Package org.opensaml.saml.saml2.binding.security.impl

Class SAML2HTTPPostSimpleSignSecurityHandlerTest

java.lang.Object

org.opensaml.core.testing.OpenSAMLInitBaseTestCase

org.opensaml.core.testing.XMLObjectBaseTestCase

org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandlerTest

public class SAML2HTTPPostSimpleSignSecurityHandlerTest
extends XMLObjectBaseTestCase

Test SAML simple signature via HTTP POST-SimpleSign binding

Field Summary

Fields

Modifier and Type	Field	Description
private CollectionCredentialResolver	credResolver
private String	expectedRelayValue
private SAML2HTTPPostSimpleSignSecurityHandler	handler
private static String	INVALID_BASE64_TRAILING	Invalid base64 string as it has invalid trailing digits.
private String	issuer
private MessageContext	messageContext
private X509Certificate	otherCert1
private String	otherCert1Base64
private BasicX509Credential	otherCred1
private SignatureTrustEngine	signatureTrustEngine
private X509Certificate	signingCert
private String	signingCertBase64
private PrivateKey	signingPrivateKey
private String	signingPrivateKeyBase64
private BasicX509Credential	signingX509Cred
private SignatureValidationParameters	sigValParams
private List<Credential>	trustedCredentials
private org.apache.velocity.app.VelocityEngine	velocityEngine	Velocity template engine.

Fields inherited from class org.opensaml.core.testing.XMLObjectBaseTestCase

builderFactory, marshallerFactory, parserPool, simpleXMLObjectQName, unmarshallerFactory

Constructor Summary

Constructors

Constructor	Description
SAML2HTTPPostSimpleSignSecurityHandlerTest()	Constructor.

Method Summary

Modifier and Type	Method	Description
protected AuthnRequest	buildInboundSAMLMessage()
protected MockHttpServletRequest	buildServletRequest()
private void	populateRequest(MockHttpServletRequest request, String htmlContentString)	Populate the HTTP servlet request object with the parameter info.
protected void	setUp()
void	testBlacklistedSignatureAlgorithm()	Test blacklisted signature algorithm.
void	testFailureNoKeyInfo()	Test context issuer set, valid signature with trusted credential.
void	testInvalidBase64KeyInfo()	Test invalid base64 encoded KeyInfo.
void	testInvalidBase64RequestSignature()	Test invalid base64 encoded signature.
void	testInvalidSignature()	Test context issuer set, invalid signature with trusted credential.
void	testNoContextIssuer()	Test context issuer set, valid signature with untrusted credential.
void	testNoTrustEngine()	Test no trust engine supplied.
void	testSuccess()	Test context issuer set, valid signature with trusted credential.
void	testSuccessNoKeyInfo()	Test context issuer set, valid signature with trusted credential.
void	testUntrustedCredential()	Test context issuer set, valid signature with untrusted credential.

Methods inherited from class org.opensaml.core.testing.XMLObjectBaseTestCase

assertXMLEquals, assertXMLEquals, buildXMLObject, getBuilder, getMarshaller, getMarshaller, getUnmarshaller, getUnmarshaller, getUnmarshaller, initXMLObjectSupport, parseXMLDocument, printXML, printXML, unmarshallElement, unmarshallElement

Methods inherited from class org.opensaml.core.testing.OpenSAMLInitBaseTestCase

initOpenSAML

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

messageContext

private MessageContext messageContext

handler

private SAML2HTTPPostSimpleSignSecurityHandler handler

signingCert

private X509Certificate signingCert

signingCertBase64

private String signingCertBase64

signingPrivateKey

private PrivateKey signingPrivateKey

signingPrivateKeyBase64

private String signingPrivateKeyBase64

otherCert1

private X509Certificate otherCert1

otherCert1Base64

private String otherCert1Base64

credResolver

private CollectionCredentialResolver credResolver

trustedCredentials

private List<Credential> trustedCredentials

signingX509Cred

private BasicX509Credential signingX509Cred

otherCred1

private BasicX509Credential otherCred1

issuer

private String issuer

expectedRelayValue

private String expectedRelayValue

signatureTrustEngine

private SignatureTrustEngine signatureTrustEngine

sigValParams

private SignatureValidationParameters sigValParams

velocityEngine

private org.apache.velocity.app.VelocityEngine velocityEngine

Velocity template engine.

INVALID_BASE64_TRAILING

private static final String INVALID_BASE64_TRAILING

Invalid base64 string as it has invalid trailing digits.

See Also:

Constant Field Values

Constructor Detail

SAML2HTTPPostSimpleSignSecurityHandlerTest

public SAML2HTTPPostSimpleSignSecurityHandlerTest()
                                           throws Exception

Constructor.

Throws:

Exception - if something goes wrong

Method Detail

setUp

@BeforeMethod
protected void setUp()
              throws Exception

Throws:

Exception

testSuccess

public void testSuccess()
                 throws MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

MessageHandlerException - ...

testBlacklistedSignatureAlgorithm

public void testBlacklistedSignatureAlgorithm()
                                       throws MessageHandlerException

Test blacklisted signature algorithm.

Throws:

MessageHandlerException - ...

testUntrustedCredential

public void testUntrustedCredential()
                             throws MessageHandlerException

Test context issuer set, valid signature with untrusted credential.

Throws:

MessageHandlerException - ...

testInvalidSignature

public void testInvalidSignature()
                          throws MessageHandlerException

Test context issuer set, invalid signature with trusted credential.

Throws:

MessageHandlerException - ...

testInvalidBase64RequestSignature

public void testInvalidBase64RequestSignature()

Test invalid base64 encoded signature. Should throw a MessageHandlerException with wrapped DecodingException.

testInvalidBase64KeyInfo

public void testInvalidBase64KeyInfo()

Test invalid base64 encoded KeyInfo. Should throw a MessageHandlerException with wrapped DecodingException.

testNoContextIssuer

public void testNoContextIssuer()
                         throws MessageHandlerException

Test context issuer set, valid signature with untrusted credential.

Throws:

MessageHandlerException - ...

testSuccessNoKeyInfo

public void testSuccessNoKeyInfo()
                          throws MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

MessageHandlerException - ...

testFailureNoKeyInfo

public void testFailureNoKeyInfo()
                          throws MessageHandlerException

Test context issuer set, valid signature with trusted credential.

Throws:

MessageHandlerException - ...

testNoTrustEngine

public void testNoTrustEngine()
                       throws MessageHandlerException

Test no trust engine supplied.

Throws:

MessageHandlerException - ...

buildInboundSAMLMessage

protected AuthnRequest buildInboundSAMLMessage()

buildServletRequest

protected MockHttpServletRequest buildServletRequest()

populateRequest

private void populateRequest(MockHttpServletRequest request,
                             String htmlContentString)
                      throws XMLParserException,
                             ComponentInitializationException

Populate the HTTP servlet request object with the parameter info. Would be nice if Spring mock object actually did this for you from populating the content string.... Oh well.

Parameters:

request - ...

htmlContentString - ...

Throws:

XMLParserException - ...

ComponentInitializationException - ...