Repair Flaky Tests
The issue turned out to be that OpenSAML first sends two HEAD requests before sending a GET to retrieve the metadata. The way the MockWebServer dispatcher was configured, it would send back the metadata on each request. This created a situation where sockets were being closed by the client before the server had sent all the response, resulting in a broken pipe. The tests would succeed most of the time due to lucky timing between the client closing the socket and the server having sent all of its (unrequested) data. This version sends an expected HEAD response when requested. Issue gh-15395
This commit is contained in:
parent
e90a6b66fe
commit
561c786726
|
@ -20,16 +20,23 @@ import java.io.BufferedReader;
|
||||||
import java.io.File;
|
import java.io.File;
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
import java.io.InputStreamReader;
|
import java.io.InputStreamReader;
|
||||||
|
import java.io.UncheckedIOException;
|
||||||
import java.util.ArrayList;
|
import java.util.ArrayList;
|
||||||
import java.util.Collection;
|
import java.util.Collection;
|
||||||
import java.util.List;
|
import java.util.List;
|
||||||
|
import java.util.Map;
|
||||||
import java.util.Set;
|
import java.util.Set;
|
||||||
|
import java.util.UUID;
|
||||||
|
import java.util.concurrent.ConcurrentHashMap;
|
||||||
import java.util.stream.Collectors;
|
import java.util.stream.Collectors;
|
||||||
|
|
||||||
import net.shibboleth.utilities.java.support.xml.SerializeSupport;
|
import net.shibboleth.utilities.java.support.xml.SerializeSupport;
|
||||||
|
import okhttp3.mockwebserver.Dispatcher;
|
||||||
import okhttp3.mockwebserver.MockResponse;
|
import okhttp3.mockwebserver.MockResponse;
|
||||||
import okhttp3.mockwebserver.MockWebServer;
|
import okhttp3.mockwebserver.MockWebServer;
|
||||||
import org.junit.jupiter.api.BeforeEach;
|
import okhttp3.mockwebserver.RecordedRequest;
|
||||||
|
import org.junit.jupiter.api.AfterAll;
|
||||||
|
import org.junit.jupiter.api.BeforeAll;
|
||||||
import org.junit.jupiter.api.Test;
|
import org.junit.jupiter.api.Test;
|
||||||
import org.opensaml.core.xml.XMLObject;
|
import org.opensaml.core.xml.XMLObject;
|
||||||
import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
|
import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
|
||||||
|
@ -68,28 +75,39 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
OpenSamlInitializationService.initialize();
|
OpenSamlInitializationService.initialize();
|
||||||
}
|
}
|
||||||
|
|
||||||
private String metadata;
|
private static MetadataDispatcher dispatcher = new MetadataDispatcher()
|
||||||
|
.addResponse("/entity.xml", readFile("test-metadata.xml"))
|
||||||
|
.addResponse("/entities.xml", readFile("test-entitiesdescriptor.xml"));
|
||||||
|
|
||||||
private String entitiesDescriptor;
|
private static MockWebServer web = new MockWebServer();
|
||||||
|
|
||||||
@BeforeEach
|
private static String readFile(String fileName) {
|
||||||
public void setup() throws Exception {
|
try {
|
||||||
ClassPathResource resource = new ClassPathResource("test-metadata.xml");
|
ClassPathResource resource = new ClassPathResource(fileName);
|
||||||
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
||||||
this.metadata = reader.lines().collect(Collectors.joining());
|
return reader.lines().collect(Collectors.joining());
|
||||||
}
|
}
|
||||||
resource = new ClassPathResource("test-entitiesdescriptor.xml");
|
|
||||||
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
|
||||||
this.entitiesDescriptor = reader.lines().collect(Collectors.joining());
|
|
||||||
}
|
}
|
||||||
|
catch (IOException ex) {
|
||||||
|
throw new UncheckedIOException(ex);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
@BeforeAll
|
||||||
|
public static void start() throws Exception {
|
||||||
|
web.setDispatcher(dispatcher);
|
||||||
|
web.start();
|
||||||
|
}
|
||||||
|
|
||||||
|
@AfterAll
|
||||||
|
public static void shutdown() throws Exception {
|
||||||
|
web.shutdown();
|
||||||
}
|
}
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenResolvableThenFindByEntityIdReturns() throws Exception {
|
public void withMetadataUrlLocationWhenResolvableThenFindByEntityIdReturns() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
|
||||||
enqueue(server, this.metadata, 3);
|
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url("/entity.xml").toString())
|
||||||
.build();
|
.build();
|
||||||
AssertingPartyMetadata party = parties.findByEntityId("https://idp.example.com/idp/shibboleth");
|
AssertingPartyMetadata party = parties.findByEntityId("https://idp.example.com/idp/shibboleth");
|
||||||
assertThat(party.getEntityId()).isEqualTo("https://idp.example.com/idp/shibboleth");
|
assertThat(party.getEntityId()).isEqualTo("https://idp.example.com/idp/shibboleth");
|
||||||
|
@ -99,14 +117,11 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
assertThat(party.getVerificationX509Credentials()).hasSize(1);
|
assertThat(party.getVerificationX509Credentials()).hasSize(1);
|
||||||
assertThat(party.getEncryptionX509Credentials()).hasSize(1);
|
assertThat(party.getEncryptionX509Credentials()).hasSize(1);
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationnWhenResolvableThenIteratorReturns() throws Exception {
|
public void withMetadataUrlLocationnWhenResolvableThenIteratorReturns() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
|
||||||
enqueue(server, this.entitiesDescriptor, 3);
|
|
||||||
List<AssertingPartyMetadata> parties = new ArrayList<>();
|
List<AssertingPartyMetadata> parties = new ArrayList<>();
|
||||||
OpenSaml4AssertingPartyMetadataRepository.withTrustedMetadataLocation(server.url("/").toString())
|
OpenSaml4AssertingPartyMetadataRepository.withTrustedMetadataLocation(web.url("/entities.xml").toString())
|
||||||
.build()
|
.build()
|
||||||
.iterator()
|
.iterator()
|
||||||
.forEachRemaining(parties::add);
|
.forEachRemaining(parties::add);
|
||||||
|
@ -114,7 +129,6 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
assertThat(parties).extracting(AssertingPartyMetadata::getEntityId)
|
assertThat(parties).extracting(AssertingPartyMetadata::getEntityId)
|
||||||
.contains("https://ap.example.org/idp/shibboleth", "https://idp.example.com/idp/shibboleth");
|
.contains("https://ap.example.org/idp/shibboleth", "https://idp.example.com/idp/shibboleth");
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenUnresolvableThenThrowsSaml2Exception() throws Exception {
|
public void withMetadataUrlLocationWhenUnresolvableThenThrowsSaml2Exception() throws Exception {
|
||||||
|
@ -128,13 +142,11 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenMalformedResponseThenSaml2Exception() throws Exception {
|
public void withMetadataUrlLocationWhenMalformedResponseThenSaml2Exception() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
dispatcher.addResponse("/malformed", "malformed");
|
||||||
enqueue(server, "malformed", 3);
|
String url = web.url("/malformed").toString();
|
||||||
String url = server.url("/").toString();
|
|
||||||
assertThatExceptionOfType(Saml2Exception.class)
|
assertThatExceptionOfType(Saml2Exception.class)
|
||||||
.isThrownBy(() -> OpenSaml4AssertingPartyMetadataRepository.withTrustedMetadataLocation(url).build());
|
.isThrownBy(() -> OpenSaml4AssertingPartyMetadataRepository.withTrustedMetadataLocation(url).build());
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void fromMetadataFileLocationWhenResolvableThenFindByEntityIdReturns() {
|
public void fromMetadataFileLocationWhenResolvableThenFindByEntityIdReturns() {
|
||||||
|
@ -211,15 +223,14 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build();
|
.build();
|
||||||
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withTrustedMetadataLocationWhenMismatchingCredentialsThenSaml2Exception() throws IOException {
|
public void withTrustedMetadataLocationWhenMismatchingCredentialsThenSaml2Exception() throws IOException {
|
||||||
|
@ -230,14 +241,13 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
assertThatExceptionOfType(Saml2Exception.class).isThrownBy(() -> OpenSaml4AssertingPartyMetadataRepository
|
assertThatExceptionOfType(Saml2Exception.class).isThrownBy(() -> OpenSaml4AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build());
|
.build());
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withTrustedMetadataLocationWhenNoCredentialsThenSkipsVerifySignature() throws IOException {
|
public void withTrustedMetadataLocationWhenNoCredentialsThenSkipsVerifySignature() throws IOException {
|
||||||
|
@ -326,15 +336,14 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml4AssertingPartyMetadataRepository
|
||||||
.withMetadataLocation(server.url("/").toString())
|
.withMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build();
|
.build();
|
||||||
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
private static String serialize(XMLObject object) {
|
private static String serialize(XMLObject object) {
|
||||||
try {
|
try {
|
||||||
|
@ -353,4 +362,28 @@ public class OpenSaml4AssertingPartyMetadataRepositoryTests {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
private static final class MetadataDispatcher extends Dispatcher {
|
||||||
|
|
||||||
|
private final MockResponse head = new MockResponse();
|
||||||
|
|
||||||
|
private final Map<String, MockResponse> responses = new ConcurrentHashMap<>();
|
||||||
|
|
||||||
|
private MetadataDispatcher() {
|
||||||
|
}
|
||||||
|
|
||||||
|
@Override
|
||||||
|
public MockResponse dispatch(RecordedRequest request) throws InterruptedException {
|
||||||
|
if ("HEAD".equals(request.getMethod())) {
|
||||||
|
return this.head;
|
||||||
|
}
|
||||||
|
return this.responses.get(request.getPath());
|
||||||
|
}
|
||||||
|
|
||||||
|
private MetadataDispatcher addResponse(String path, String body) {
|
||||||
|
this.responses.put(path, new MockResponse().setBody(body).setResponseCode(200));
|
||||||
|
return this;
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
|
@ -20,16 +20,23 @@ import java.io.BufferedReader;
|
||||||
import java.io.File;
|
import java.io.File;
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
import java.io.InputStreamReader;
|
import java.io.InputStreamReader;
|
||||||
|
import java.io.UncheckedIOException;
|
||||||
import java.util.ArrayList;
|
import java.util.ArrayList;
|
||||||
import java.util.Collection;
|
import java.util.Collection;
|
||||||
import java.util.List;
|
import java.util.List;
|
||||||
|
import java.util.Map;
|
||||||
import java.util.Set;
|
import java.util.Set;
|
||||||
|
import java.util.UUID;
|
||||||
|
import java.util.concurrent.ConcurrentHashMap;
|
||||||
import java.util.stream.Collectors;
|
import java.util.stream.Collectors;
|
||||||
|
|
||||||
import net.shibboleth.shared.xml.SerializeSupport;
|
import net.shibboleth.shared.xml.SerializeSupport;
|
||||||
|
import okhttp3.mockwebserver.Dispatcher;
|
||||||
import okhttp3.mockwebserver.MockResponse;
|
import okhttp3.mockwebserver.MockResponse;
|
||||||
import okhttp3.mockwebserver.MockWebServer;
|
import okhttp3.mockwebserver.MockWebServer;
|
||||||
import org.junit.jupiter.api.BeforeEach;
|
import okhttp3.mockwebserver.RecordedRequest;
|
||||||
|
import org.junit.jupiter.api.AfterAll;
|
||||||
|
import org.junit.jupiter.api.BeforeAll;
|
||||||
import org.junit.jupiter.api.Test;
|
import org.junit.jupiter.api.Test;
|
||||||
import org.opensaml.core.xml.XMLObject;
|
import org.opensaml.core.xml.XMLObject;
|
||||||
import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
|
import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
|
||||||
|
@ -68,28 +75,39 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
OpenSamlInitializationService.initialize();
|
OpenSamlInitializationService.initialize();
|
||||||
}
|
}
|
||||||
|
|
||||||
private String metadata;
|
private static MetadataDispatcher dispatcher = new MetadataDispatcher()
|
||||||
|
.addResponse("/entity.xml", readFile("test-metadata.xml"))
|
||||||
|
.addResponse("/entities.xml", readFile("test-entitiesdescriptor.xml"));
|
||||||
|
|
||||||
private String entitiesDescriptor;
|
private static MockWebServer web = new MockWebServer();
|
||||||
|
|
||||||
@BeforeEach
|
private static String readFile(String fileName) {
|
||||||
public void setup() throws Exception {
|
try {
|
||||||
ClassPathResource resource = new ClassPathResource("test-metadata.xml");
|
ClassPathResource resource = new ClassPathResource(fileName);
|
||||||
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
||||||
this.metadata = reader.lines().collect(Collectors.joining());
|
return reader.lines().collect(Collectors.joining());
|
||||||
}
|
}
|
||||||
resource = new ClassPathResource("test-entitiesdescriptor.xml");
|
|
||||||
try (BufferedReader reader = new BufferedReader(new InputStreamReader(resource.getInputStream()))) {
|
|
||||||
this.entitiesDescriptor = reader.lines().collect(Collectors.joining());
|
|
||||||
}
|
}
|
||||||
|
catch (IOException ex) {
|
||||||
|
throw new UncheckedIOException(ex);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
@BeforeAll
|
||||||
|
public static void start() throws Exception {
|
||||||
|
web.setDispatcher(dispatcher);
|
||||||
|
web.start();
|
||||||
|
}
|
||||||
|
|
||||||
|
@AfterAll
|
||||||
|
public static void shutdown() throws Exception {
|
||||||
|
web.shutdown();
|
||||||
}
|
}
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenResolvableThenFindByEntityIdReturns() throws Exception {
|
public void withMetadataUrlLocationWhenResolvableThenFindByEntityIdReturns() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
|
||||||
enqueue(server, this.metadata, 3);
|
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url("/entity.xml").toString())
|
||||||
.build();
|
.build();
|
||||||
AssertingPartyMetadata party = parties.findByEntityId("https://idp.example.com/idp/shibboleth");
|
AssertingPartyMetadata party = parties.findByEntityId("https://idp.example.com/idp/shibboleth");
|
||||||
assertThat(party.getEntityId()).isEqualTo("https://idp.example.com/idp/shibboleth");
|
assertThat(party.getEntityId()).isEqualTo("https://idp.example.com/idp/shibboleth");
|
||||||
|
@ -99,14 +117,11 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
assertThat(party.getVerificationX509Credentials()).hasSize(1);
|
assertThat(party.getVerificationX509Credentials()).hasSize(1);
|
||||||
assertThat(party.getEncryptionX509Credentials()).hasSize(1);
|
assertThat(party.getEncryptionX509Credentials()).hasSize(1);
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationnWhenResolvableThenIteratorReturns() throws Exception {
|
public void withMetadataUrlLocationnWhenResolvableThenIteratorReturns() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
|
||||||
enqueue(server, this.entitiesDescriptor, 3);
|
|
||||||
List<AssertingPartyMetadata> parties = new ArrayList<>();
|
List<AssertingPartyMetadata> parties = new ArrayList<>();
|
||||||
OpenSaml5AssertingPartyMetadataRepository.withTrustedMetadataLocation(server.url("/").toString())
|
OpenSaml5AssertingPartyMetadataRepository.withTrustedMetadataLocation(web.url("/entities.xml").toString())
|
||||||
.build()
|
.build()
|
||||||
.iterator()
|
.iterator()
|
||||||
.forEachRemaining(parties::add);
|
.forEachRemaining(parties::add);
|
||||||
|
@ -114,7 +129,6 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
assertThat(parties).extracting(AssertingPartyMetadata::getEntityId)
|
assertThat(parties).extracting(AssertingPartyMetadata::getEntityId)
|
||||||
.contains("https://ap.example.org/idp/shibboleth", "https://idp.example.com/idp/shibboleth");
|
.contains("https://ap.example.org/idp/shibboleth", "https://idp.example.com/idp/shibboleth");
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenUnresolvableThenThrowsSaml2Exception() throws Exception {
|
public void withMetadataUrlLocationWhenUnresolvableThenThrowsSaml2Exception() throws Exception {
|
||||||
|
@ -128,13 +142,11 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withMetadataUrlLocationWhenMalformedResponseThenSaml2Exception() throws Exception {
|
public void withMetadataUrlLocationWhenMalformedResponseThenSaml2Exception() throws Exception {
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
dispatcher.addResponse("/malformed", "malformed");
|
||||||
enqueue(server, "malformed", 3);
|
String url = web.url("/malformed").toString();
|
||||||
String url = server.url("/").toString();
|
|
||||||
assertThatExceptionOfType(Saml2Exception.class)
|
assertThatExceptionOfType(Saml2Exception.class)
|
||||||
.isThrownBy(() -> OpenSaml5AssertingPartyMetadataRepository.withTrustedMetadataLocation(url).build());
|
.isThrownBy(() -> OpenSaml5AssertingPartyMetadataRepository.withTrustedMetadataLocation(url).build());
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void fromMetadataFileLocationWhenResolvableThenFindByEntityIdReturns() {
|
public void fromMetadataFileLocationWhenResolvableThenFindByEntityIdReturns() {
|
||||||
|
@ -211,15 +223,14 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build();
|
.build();
|
||||||
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withTrustedMetadataLocationWhenMismatchingCredentialsThenSaml2Exception() throws IOException {
|
public void withTrustedMetadataLocationWhenMismatchingCredentialsThenSaml2Exception() throws IOException {
|
||||||
|
@ -230,14 +241,13 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
assertThatExceptionOfType(Saml2Exception.class).isThrownBy(() -> OpenSaml5AssertingPartyMetadataRepository
|
assertThatExceptionOfType(Saml2Exception.class).isThrownBy(() -> OpenSaml5AssertingPartyMetadataRepository
|
||||||
.withTrustedMetadataLocation(server.url("/").toString())
|
.withTrustedMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build());
|
.build());
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
@Test
|
@Test
|
||||||
public void withTrustedMetadataLocationWhenNoCredentialsThenSkipsVerifySignature() throws IOException {
|
public void withTrustedMetadataLocationWhenNoCredentialsThenSkipsVerifySignature() throws IOException {
|
||||||
|
@ -326,15 +336,14 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
String serialized = serialize(descriptor);
|
String serialized = serialize(descriptor);
|
||||||
Credential credential = TestOpenSamlObjects
|
Credential credential = TestOpenSamlObjects
|
||||||
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
.getSigningCredential(TestSaml2X509Credentials.relyingPartyVerifyingCredential(), descriptor.getEntityID());
|
||||||
try (MockWebServer server = new MockWebServer()) {
|
String endpoint = "/" + UUID.randomUUID().toString();
|
||||||
enqueue(server, serialized, 3);
|
dispatcher.addResponse(endpoint, serialized);
|
||||||
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
AssertingPartyMetadataRepository parties = OpenSaml5AssertingPartyMetadataRepository
|
||||||
.withMetadataLocation(server.url("/").toString())
|
.withMetadataLocation(web.url(endpoint).toString())
|
||||||
.verificationCredentials((c) -> c.add(credential))
|
.verificationCredentials((c) -> c.add(credential))
|
||||||
.build();
|
.build();
|
||||||
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
assertThat(parties.findByEntityId(registration.getAssertingPartyDetails().getEntityId())).isNotNull();
|
||||||
}
|
}
|
||||||
}
|
|
||||||
|
|
||||||
private static String serialize(XMLObject object) {
|
private static String serialize(XMLObject object) {
|
||||||
try {
|
try {
|
||||||
|
@ -353,4 +362,28 @@ public class OpenSaml5AssertingPartyMetadataRepositoryTests {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
private static final class MetadataDispatcher extends Dispatcher {
|
||||||
|
|
||||||
|
private final MockResponse head = new MockResponse();
|
||||||
|
|
||||||
|
private final Map<String, MockResponse> responses = new ConcurrentHashMap<>();
|
||||||
|
|
||||||
|
private MetadataDispatcher() {
|
||||||
|
}
|
||||||
|
|
||||||
|
@Override
|
||||||
|
public MockResponse dispatch(RecordedRequest request) throws InterruptedException {
|
||||||
|
if ("HEAD".equals(request.getMethod())) {
|
||||||
|
return this.head;
|
||||||
|
}
|
||||||
|
return this.responses.get(request.getPath());
|
||||||
|
}
|
||||||
|
|
||||||
|
private MetadataDispatcher addResponse(String path, String body) {
|
||||||
|
this.responses.put(path, new MockResponse().setBody(body).setResponseCode(200));
|
||||||
|
return this;
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue