[KEYCLOAK-11485] Add test case for the as7-eap6 SAML subsystem

2019-09-18 23:43:09 -03:00 · 2019-09-18 23:43:09 -03:00 · b833ce9dd3
commit b833ce9dd3
parent b45f5980e0
3 changed files with 58 additions and 6 deletions
--- a/adapters/saml/as7-eap6/subsystem/pom.xml
+++ b/adapters/saml/as7-eap6/subsystem/pom.xml
@ -108,6 +108,12 @@ projects that depend on this project.-->
            <artifactId>jboss-as-controller</artifactId>
        </dependency>

+        <dependency>
+            <groupId>org.jboss.as</groupId>
+            <artifactId>jboss-as-subsystem-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+
        <dependency>
            <groupId>junit</groupId>
            <artifactId>junit</artifactId>
--- a/adapters/saml/as7-eap6/subsystem/src/test/java/org/keycloak/subsystem/saml/as7/SubsystemParsingTestCase.java
+++ b/adapters/saml/as7-eap6/subsystem/src/test/java/org/keycloak/subsystem/saml/as7/SubsystemParsingTestCase.java
@ -0,0 +1,39 @@
+/*
+ * Copyright 2019 Red Hat, Inc. and/or its affiliates
+ * and other contributors as indicated by the @author tags.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.keycloak.subsystem.saml.as7;
+
+import java.io.IOException;
+
+import org.jboss.as.subsystem.test.AbstractSubsystemBaseTest;
+
+
+/**
+ * Tests all management expects for subsystem, parsing, marshaling, model definition and other
+ * Here is an example that allows you a fine grained controller over what is tested and how. So it can give you ideas what can be done and tested.
+ *
+ */
+public class SubsystemParsingTestCase extends AbstractSubsystemBaseTest {
+
+    public SubsystemParsingTestCase() {
+        super(KeycloakSamlExtension.SUBSYSTEM_NAME, new KeycloakSamlExtension());
+    }
+
+    @Override
+    protected String getSubsystemXml() throws IOException {
+        return readResource("keycloak-saml-1.2.xml");
+    }
+}
--- a/adapters/saml/as7-eap6/subsystem/src/test/resources/org/keycloak/subsystem/saml/as7/keycloak-saml-1.2.xml
+++ b/adapters/saml/as7-eap6/subsystem/src/test/resources/org/keycloak/subsystem/saml/as7/keycloak-saml-1.2.xml
@ -1,5 +1,5 @@
 <!--
-  ~ Copyright 2016 Red Hat, Inc. and/or its affiliates
+  ~ Copyright 2019 Red Hat, Inc. and/or its affiliates
  ~ and other contributors as indicated by the @author tags.
  ~
  ~ Licensed under the Apache License, Version 2.0 (the "License");
@ -21,30 +21,37 @@
            sslPolicy="EXTERNAL"
            nameIDPolicyFormat="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"
            logoutPage="/logout.jsp"
+            forceAuthentication="false"
            keepDOMAssertion="false"
-            forceAuthentication="false">
+            isPassive="true"
+            turnOffChangeSessionIdOnLogin="true">

            <Keys>
                <Key encryption="true" signing="true">
                    <PrivateKeyPem>my_key.pem</PrivateKeyPem>
                    <PublicKeyPem>my_key.pub</PublicKeyPem>
                    <CertificatePem>cert.cer</CertificatePem>
-                    <KeyStore resource="/WEB-INF/keystore.jks" password="store123">
+                    <KeyStore resource="/WEB-INF/keystore.jks" password="store123" file="test" alias="test" type="jks">
                        <PrivateKey alias="http://localhost:8080/sales-post-enc/" password="test123"/>
                        <Certificate alias="http://localhost:8080/sales-post-enc/"/>
                    </KeyStore>
                </Key>
            </Keys>
-            <PrincipalNameMapping policy="FROM_NAME_ID"/>
+            <PrincipalNameMapping policy="FROM_NAME_ID" attribute="test"/>
            <RoleIdentifiers>
                <Attribute name="Role"/>
                <Attribute name="Role2"/>
            </RoleIdentifiers>
-            <IDP entityID="idp">
+            <RoleMappingsProvider id="properties-based-role-mapper">
+                <Property name="properties.file.location" value="test-roles.properties"/>
+                <Property name="another.property" value="another.value"/>
+            </RoleMappingsProvider>
+            <IDP entityID="idp" signaturesRequired="true" signatureAlgorithm="test" signatureCanonicalizationMethod="test">
                <SingleSignOnService signRequest="true"
                                     validateResponseSignature="true"
                                     validateAssertionSignature="true"
                                     requestBinding="POST"
+                                     responseBinding="POST"
                                     bindingUrl="http://localhost:8080/auth/realms/saml-demo/protocol/saml"
                                     assertionConsumerServiceUrl="acsUrl"/>
                <SingleLogoutService