/* Copyright 2004, 2005 Acegi Technology Pty Limited
    *
    * Licensed under the Apache License, Version 2.0 (the "License");
    * you may not use this file except in compliance with the License.
    * You may obtain a copy of the License at
    *
    *     http://www.apache.org/licenses/LICENSE-2.0
    *
    * Unless required by applicable law or agreed to in writing, software
   * distributed under the License is distributed on an "AS IS" BASIS,
   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   * See the License for the specific language governing permissions and
   * limitations under the License.
   */
  
  package org.acegisecurity.intercept.method.aspectj;
  
  import java.lang.reflect.Method;
  
  import junit.framework.TestCase;
  
  import org.acegisecurity.AccessDeniedException;
  import org.acegisecurity.GrantedAuthority;
  import org.acegisecurity.GrantedAuthorityImpl;
  import org.acegisecurity.MockAccessDecisionManager;
  import org.acegisecurity.MockApplicationContext;
  import org.acegisecurity.MockAuthenticationManager;
  import org.acegisecurity.MockJoinPoint;
  import org.acegisecurity.MockRunAsManager;
  import org.acegisecurity.TargetObject;
  import org.acegisecurity.context.SecurityContextHolder;
  import org.acegisecurity.intercept.method.MethodDefinitionMap;
  import org.acegisecurity.intercept.method.MethodDefinitionSourceEditor;
  import org.acegisecurity.providers.TestingAuthenticationToken;
  
  
  /***
   * Tests {@link AspectJSecurityInterceptor}.
   *
   * @author Ben Alex
   * @version $Id: AspectJSecurityInterceptorTests.java,v 1.8 2005/11/30 01:23:35 benalex Exp $
   */
  public class AspectJSecurityInterceptorTests extends TestCase {
      //~ Constructors ===========================================================
  
      public AspectJSecurityInterceptorTests() {
          super();
      }
  
      public AspectJSecurityInterceptorTests(String arg0) {
          super(arg0);
      }
  
      //~ Methods ================================================================
  
      public final void setUp() throws Exception {
          super.setUp();
      }
  
      public static void main(String[] args) {
          junit.textui.TestRunner.run(AspectJSecurityInterceptorTests.class);
      }
  
      public void testCallbackIsInvokedWhenPermissionGranted()
          throws Exception {
          AspectJSecurityInterceptor si = new AspectJSecurityInterceptor();
          si.setApplicationEventPublisher(MockApplicationContext.getContext());
          si.setAccessDecisionManager(new MockAccessDecisionManager());
          si.setAuthenticationManager(new MockAuthenticationManager());
          si.setRunAsManager(new MockRunAsManager());
  
          MethodDefinitionSourceEditor editor = new MethodDefinitionSourceEditor();
          editor.setAsText(
              "org.acegisecurity.TargetObject.countLength=MOCK_ONE,MOCK_TWO");
  
          MethodDefinitionMap map = (MethodDefinitionMap) editor.getValue();
          si.setObjectDefinitionSource(map);
          assertEquals(map, si.getObjectDefinitionSource());
  
          si.afterPropertiesSet();
  
          Class clazz = TargetObject.class;
          Method method = clazz.getMethod("countLength",
                  new Class[] {String.class});
          MockJoinPoint joinPoint = new MockJoinPoint(new TargetObject(), method);
  
          MockAspectJCallback aspectJCallback = new MockAspectJCallback();
  
          SecurityContextHolder.getContext().setAuthentication(new TestingAuthenticationToken(
                  "marissa", "koala",
                  new GrantedAuthority[] {new GrantedAuthorityImpl("MOCK_ONE")}));
  
          Object result = si.invoke(joinPoint, aspectJCallback);
  
          assertEquals("object proceeded", result);
  
          SecurityContextHolder.getContext().setAuthentication(null);
      }
  
     public void testCallbackIsNotInvokedWhenPermissionDenied()
         throws Exception {
         AspectJSecurityInterceptor si = new AspectJSecurityInterceptor();
         si.setApplicationEventPublisher(MockApplicationContext.getContext());
         si.setAccessDecisionManager(new MockAccessDecisionManager());
         si.setAuthenticationManager(new MockAuthenticationManager());
         si.setRunAsManager(new MockRunAsManager());
 
         MethodDefinitionSourceEditor editor = new MethodDefinitionSourceEditor();
         editor.setAsText(
             "org.acegisecurity.TargetObject.countLength=MOCK_ONE,MOCK_TWO");
 
         MethodDefinitionMap map = (MethodDefinitionMap) editor.getValue();
         si.setObjectDefinitionSource(map);
 
         si.afterPropertiesSet();
 
         Class clazz = TargetObject.class;
         Method method = clazz.getMethod("countLength",
                 new Class[] {String.class});
         MockJoinPoint joinPoint = new MockJoinPoint(new TargetObject(), method);
 
         MockAspectJCallback aspectJCallback = new MockAspectJCallback();
         aspectJCallback.setThrowExceptionIfInvoked(true);
 
         SecurityContextHolder.getContext().setAuthentication(new TestingAuthenticationToken(
                 "marissa", "koala", new GrantedAuthority[] {}));
 
         try {
             si.invoke(joinPoint, aspectJCallback);
             fail("Should have thrown AccessDeniedException");
         } catch (AccessDeniedException expected) {
             assertTrue(true);
         }
 
         SecurityContextHolder.getContext().setAuthentication(null);
     }
 
     //~ Inner Classes ==========================================================
 
     private class MockAspectJCallback implements AspectJCallback {
         private boolean throwExceptionIfInvoked = false;
 
         private MockAspectJCallback() {}
 
         public void setThrowExceptionIfInvoked(boolean throwExceptionIfInvoked) {
             this.throwExceptionIfInvoked = throwExceptionIfInvoked;
         }
 
         public Object proceedWithObject() {
             if (throwExceptionIfInvoked) {
                 throw new IllegalStateException("AspectJCallback proceeded");
             }
 
             return "object proceeded";
         }
     }
 }