Spencer Gibb
5 years ago
2 changed files with 9 additions and 171 deletions
@ -1,154 +0,0 @@
@@ -1,154 +0,0 @@
|
||||
/* |
||||
* Copyright 2013-2019 the original author or authors. |
||||
* |
||||
* Licensed under the Apache License, Version 2.0 (the "License"); |
||||
* you may not use this file except in compliance with the License. |
||||
* You may obtain a copy of the License at |
||||
* |
||||
* https://www.apache.org/licenses/LICENSE-2.0
|
||||
* |
||||
* Unless required by applicable law or agreed to in writing, software |
||||
* distributed under the License is distributed on an "AS IS" BASIS, |
||||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
||||
* See the License for the specific language governing permissions and |
||||
* limitations under the License. |
||||
*/ |
||||
|
||||
package org.springframework.cloud.gateway.filter.factory; |
||||
|
||||
import java.security.Principal; |
||||
import java.util.Collections; |
||||
import java.util.Map; |
||||
|
||||
import org.apache.commons.logging.Log; |
||||
import org.apache.commons.logging.LogFactory; |
||||
import org.junit.Test; |
||||
import org.junit.runner.RunWith; |
||||
import reactor.core.publisher.Mono; |
||||
|
||||
import org.springframework.beans.factory.annotation.Autowired; |
||||
import org.springframework.beans.factory.annotation.Value; |
||||
import org.springframework.boot.SpringBootConfiguration; |
||||
import org.springframework.boot.autoconfigure.EnableAutoConfiguration; |
||||
import org.springframework.boot.test.context.SpringBootTest; |
||||
import org.springframework.cloud.gateway.filter.GatewayFilter; |
||||
import org.springframework.cloud.gateway.filter.ratelimit.KeyResolver; |
||||
import org.springframework.cloud.gateway.filter.ratelimit.PrincipalNameKeyResolver; |
||||
import org.springframework.cloud.gateway.route.RouteLocator; |
||||
import org.springframework.cloud.gateway.route.builder.RouteLocatorBuilder; |
||||
import org.springframework.cloud.gateway.test.BaseWebClientTests; |
||||
import org.springframework.cloud.netflix.ribbon.RibbonClient; |
||||
import org.springframework.cloud.netflix.ribbon.RibbonClients; |
||||
import org.springframework.context.annotation.Bean; |
||||
import org.springframework.security.config.web.server.ServerHttpSecurity; |
||||
import org.springframework.security.core.userdetails.MapReactiveUserDetailsService; |
||||
import org.springframework.security.core.userdetails.User; |
||||
import org.springframework.security.core.userdetails.UserDetails; |
||||
import org.springframework.security.web.server.SecurityWebFilterChain; |
||||
import org.springframework.test.annotation.DirtiesContext; |
||||
import org.springframework.test.context.junit4.SpringRunner; |
||||
import org.springframework.web.bind.annotation.RequestMapping; |
||||
import org.springframework.web.bind.annotation.RestController; |
||||
|
||||
import static org.assertj.core.api.Assertions.assertThat; |
||||
import static org.springframework.boot.test.context.SpringBootTest.WebEnvironment.RANDOM_PORT; |
||||
|
||||
@RunWith(SpringRunner.class) |
||||
@SpringBootTest(webEnvironment = RANDOM_PORT, properties = "debug=true") |
||||
@DirtiesContext |
||||
public class HystrixGatewayFilterFactoryPrincipalTests extends BaseWebClientTests { |
||||
|
||||
@Autowired |
||||
private TestPrincipalGatewayFilterFactory testFilterFactory; |
||||
|
||||
@Test |
||||
public void hystrixPrincipalNotLost() { |
||||
testClient.get().uri("/hystrixprincipal").headers(httpHeaders -> { |
||||
httpHeaders.setBasicAuth("user", "password"); |
||||
httpHeaders.set("Host", "www.hystrixsecurity.org"); |
||||
}).exchange().expectStatus().isOk().expectBody().jsonPath("$.principal") |
||||
.isEqualTo("user"); |
||||
assertThat(testFilterFactory.resolvedPrincipal).isEqualTo("user"); |
||||
} |
||||
|
||||
@RestController |
||||
@SpringBootConfiguration |
||||
@EnableAutoConfiguration |
||||
@RibbonClients({ |
||||
@RibbonClient(name = "testservice", configuration = TestRibbonConfig.class) }) |
||||
public static class TestConfig { |
||||
|
||||
@Value("${test.uri}") |
||||
private String uri; |
||||
|
||||
@RequestMapping("/httpbin/hystrixprincipal") |
||||
public Mono<Map<String, String>> hystrixPrincipal(Mono<Principal> principal) { |
||||
return principal.map(Principal::getName).defaultIfEmpty("Unknown") |
||||
.map(s -> Collections.singletonMap("principal", s)); |
||||
} |
||||
|
||||
@Bean |
||||
public RouteLocator hystrixRouteLocator(RouteLocatorBuilder builder, |
||||
TestPrincipalGatewayFilterFactory filterFactory) { |
||||
return builder.routes() |
||||
.route("hystrix_security", r -> r.host("**.hystrixsecurity.org") |
||||
.filters(f -> f.prefixPath("/httpbin") |
||||
.hystrix(config -> config.setName("securitycmd")) |
||||
.filter(filterFactory.apply(""))) |
||||
.uri(uri)) |
||||
.build(); |
||||
} |
||||
|
||||
@Bean |
||||
public TestPrincipalGatewayFilterFactory testPrincipalGatewayFilterFactory() { |
||||
return new TestPrincipalGatewayFilterFactory(); |
||||
} |
||||
|
||||
@Bean |
||||
public RecursiveHttpbinFilter recursiveHttpbinFilter() { |
||||
return new RecursiveHttpbinFilter(); |
||||
} |
||||
|
||||
@Bean |
||||
SecurityWebFilterChain springWebFilterChain(ServerHttpSecurity http) { |
||||
return http.httpBasic().and().authorizeExchange() |
||||
.pathMatchers("/hystrixprincipal").authenticated().anyExchange() |
||||
.permitAll().and().build(); |
||||
} |
||||
|
||||
@Bean |
||||
@SuppressWarnings("deprecation") |
||||
public MapReactiveUserDetailsService reactiveUserDetailsService() { |
||||
UserDetails user = User.withDefaultPasswordEncoder().username("user") |
||||
.password("password").roles("USER").build(); |
||||
return new MapReactiveUserDetailsService(user); |
||||
} |
||||
|
||||
} |
||||
|
||||
public static class TestPrincipalGatewayFilterFactory |
||||
extends AbstractGatewayFilterFactory<Object> { |
||||
|
||||
private final Log log = LogFactory |
||||
.getLog(TestPrincipalGatewayFilterFactory.class); |
||||
|
||||
private KeyResolver keyResolver = new PrincipalNameKeyResolver(); |
||||
|
||||
private String resolvedPrincipal; |
||||
|
||||
public TestPrincipalGatewayFilterFactory() { |
||||
super(Object.class); |
||||
} |
||||
|
||||
@Override |
||||
public GatewayFilter apply(Object config) { |
||||
return (exchange, chain) -> keyResolver.resolve(exchange) |
||||
.defaultIfEmpty("Empty Principal").flatMap(name -> { |
||||
resolvedPrincipal = name; |
||||
return chain.filter(exchange); |
||||
}); |
||||
} |
||||
|
||||
} |
||||
|
||||
} |
||||
Loading…
Reference in new issue