svn commit: r1077899 - /webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java

Fri, 04 Mar 2011 04:22:31 -0800 

Author: coheigea
Date: Fri Mar  4 12:22:06 2011
New Revision: 1077899

URL: http://svn.apache.org/viewvc?rev=1077899&view=rev
Log:
[WSS-256] - More BSP tests for UsernameTokens.

Modified:
    
webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java

Modified: 
webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java
URL: 
http://svn.apache.org/viewvc/webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java?rev=1077899&r1=1077898&r2=1077899&view=diff
==============================================================================
--- 
webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java
 (original)
+++ 
webservices/wss4j/trunk/src/test/java/org/apache/ws/security/message/UsernameTokenTest.java
 Fri Mar  4 12:22:06 2011
@@ -657,6 +657,175 @@ public class UsernameTokenTest extends o
     }
     
     /**
+     * A test for sending multiple nonces in the UsernameToken
+     */
+    @org.junit.Test
+    public void testMultipleNonce() throws Exception {
+        WSSecUsernameToken builder = new WSSecUsernameToken();
+        builder.setPasswordType(WSConstants.PASSWORD_DIGEST);
+        builder.setUserInfo("wernerd", "verySecret");
+
+        Document doc = SOAPUtil.toSOAPPart(SOAPUtil.SAMPLE_SOAP_MSG);
+        WSSecHeader secHeader = new WSSecHeader();
+        secHeader.insertSecurityHeader(doc);
+        Document utDoc = builder.build(doc, secHeader);
+        
+        //
+        // Manually find the Nonce node and duplicate it
+        //
+        org.w3c.dom.Element elem = builder.getUsernameTokenElement();
+        org.w3c.dom.NodeList list = 
elem.getElementsByTagNameNS(WSConstants.WSSE_NS, "Nonce");
+        org.w3c.dom.Node nonceNode = list.item(0);
+        org.w3c.dom.Node nonceCopy = nonceNode.cloneNode(true);
+        nonceNode.getParentNode().insertBefore(nonceCopy, nonceNode);
+        
+        if (LOG.isDebugEnabled()) {
+            String outputString = 
+                
org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(utDoc);
+            LOG.debug(outputString);
+        };
+        
+        WSSecurityEngine newEngine = new WSSecurityEngine();
+        try {
+            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+            fail("Expected failure as it is not BSP compliant");
+        } catch (WSSecurityException ex) {
+            // expected
+        }
+        WSSConfig config = WSSConfig.getNewInstance();
+        config.setWsiBSPCompliant(false);
+        newEngine.setWssConfig(config);
+        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+    }
+    
+    /**
+     * A test for sending multiple Created elements in the UsernameToken
+     */
+    @org.junit.Test
+    public void testMultipleCreated() throws Exception {
+        WSSecUsernameToken builder = new WSSecUsernameToken();
+        builder.setPasswordType(WSConstants.PASSWORD_DIGEST);
+        builder.setUserInfo("wernerd", "verySecret");
+
+        Document doc = SOAPUtil.toSOAPPart(SOAPUtil.SAMPLE_SOAP_MSG);
+        WSSecHeader secHeader = new WSSecHeader();
+        secHeader.insertSecurityHeader(doc);
+        Document utDoc = builder.build(doc, secHeader);
+        
+        //
+        // Manually find the Created node and duplicate it
+        //
+        org.w3c.dom.Element elem = builder.getUsernameTokenElement();
+        org.w3c.dom.NodeList list = 
elem.getElementsByTagNameNS(WSConstants.WSU_NS, "Created");
+        org.w3c.dom.Node createdNode = list.item(0);
+        org.w3c.dom.Node createdCopy = createdNode.cloneNode(true);
+        createdNode.getParentNode().insertBefore(createdCopy, createdNode);
+        
+        if (LOG.isDebugEnabled()) {
+            String outputString = 
+                
org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(utDoc);
+            LOG.debug(outputString);
+        };
+        
+        WSSecurityEngine newEngine = new WSSecurityEngine();
+        try {
+            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+            fail("Expected failure as it is not BSP compliant");
+        } catch (WSSecurityException ex) {
+            // expected
+        }
+        WSSConfig config = WSSConfig.getNewInstance();
+        config.setWsiBSPCompliant(false);
+        newEngine.setWssConfig(config);
+        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+    }
+    
+    /**
+     * A test for sending multiple passwords in the UsernameToken
+     */
+    @org.junit.Test
+    public void testMultiplePassword() throws Exception {
+        WSSecUsernameToken builder = new WSSecUsernameToken();
+        builder.setPasswordType(WSConstants.PASSWORD_DIGEST);
+        builder.setUserInfo("wernerd", "verySecret");
+
+        Document doc = SOAPUtil.toSOAPPart(SOAPUtil.SAMPLE_SOAP_MSG);
+        WSSecHeader secHeader = new WSSecHeader();
+        secHeader.insertSecurityHeader(doc);
+        Document utDoc = builder.build(doc, secHeader);
+        
+        //
+        // Manually find the Nonce node and duplicate it
+        //
+        org.w3c.dom.Element elem = builder.getUsernameTokenElement();
+        org.w3c.dom.NodeList list = 
elem.getElementsByTagNameNS(WSConstants.WSSE_NS, "Password");
+        org.w3c.dom.Node passwordNode = list.item(0);
+        org.w3c.dom.Node passwordCopy = passwordNode.cloneNode(true);
+        passwordNode.getParentNode().insertBefore(passwordCopy, passwordNode);
+        
+        if (LOG.isDebugEnabled()) {
+            String outputString = 
+                
org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(utDoc);
+            LOG.debug(outputString);
+        };
+        
+        WSSecurityEngine newEngine = new WSSecurityEngine();
+        try {
+            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+            fail("Expected failure as it is not BSP compliant");
+        } catch (WSSecurityException ex) {
+            // expected
+        }
+        WSSConfig config = WSSConfig.getNewInstance();
+        config.setWsiBSPCompliant(false);
+        newEngine.setWssConfig(config);
+        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+    }
+    
+    /**
+     * A test for sending a nonce with a bad encoding type in the UsernameToken
+     */
+    @org.junit.Test
+    public void testNonceBadEncodingType() throws Exception {
+        WSSecUsernameToken builder = new WSSecUsernameToken();
+        builder.setPasswordType(WSConstants.PASSWORD_DIGEST);
+        builder.setUserInfo("wernerd", "verySecret");
+
+        Document doc = SOAPUtil.toSOAPPart(SOAPUtil.SAMPLE_SOAP_MSG);
+        WSSecHeader secHeader = new WSSecHeader();
+        secHeader.insertSecurityHeader(doc);
+        Document utDoc = builder.build(doc, secHeader);
+        
+        //
+        // Manually find the Nonce node and duplicate it
+        //
+        org.w3c.dom.Element elem = builder.getUsernameTokenElement();
+        org.w3c.dom.NodeList list = 
elem.getElementsByTagNameNS(WSConstants.WSSE_NS, "Nonce");
+        org.w3c.dom.Node nonceNode = list.item(0);
+        ((org.w3c.dom.Element)nonceNode).setAttributeNS(
+            null, "EncodingType", "http://bad_encoding_type";
+        );
+        
+        if (LOG.isDebugEnabled()) {
+            String outputString = 
+                
org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(utDoc);
+            LOG.debug(outputString);
+        };
+        
+        WSSecurityEngine newEngine = new WSSecurityEngine();
+        try {
+            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+            fail("Expected failure as it is not BSP compliant");
+        } catch (WSSecurityException ex) {
+            // expected
+        }
+        WSSConfig config = WSSConfig.getNewInstance();
+        config.setWsiBSPCompliant(false);
+        newEngine.setWssConfig(config);
+        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
+    }
+    
+    /**
      * Verifies the soap envelope
      * 
      * @param env soap envelope

Reply via email to