Fix auth-behaviour (#186)

- There was wierd behaviour regarding the auth and saving and handling of
  username/password since it was used by ldap aswell. Broke their names apart.
  If password was not updated from the user request, it would have been removed
  without this update.
- Changed interfaces so that ldapUserName and userName is seperated.
- Fixed tests

Author: erik-edling

src/functionaltests/java/com/ericsson/ei/subscriptions/bulk/SubscriptionBulkSteps.java

@@ -1,14 +1,9 @@
 package com.ericsson.ei.subscriptions.bulk;
 
-import com.ericsson.ei.controller.model.GetSubscriptionResponse;
-import com.ericsson.ei.utils.FunctionalTestBase;
-import com.ericsson.ei.utils.HttpRequest;
-import com.ericsson.ei.utils.HttpRequest.HttpMethod;
-import com.fasterxml.jackson.databind.ObjectMapper;
+import static org.junit.Assert.assertEquals;
+
+import java.io.File;
 
-import cucumber.api.java.en.Given;
-import cucumber.api.java.en.Then;
-import cucumber.api.java.en.When;
 import org.apache.commons.io.FileUtils;
 import org.json.JSONArray;
 import org.json.JSONObject;
@@ -17,9 +12,15 @@
 import org.springframework.http.ResponseEntity;
 import org.springframework.test.context.TestPropertySource;
 
-import java.io.File;
+import com.ericsson.ei.controller.model.GetSubscriptionResponse;
+import com.ericsson.ei.utils.FunctionalTestBase;
+import com.ericsson.ei.utils.HttpRequest;
+import com.ericsson.ei.utils.HttpRequest.HttpMethod;
+import com.fasterxml.jackson.databind.ObjectMapper;
 
-import static org.junit.Assert.assertEquals;
+import cucumber.api.java.en.Given;
+import cucumber.api.java.en.Then;
+import cucumber.api.java.en.When;
 
 @Ignore
 @TestPropertySource(properties = {"logging.level.com.ericsson.ei.subscriptions.bulk=DEBUG"})
@@ -138,7 +139,7 @@ public void retrieved_subscriptions_are_same_as_given() throws Throwable {
                     retrievedSubscriptions.getJSONObject(i).get("notificationType"));
             assertEquals(subscriptions.getJSONObject(i).get("notificationMeta"),
                     retrievedSubscriptions.getJSONObject(i).get("notificationMeta"));
-            assertEquals(true, retrievedSubscriptions.getJSONObject(i).has("userName"));
+            assertEquals(true, retrievedSubscriptions.getJSONObject(i).has("ldapUserName"));
         }
     }
 }

src/functionaltests/java/com/ericsson/ei/subscriptions/trigger/SubscriptionTriggerSteps.java

@@ -1,14 +1,18 @@
 package com.ericsson.ei.subscriptions.trigger;
 
-import com.dumbster.smtp.SimpleSmtpServer;
-import com.dumbster.smtp.SmtpMessage;
-import com.ericsson.ei.utils.FunctionalTestBase;
-import com.ericsson.ei.utils.HttpRequest;
-import cucumber.api.java.After;
-import cucumber.api.java.Before;
-import cucumber.api.java.en.Given;
-import cucumber.api.java.en.Then;
-import cucumber.api.java.en.When;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertTrue;
+import static org.mockserver.integration.ClientAndServer.startClientAndServer;
+import static org.mockserver.model.HttpRequest.request;
+import static org.mockserver.model.HttpResponse.response;
+
+import java.io.File;
+import java.io.IOException;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.concurrent.TimeUnit;
+
 import org.apache.commons.io.FileUtils;
 import org.json.JSONArray;
 import org.json.JSONException;
@@ -26,18 +30,16 @@
 import org.springframework.mail.javamail.JavaMailSenderImpl;
 import org.springframework.util.SocketUtils;
 
-import java.io.File;
-import java.io.IOException;
-import java.util.ArrayList;
-import java.util.Arrays;
-import java.util.List;
-import java.util.concurrent.TimeUnit;
+import com.dumbster.smtp.SimpleSmtpServer;
+import com.dumbster.smtp.SmtpMessage;
+import com.ericsson.ei.utils.FunctionalTestBase;
+import com.ericsson.ei.utils.HttpRequest;
 
-import static org.junit.Assert.assertEquals;
-import static org.junit.Assert.assertTrue;
-import static org.mockserver.integration.ClientAndServer.startClientAndServer;
-import static org.mockserver.model.HttpRequest.request;
-import static org.mockserver.model.HttpResponse.response;
+import cucumber.api.java.After;
+import cucumber.api.java.Before;
+import cucumber.api.java.en.Given;
+import cucumber.api.java.en.Then;
+import cucumber.api.java.en.When;
 
 @Ignore
 public class SubscriptionTriggerSteps extends FunctionalTestBase {
@@ -276,7 +278,7 @@ private void setupRestEndpoints() {
         mockClient = new MockServerClient(getHostName(), port);
         mockClient.when(request().withMethod("POST").withPath(REST_ENDPOINT)).respond(response().withStatusCode(201));
         mockClient.when(request().withMethod("POST").withPath(REST_ENDPOINT_AUTH)
-                .withHeader("Authorization", "Basic TXkgbW90aGVyIGhhcyAyIGNhdHMgYW5kIHRoZXkgYXJlIGNyYXp5"))
+                .withHeader("Authorization", "Basic bXlVc2VyTmFtZTpteVBhc3N3b3Jk"))
                 .respond(response().withStatusCode(201));
         mockClient.when(request().withMethod("POST").withPath(REST_ENDPOINT_PARAMS))
                 .respond(response().withStatusCode(201));

src/functionaltests/resources/subscription_multiple.json

@@ -1,7 +1,7 @@
 [
   {
     "subscriptionName": "Subscription_Mail",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
     "repeat": false,
     "created": "data-time",
     "notificationType": "MAIL",
@@ -32,7 +32,7 @@
   },
   {
     "subscriptionName": "Subscription_Rest_Params_in_Head",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
     "repeat": false,
     "created": "data-time",
     "notificationType": "REST_POST",
@@ -63,7 +63,10 @@
   },
   {
     "subscriptionName": "Subscription_Rest_Auth_Params_in_Head",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
+    "userName": "myUserName",
+    "password": "myPassword",
+    "authenticationType": "BASIC_AUTH",
     "repeat": false,
     "created": "data-time",
     "notificationType": "REST_POST",
@@ -74,10 +77,6 @@
       {
         "formkey" : "json",
         "formvalue" : "{parameter: [{ id: testCaseExecutions[0].outcome.id, value : testCaseExecutions[0].outcome.conclusion }]}"
-      },
-      {
-        "formkey" : "Authorization",
-        "formvalue" : "Basic TXkgbW90aGVyIGhhcyAyIGNhdHMgYW5kIHRoZXkgYXJlIGNyYXp5"
       }
     ],
 
@@ -101,7 +100,7 @@
   },
   {
     "subscriptionName": "Subscription_Rest_Params_in_Url",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
     "repeat": false,
     "created": "data-time",
     "notificationType": "REST_POST",
@@ -126,7 +125,7 @@
   },
   {
     "subscriptionName": "Subscription_Rest_Auth_Params_in_Url",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
     "repeat": false,
     "created": "data-time",
     "notificationType": "REST_POST",
@@ -152,7 +151,7 @@
   },
   {
     "subscriptionName": "Subscription_Row_Body",
-    "userName": "DEF",
+    "ldapUserName": "DEF",
     "repeat": false,
     "created": "data-time",
     "notificationType": "REST_POST",

src/main/java/com/ericsson/ei/controller/SubscriptionController.java

@@ -3,7 +3,6 @@
 
 import java.util.List;
 import javax.validation.Valid;
-import com.ericsson.ei.controller.model.GetSubscriptionResponse;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.PathVariable;
 import org.springframework.web.bind.annotation.RequestBody;
@@ -34,20 +33,20 @@ public interface SubscriptionController {
      * 
      */
     @RequestMapping(value = "", method = RequestMethod.POST)
-    public ResponseEntity<List<com.ericsson.ei.controller.model.SubscriptionResponse>> createSubscription(
+    public ResponseEntity<List<String>> createSubscription(
         @Valid
         @RequestBody
-        List<com.ericsson.ei.controller.model.Subscription> subscription);
+        List<String> string);
 
     /**
      * Modify existing Subscriptions.
      * 
      */
     @RequestMapping(value = "", method = RequestMethod.PUT)
-    public ResponseEntity<List<com.ericsson.ei.controller.model.SubscriptionResponse>> updateSubscriptions(
+    public ResponseEntity<List<String>> updateSubscriptions(
         @Valid
         @RequestBody
-        List<com.ericsson.ei.controller.model.Subscription> subscription);
+        List<String> string);
 
     /**
      * Returns the subscriptions for the given subscription names.
@@ -56,15 +55,15 @@ public ResponseEntity<List<com.ericsson.ei.controller.model.SubscriptionResponse
     @RequestMapping(value = "/{subscriptionNames}", method = RequestMethod.GET)
     public ResponseEntity<GetSubscriptionResponse> getSubscriptionById(
         @PathVariable
-        String subscriptionNames);
+        java.lang.String subscriptionNames);
 
     /**
      * Removes the subscriptions from the database for the given subscription names.
      * 
      */
     @RequestMapping(value = "/{subscriptionNames}", method = RequestMethod.DELETE)
-    public ResponseEntity<List<com.ericsson.ei.controller.model.SubscriptionResponse>> deleteSubscriptionById(
+    public ResponseEntity<List<String>> deleteSubscriptionById(
         @PathVariable
-        String subscriptionNames);
+        java.lang.String subscriptionNames);
 
 }

src/main/java/com/ericsson/ei/controller/SubscriptionControllerImpl.java

@@ -16,15 +16,15 @@
 */
 package com.ericsson.ei.controller;
 
-import com.ericsson.ei.config.HttpSessionConfig;
-import com.ericsson.ei.controller.model.GetSubscriptionResponse;
-import com.ericsson.ei.controller.model.Subscription;
-import com.ericsson.ei.controller.model.SubscriptionResponse;
-import com.ericsson.ei.exception.SubscriptionNotFoundException;
-import com.ericsson.ei.services.ISubscriptionService;
-import com.ericsson.ei.subscriptionhandler.SubscriptionValidator;
-import io.swagger.annotations.Api;
-import io.swagger.annotations.ApiOperation;
+import java.time.Instant;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -36,8 +36,16 @@
 import org.springframework.web.bind.annotation.PathVariable;
 import org.springframework.web.bind.annotation.RequestBody;
 
-import java.time.Instant;
-import java.util.*;
+import com.ericsson.ei.config.HttpSessionConfig;
+import com.ericsson.ei.controller.model.GetSubscriptionResponse;
+import com.ericsson.ei.controller.model.Subscription;
+import com.ericsson.ei.controller.model.SubscriptionResponse;
+import com.ericsson.ei.exception.SubscriptionNotFoundException;
+import com.ericsson.ei.services.ISubscriptionService;
+import com.ericsson.ei.subscriptionhandler.SubscriptionValidator;
+
+import io.swagger.annotations.Api;
+import io.swagger.annotations.ApiOperation;
 
 @Component
 @CrossOrigin
@@ -73,7 +81,7 @@ public ResponseEntity<List<SubscriptionResponse>> createSubscription(@RequestBod
                 subscriptionValidator.validateSubscription(subscription);
 
                 if (!subscriptionService.doSubscriptionExist(subscriptionName)) {
-                    subscription.setUserName(user);
+                    subscription.setLdapUserName(user);
                     subscription.setCreated(Instant.now().toEpochMilli());
                     subscriptionService.addSubscription(subscription);
                     LOG.debug("Subscription is created successfully: " + subscriptionName);
@@ -101,7 +109,11 @@ public ResponseEntity<GetSubscriptionResponse> getSubscriptionById(@PathVariable
         subscriptionNamesList.forEach(subscriptionName -> {
             try {
                 LOG.debug("Subscription fetching has been started: " + subscriptionName);
-                foundSubscriptionList.add(subscriptionService.getSubscription(subscriptionName));
+
+                //Make sure the password is not sent outside this service.
+                Subscription subscription = subscriptionService.getSubscription(subscriptionName);
+                subscription.setPassword("");
+                foundSubscriptionList.add(subscription);
                 LOG.debug("Subscription is fetched: " + subscriptionName);
             } catch (SubscriptionNotFoundException e) {
                 LOG.error("Subscription is not found: " + subscriptionName);
@@ -132,7 +144,7 @@ public ResponseEntity<List<SubscriptionResponse>> updateSubscriptions(@RequestBo
                 subscriptionValidator.validateSubscription(subscription);
 
                 if (subscriptionService.doSubscriptionExist(subscriptionName)) {
-                    subscription.setUserName(user);
+                    subscription.setLdapUserName(user);
                     subscription.setCreated(Instant.now().toEpochMilli());
                     subscriptionService.modifySubscription(subscription, subscriptionName);
                     LOG.debug("Subscription updating is completed: " + subscriptionName);
@@ -174,7 +186,13 @@ public ResponseEntity<List<SubscriptionResponse>> deleteSubscriptionById(@PathVa
     public ResponseEntity<?> getSubscriptions() {
         LOG.debug("Subscriptions fetching all has been started");
         try {
-            return new ResponseEntity<>(subscriptionService.getSubscriptions(), HttpStatus.OK);
+          //Make sure the password is not sent outside this service.
+            List<Subscription> subscriptions = subscriptionService.getSubscriptions();
+            for(Subscription subscription: subscriptions) {
+                subscription.setPassword("");
+            }
+
+            return new ResponseEntity<>(subscriptions, HttpStatus.OK);
         } catch (SubscriptionNotFoundException e) {
             LOG.info(e.getMessage(), e);
             return new ResponseEntity<>(new ArrayList<>(), HttpStatus.OK);

src/main/java/com/ericsson/ei/controller/model/Subscription.java

@@ -26,7 +26,9 @@
     "repeat",
     "requirements",
     "subscriptionName",
-    "userName"
+    "userName",
+    "password",
+    "ldapUserName"
 })
 public class Subscription {
 
@@ -50,6 +52,10 @@ public class Subscription {
     private String subscriptionName;
     @JsonProperty("userName")
     private String userName;
+    @JsonProperty("password")
+    private String password;
+    @JsonProperty("ldapUserName")
+    private String ldapUserName;
     @JsonIgnore
     private Map<String, Object> additionalProperties = new HashMap<String, Object>();
 
@@ -153,6 +159,26 @@ public void setUserName(String userName) {
         this.userName = userName;
     }
 
+    @JsonProperty("password")
+    public String getPassword() {
+        return password;
+    }
+
+    @JsonProperty("password")
+    public void setPassword(String password) {
+        this.password = password;
+    }
+
+    @JsonProperty("ldapUserName")
+    public String getLdapUserName() {
+        return ldapUserName;
+    }
+
+    @JsonProperty("ldapUserName")
+    public void setLdapUserName(String ldapUserName) {
+        this.ldapUserName = ldapUserName;
+    }
+
     @Override
     public String toString() {
         return ToStringBuilder.reflectionToString(this);
@@ -170,7 +196,7 @@ public void setAdditionalProperty(String name, Object value) {
 
     @Override
     public int hashCode() {
-        return new HashCodeBuilder().append(aggregationtype).append(created).append(notificationMeta).append(notificationType).append(restPostBodyMediaType).append(notificationMessageKeyValues).append(repeat).append(requirements).append(subscriptionName).append(userName).append(additionalProperties).toHashCode();
+        return new HashCodeBuilder().append(aggregationtype).append(created).append(notificationMeta).append(notificationType).append(restPostBodyMediaType).append(notificationMessageKeyValues).append(repeat).append(requirements).append(subscriptionName).append(userName).append(password).append(ldapUserName).append(additionalProperties).toHashCode();
     }
 
     @Override
@@ -182,7 +208,7 @@ public boolean equals(Object other) {
             return false;
         }
         Subscription rhs = ((Subscription) other);
-        return new EqualsBuilder().append(aggregationtype, rhs.aggregationtype).append(created, rhs.created).append(notificationMeta, rhs.notificationMeta).append(notificationType, rhs.notificationType).append(restPostBodyMediaType, rhs.restPostBodyMediaType).append(notificationMessageKeyValues, rhs.notificationMessageKeyValues).append(repeat, rhs.repeat).append(requirements, rhs.requirements).append(subscriptionName, rhs.subscriptionName).append(userName, rhs.userName).append(additionalProperties, rhs.additionalProperties).isEquals();
+        return new EqualsBuilder().append(aggregationtype, rhs.aggregationtype).append(created, rhs.created).append(notificationMeta, rhs.notificationMeta).append(notificationType, rhs.notificationType).append(restPostBodyMediaType, rhs.restPostBodyMediaType).append(notificationMessageKeyValues, rhs.notificationMessageKeyValues).append(repeat, rhs.repeat).append(requirements, rhs.requirements).append(subscriptionName, rhs.subscriptionName).append(userName, rhs.userName).append(password, rhs.password).append(ldapUserName, rhs.ldapUserName).append(additionalProperties, rhs.additionalProperties).isEquals();
     }
 
 }