From 4bd38bb9c141a4b862ae16c45b72e5e4fa62edab Mon Sep 17 00:00:00 2001 From: zschwarz Date: Wed, 5 Oct 2016 12:04:17 +0200 Subject: [PATCH] KEYLOAK-3663 OIDC servlet filter --- .../DeploymentArchiveProcessor.java | 24 ++++++++--- .../org/keycloak/testsuite/util/IOUtil.java | 23 ++++++---- .../AbstractDemoFilterServletAdapterTest.java | 42 +++++++++++++++++++ .../adapter/WildflyOIDCFilterAdapterTest.java | 12 ++++++ 4 files changed, 86 insertions(+), 15 deletions(-) create mode 100644 testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/adapter/servlet/AbstractDemoFilterServletAdapterTest.java create mode 100644 testsuite/integration-arquillian/tests/other/adapters/jboss/wildfly/src/test/java/org/keycloak/testsuite/adapter/WildflyOIDCFilterAdapterTest.java diff --git a/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/arquillian/DeploymentArchiveProcessor.java b/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/arquillian/DeploymentArchiveProcessor.java index d610957c29..fe3bce8269 100644 --- a/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/arquillian/DeploymentArchiveProcessor.java +++ b/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/arquillian/DeploymentArchiveProcessor.java @@ -49,9 +49,9 @@ import static org.keycloak.testsuite.util.IOUtil.loadJson; import static org.keycloak.testsuite.util.IOUtil.loadXML; import static org.keycloak.testsuite.util.IOUtil.modifyDocElementAttribute; import static org.keycloak.testsuite.util.IOUtil.modifyDocElementValue; -import static org.keycloak.testsuite.util.IOUtil.removeElementFromDoc; +import static org.keycloak.testsuite.util.IOUtil.removeElementsFromDoc; + -; /** * @author tkyjovsk @@ -97,7 +97,7 @@ public class DeploymentArchiveProcessor implements ApplicationArchiveProcessor { if (archive.contains(adapterConfigPath)) { log.info("Modifying adapter config " + adapterConfigPath + " in " + archive.getName()); if (adapterConfigPath.equals(SAML_ADAPTER_CONFIG_PATH)) { // SAML adapter config - log.info("Modyfying saml adapter config in " + archive.getName()); + log.info("Modifying saml adapter config in " + archive.getName()); Document doc = loadXML(archive.get("WEB-INF/keycloak-saml.xml").getAsset().openStream()); if (authServerSslRequired) { @@ -148,7 +148,17 @@ public class DeploymentArchiveProcessor implements ApplicationArchiveProcessor { } catch (IOException ex) { log.log(Level.FATAL, "Cannot serialize adapter config to JSON.", ex); } + + log.info("Adding OIDCFilter dependencies to " + archive.getName()); + ((WebArchive) archive).addAsLibraries(KeycloakDependenciesResolver.resolveDependencies("org.keycloak:keycloak-servlet-filter-adapter:" + System.getProperty("project.version"))); + } + + } else if (archive.getName().equals("customer-portal-subsystem.war")) { + + log.info("Adding OIDCFilter dependencies to " + archive.getName()); + ((WebArchive) archive).addAsLibraries(KeycloakDependenciesResolver.resolveDependencies("org.keycloak:keycloak-servlet-filter-adapter:" + System.getProperty("project.version"))); + } } @@ -210,9 +220,11 @@ public class DeploymentArchiveProcessor implements ApplicationArchiveProcessor { appendChildInDocument(webXmlDoc, "web-app", filterMapping); //finally we need to remove all keycloak related configuration from web.xml - removeElementFromDoc(webXmlDoc, "web-app", "security-constraint"); - removeElementFromDoc(webXmlDoc, "web-app", "login-config"); - removeElementFromDoc(webXmlDoc, "web-app", "security-role"); + removeElementsFromDoc(webXmlDoc, "web-app", "security-constraint"); + removeElementsFromDoc(webXmlDoc, "web-app", "login-config"); + removeElementsFromDoc(webXmlDoc, "web-app", "security-role"); + + } diff --git a/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/IOUtil.java b/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/IOUtil.java index 015910bf4e..345e77eb8f 100644 --- a/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/IOUtil.java +++ b/testsuite/integration-arquillian/tests/base/src/main/java/org/keycloak/testsuite/util/IOUtil.java @@ -129,7 +129,7 @@ public class IOUtil { node.setTextContent(node.getTextContent().replace(regex, replacement)); } - public static void removeElementFromDoc(Document doc, String parentTag, String removeNode) { + public static void removeElementsFromDoc(Document doc, String parentTag, String removeNode) { NodeList nodes = doc.getElementsByTagName(parentTag); if (nodes.getLength() != 1) { log.warn("Not able or ambiguous to find element: " + parentTag); @@ -143,18 +143,23 @@ public class IOUtil { } NodeList removeNodes = parentElement.getElementsByTagName(removeNode); - if (removeNodes.getLength() != 1) { - log.warn("Not able or ambiguous to find element: " + removeNode + " within node " + parentTag); - return; - } - - Element removeElement = (Element) removeNodes.item(0); - if (removeElement == null) { + if (removeNodes == null) { log.warn("Not able to find element: " + removeNode + " within node " + parentTag); return; } - parentElement.removeChild(removeElement); + for (int i = 0; i < removeNodes.getLength();){ + Element removeElement = (Element) removeNodes.item(i); + if (removeElement == null) { + log.warn("Not able to find element: " + removeNode + " within node " + parentTag); + return; + } + + log.info("Removing node " + removeNode); + parentElement.removeChild(removeElement); + + } + } public static String getElementTextContent(Document doc, String path) { diff --git a/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/adapter/servlet/AbstractDemoFilterServletAdapterTest.java b/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/adapter/servlet/AbstractDemoFilterServletAdapterTest.java new file mode 100644 index 0000000000..b53fdcc7bc --- /dev/null +++ b/testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/adapter/servlet/AbstractDemoFilterServletAdapterTest.java @@ -0,0 +1,42 @@ +package org.keycloak.testsuite.adapter.servlet; + +import org.junit.Ignore; +import org.junit.Test; +import org.keycloak.testsuite.arquillian.annotation.UseServletFilter; + +/** + * Created by zschwarz on 9/14/16. + */ + +@UseServletFilter(filterName = "oidc-filter", filterClass = "org.keycloak.adapters.servlet.KeycloakOIDCFilter") +public abstract class AbstractDemoFilterServletAdapterTest extends AbstractDemoServletsAdapterTest { + + + @Test + @Override + @Ignore + public void testCustomerPortalWithSubsystemSettings() { + + } + + @Test + @Override + @Ignore + public void testAuthenticated() { + + } + + @Test + @Override + @Ignore + public void testOIDCParamsForwarding() { + + } + + @Test + @Override + @Ignore + public void testClientWithJwksUri() { + + } +} diff --git a/testsuite/integration-arquillian/tests/other/adapters/jboss/wildfly/src/test/java/org/keycloak/testsuite/adapter/WildflyOIDCFilterAdapterTest.java b/testsuite/integration-arquillian/tests/other/adapters/jboss/wildfly/src/test/java/org/keycloak/testsuite/adapter/WildflyOIDCFilterAdapterTest.java new file mode 100644 index 0000000000..3427f33a31 --- /dev/null +++ b/testsuite/integration-arquillian/tests/other/adapters/jboss/wildfly/src/test/java/org/keycloak/testsuite/adapter/WildflyOIDCFilterAdapterTest.java @@ -0,0 +1,12 @@ +package org.keycloak.testsuite.adapter; + +import org.keycloak.testsuite.adapter.servlet.AbstractDemoFilterServletAdapterTest; +import org.keycloak.testsuite.arquillian.annotation.AppServerContainer; + +/** + * Created by zschwarz on 9/14/16. + */ + +@AppServerContainer("app-server-wildfly") +public class WildflyOIDCFilterAdapterTest extends AbstractDemoFilterServletAdapterTest{ +}