+ <!--
+ This section allows you to configure where to publish libraries for sharing.
+ It is not required and may be deleted. For more information see:
+ http://maven.apache.org/plugins/maven-deploy-plugin/
+ -->
+ <distributionManagement>
+ <repository>
+ <id>localhost</id>
+ <url>file://${basedir}/target/repo/</url>
+ </repository>
+ <snapshotRepository>
+ <id>localhost</id>
+ <url>file://${basedir}/target/snapshot-repo/</url>
+ </snapshotRepository>
+ </distributionManagement>
+
+</project>
Added:
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movie.java
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movie.java?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movie.java
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movie.java
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,62 @@
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.superbiz.injection.secure;
+
+import javax.persistence.Entity;
+
+@Entity
+public class Movie {
+
+ private String director;
+ private String title;
+ private int year;
+
+ public Movie() {
+ }
+
+ public Movie(String director, String title, int year) {
+ this.director = director;
+ this.title = title;
+ this.year = year;
+ }
+
+ public String getDirector() {
+ return director;
+ }
+
+ public void setDirector(String director) {
+ this.director = director;
+ }
+
+ public String getTitle() {
+ return title;
+ }
+
+ public void setTitle(String title) {
+ this.title = title;
+ }
+
+ public int getYear() {
+ return year;
+ }
+
+ public void setYear(int year) {
+ this.year = year;
+ }
+
+
+}
Added:
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movies.java
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movies.java?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movies.java
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/Movies.java
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,55 @@
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.superbiz.injection.secure;
+
+//START SNIPPET: code
+
+import javax.annotation.security.PermitAll;
+import javax.annotation.security.RolesAllowed;
+import javax.ejb.Stateful;
+import javax.ejb.TransactionAttribute;
+import javax.ejb.TransactionAttributeType;
+import javax.persistence.EntityManager;
+import javax.persistence.PersistenceContext;
+import javax.persistence.PersistenceContextType;
+import javax.persistence.Query;
+import java.util.List;
+
+@Stateful
+public class Movies {
+
+ @PersistenceContext(unitName = "movie-unit", type =
PersistenceContextType.EXTENDED)
+ private EntityManager entityManager;
+
+ @RolesAllowed({"Employee", "Manager"})
+ public void addMovie(Movie movie) throws Exception {
+ entityManager.persist(movie);
+ }
+
+ @RolesAllowed({"Manager"})
+ public void deleteMovie(Movie movie) throws Exception {
+ entityManager.remove(movie);
+ }
+
+ @PermitAll
+ @TransactionAttribute(TransactionAttributeType.SUPPORTS)
+ public List<Movie> getMovies() throws Exception {
+ Query query = entityManager.createQuery("SELECT m from Movie as m");
+ return query.getResultList();
+ }
+}
+//END SNIPPET: code
Added:
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/MyLoginProvider.java
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/MyLoginProvider.java?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/MyLoginProvider.java
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/main/java/org/superbiz/injection/secure/MyLoginProvider.java
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,40 @@
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.superbiz.injection.secure;
+
+import org.apache.openejb.core.security.jaas.LoginProvider;
+
+import javax.security.auth.login.FailedLoginException;
+import java.util.Arrays;
+import java.util.List;
+
+public class MyLoginProvider implements LoginProvider {
+
+
+ @Override
+ public List<String> authenticate(String user, String password) throws
FailedLoginException {
+ if ("paul".equals(user)) {
+ return Arrays.asList("Manager", "rockstar", "beatle");
+ }
+
+ if ("eddie".equals(user) && "jump".equals(password)) {
+ return Arrays.asList("Employee", "rockstar", "vanhalen");
+ }
+
+ throw new FailedLoginException("Bad user or password!");
+ }
+}
Added:
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/persistence.xml
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/persistence.xml?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/persistence.xml
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/persistence.xml
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<persistence xmlns="http://java.sun.com/xml/ns/persistence"; version="1.0">
+
+ <persistence-unit name="movie-unit">
+ <jta-data-source>movieDatabase</jta-data-source>
+ <non-jta-data-source>movieDatabaseUnmanaged</non-jta-data-source>
+ <class>org.superbiz.injection.secure.Movie</class>
+
+ <properties>
+ <property name="openjpa.jdbc.SynchronizeMappings"
value="buildSchema(ForeignKeys=true)"/>
+ </properties>
+ </persistence-unit>
+</persistence>
\ No newline at end of file
Added:
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/org.apache.openejb.core.security.jaas.LoginProvider
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/org.apache.openejb.core.security.jaas.LoginProvider?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/org.apache.openejb.core.security.jaas.LoginProvider
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/main/resources/META-INF/services/org.apache.openejb.core.security.jaas.LoginProvider
Fri Jul 20 12:55:03 2012
@@ -0,0 +1 @@
+org.superbiz.injection.secure.MyLoginProvider
\ No newline at end of file
Added:
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/MovieTest.java
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/MovieTest.java?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/MovieTest.java
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/test/java/org/superbiz/injection/secure/MovieTest.java
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,134 @@
+/**
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.superbiz.injection.secure;
+
+import junit.framework.TestCase;
+
+import javax.ejb.EJB;
+import javax.ejb.EJBAccessException;
+import javax.ejb.embeddable.EJBContainer;
+import javax.naming.Context;
+import javax.naming.InitialContext;
+import java.util.List;
+import java.util.Properties;
+
+//START SNIPPET: code
+public class MovieTest extends TestCase {
+
+ @EJB
+ private Movies movies;
+
+ protected void setUp() throws Exception {
+
+ // Uncomment this line to set the login/logout functionality on Debug
+ //System.setProperty("log4j.category.OpenEJB.security", "debug");
+
+ Properties p = new Properties();
+ p.put("movieDatabase", "new://Resource?type=DataSource");
+ p.put("movieDatabase.JdbcDriver", "org.hsqldb.jdbcDriver");
+ p.put("movieDatabase.JdbcUrl", "jdbc:hsqldb:mem:moviedb");
+
+ EJBContainer.createEJBContainer(p).getContext().bind("inject", this);
+ }
+
+ public void testAsManager() throws Exception {
+ Properties p = new Properties();
+ p.put(Context.INITIAL_CONTEXT_FACTORY,
"org.apache.openejb.core.LocalInitialContextFactory");
+ p.setProperty("openejb.authentication.realmName",
"ServiceProviderLogin");
+ p.put(Context.SECURITY_PRINCIPAL, "paul");
+ p.put(Context.SECURITY_CREDENTIALS, "");
+
+ InitialContext context = new InitialContext(p);
+
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir Dogs",
1992));
+ movies.addMovie(new Movie("Joel Coen", "Fargo", 1996));
+ movies.addMovie(new Movie("Joel Coen", "The Big Lebowski", 1998));
+
+ List<Movie> list = movies.getMovies();
+ assertEquals("List.size()", 3, list.size());
+
+ for (Movie movie : list) {
+ movies.deleteMovie(movie);
+ }
+
+ assertEquals("Movies.getMovies()", 0, movies.getMovies().size());
+ } finally {
+ context.close();
+ }
+ }
+
+ public void testAsEmployee() throws Exception {
+ Properties p = new Properties();
+ p.put(Context.INITIAL_CONTEXT_FACTORY,
"org.apache.openejb.core.LocalInitialContextFactory");
+ p.setProperty("openejb.authentication.realmName",
"ServiceProviderLogin");
+ p.put(Context.SECURITY_PRINCIPAL, "eddie");
+ p.put(Context.SECURITY_CREDENTIALS, "jump");
+
+ InitialContext context = new InitialContext(p);
+
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir Dogs",
1992));
+ movies.addMovie(new Movie("Joel Coen", "Fargo", 1996));
+ movies.addMovie(new Movie("Joel Coen", "The Big Lebowski", 1998));
+
+ List<Movie> list = movies.getMovies();
+ assertEquals("List.size()", 3, list.size());
+
+ for (Movie movie : list) {
+ try {
+ movies.deleteMovie(movie);
+ fail("Employees should not be allowed to delete");
+ } catch (EJBAccessException e) {
+ // Good, Employees cannot delete things
+ }
+ }
+
+ // The list should still be three movies long
+ assertEquals("Movies.getMovies()", 3, movies.getMovies().size());
+ } finally {
+ context.close();
+ }
+ }
+
+ public void testUnauthenticated() throws Exception {
+ try {
+ movies.addMovie(new Movie("Quentin Tarantino", "Reservoir Dogs",
1992));
+ fail("Unauthenticated users should not be able to add movies");
+ } catch (EJBAccessException e) {
+ // Good, guests cannot add things
+ }
+
+ try {
+ movies.deleteMovie(null);
+ fail("Unauthenticated users should not be allowed to delete");
+ } catch (EJBAccessException e) {
+ // Good, Unauthenticated users cannot delete things
+ }
+
+ try {
+ // Read access should be allowed
+
+ List<Movie> list = movies.getMovies();
+
+ } catch (EJBAccessException e) {
+ fail("Read access should be allowed");
+ }
+
+ }
+}
+//END SNIPPET: code
Added:
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/groups.properties
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/test/resources/groups.properties?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/groups.properties
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/groups.properties
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,2 @@
+Manager=jane
+Employee=jane,joe
Added:
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/users.properties
URL:
http://svn.apache.org/viewvc/openejb/trunk/openejb/examples/testing-security-3/src/test/resources/users.properties?rev=1363758&view=auto
==============================================================================
---
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/users.properties
(added)
+++
openejb/trunk/openejb/examples/testing-security-3/src/test/resources/users.properties
Fri Jul 20 12:55:03 2012
@@ -0,0 +1,2 @@
+joe=cool
+jane=waterfall
\ No newline at end of file
