-
Notifications
You must be signed in to change notification settings - Fork 490
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
don't suggest "your institution" for remote auth #3338
- Loading branch information
Showing
6 changed files
with
90 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
31 changes: 31 additions & 0 deletions
31
src/main/java/edu/harvard/iq/dataverse/authorization/AuthUtil.java
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
package edu.harvard.iq.dataverse.authorization; | ||
|
||
import edu.harvard.iq.dataverse.authorization.providers.builtin.DataverseUserPage; | ||
import edu.harvard.iq.dataverse.authorization.providers.oauth2.AbstractOAuth2AuthenticationProvider; | ||
import java.util.Collection; | ||
import java.util.logging.Logger; | ||
|
||
public class AuthUtil { | ||
|
||
private static final Logger logger = Logger.getLogger(DataverseUserPage.class.getCanonicalName()); | ||
|
||
public static boolean isNonLocalLoginEnabled(boolean shibEnabled, Collection<AuthenticationProvider> providers) { | ||
if (shibEnabled) { | ||
return true; | ||
} else { | ||
logger.fine("Shib is not enabled."); | ||
} | ||
if (providers != null) { | ||
for (AuthenticationProvider provider : providers) { | ||
if (provider instanceof AbstractOAuth2AuthenticationProvider) { | ||
logger.fine("found an oauth provider (returning true): " + provider.getId()); | ||
return true; | ||
} else { | ||
logger.fine("not an oauth provider: " + provider.getId()); | ||
} | ||
} | ||
} | ||
return false; | ||
} | ||
|
||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
45 changes: 45 additions & 0 deletions
45
src/test/java/edu/harvard/iq/dataverse/authorization/AuthUtilTest.java
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,45 @@ | ||
package edu.harvard.iq.dataverse.authorization; | ||
|
||
import edu.harvard.iq.dataverse.authorization.providers.builtin.BuiltinAuthenticationProvider; | ||
import edu.harvard.iq.dataverse.authorization.providers.oauth2.impl.GitHubOAuth2AP; | ||
import edu.harvard.iq.dataverse.authorization.providers.oauth2.impl.GoogleOAuth2AP; | ||
import edu.harvard.iq.dataverse.authorization.providers.oauth2.impl.OrcidOAuth2AP; | ||
import edu.harvard.iq.dataverse.authorization.providers.shib.ShibAuthenticationProvider; | ||
import java.util.Collection; | ||
import java.util.HashSet; | ||
import org.junit.Test; | ||
import static org.junit.Assert.*; | ||
|
||
public class AuthUtilTest { | ||
|
||
/** | ||
* Test of isNonLocalLoginEnabled method, of class AuthUtil. | ||
*/ | ||
@Test | ||
public void testIsNonLocalLoginEnabled() { | ||
System.out.println("isNonLocalLoginEnabled"); | ||
|
||
// no shib, no providers! | ||
assertEquals(false, AuthUtil.isNonLocalLoginEnabled(false, null)); | ||
|
||
// yes shib, no providers | ||
assertEquals(true, AuthUtil.isNonLocalLoginEnabled(true, null)); | ||
|
||
Collection<AuthenticationProvider> manyNonLocal = new HashSet<>(); | ||
manyNonLocal.add(new ShibAuthenticationProvider()); | ||
manyNonLocal.add(new GitHubOAuth2AP(null, null)); | ||
manyNonLocal.add(new GoogleOAuth2AP(null, null)); | ||
manyNonLocal.add(new OrcidOAuth2AP(null, null, null)); | ||
// yes shib, yes non local providers | ||
assertEquals(true, AuthUtil.isNonLocalLoginEnabled(true, manyNonLocal)); | ||
// no shib, yes non local providers | ||
assertEquals(true, AuthUtil.isNonLocalLoginEnabled(false, manyNonLocal)); | ||
|
||
Collection<AuthenticationProvider> onlyBuiltin = new HashSet<>(); | ||
onlyBuiltin.add(new BuiltinAuthenticationProvider(null)); | ||
// no shib, only builtin provider | ||
assertEquals(false, AuthUtil.isNonLocalLoginEnabled(false, onlyBuiltin)); | ||
|
||
} | ||
|
||
} |