From 1fb0f588262a92010c5f0afa52d336a707358a6b Mon Sep 17 00:00:00 2001
From: Oliver Bertuch <o.bertuch@fz-juelich.de>
Date: Tue, 10 Jan 2023 20:51:24 +0100
Subject: [PATCH] test(auth): add integration test for OIDC provisioning via
 MPCONFIG #9268

Using Testcontainers to start a Keycloak instance with our default development realm,
the provider is created using MPCONFIG settings.
---
 .../OIDCAuthenticationProviderFactoryIT.java  | 37 +++++++++++++++++++
 1 file changed, 37 insertions(+)
 create mode 100644 src/test/java/edu/harvard/iq/dataverse/authorization/providers/oauth2/oidc/OIDCAuthenticationProviderFactoryIT.java

diff --git a/src/test/java/edu/harvard/iq/dataverse/authorization/providers/oauth2/oidc/OIDCAuthenticationProviderFactoryIT.java b/src/test/java/edu/harvard/iq/dataverse/authorization/providers/oauth2/oidc/OIDCAuthenticationProviderFactoryIT.java
new file mode 100644
index 00000000000..53cfcca2742
--- /dev/null
+++ b/src/test/java/edu/harvard/iq/dataverse/authorization/providers/oauth2/oidc/OIDCAuthenticationProviderFactoryIT.java
@@ -0,0 +1,37 @@
+package edu.harvard.iq.dataverse.authorization.providers.oauth2.oidc;
+
+import dasniko.testcontainers.keycloak.KeycloakContainer;
+import edu.harvard.iq.dataverse.settings.JvmSettings;
+import edu.harvard.iq.dataverse.util.testing.JvmSetting;
+import org.junit.jupiter.api.Tag;
+import org.junit.jupiter.api.Test;
+import org.testcontainers.junit.jupiter.Container;
+import org.testcontainers.junit.jupiter.Testcontainers;
+
+import static org.junit.jupiter.api.Assertions.assertTrue;
+
+@Tag("testcontainers")
+@Testcontainers
+class OIDCAuthenticationProviderFactoryIT {
+    
+    static final String clientId = "oidc-client";
+    static final String clientSecret = "ss6gE8mODCDfqesQaSG3gwUwZqZt547E";
+    static final String realm = "oidc-realm";
+    
+    @Container
+    static KeycloakContainer keycloakContainer = new KeycloakContainer().withRealmImportFile("keycloak/oidc-realm.json");
+    
+    // simple method to retrieve the issuer URL, referenced to by @JvmSetting annotations
+    private static String getAuthUrl() {
+        return keycloakContainer.getAuthServerUrl() + "realms/" + realm;
+    }
+    
+    @Test
+    @JvmSetting(key = JvmSettings.OIDC_CLIENT_ID, value = clientId)
+    @JvmSetting(key = JvmSettings.OIDC_CLIENT_SECRET, value = clientSecret)
+    @JvmSetting(key = JvmSettings.OIDC_AUTH_SERVER_URL, method = "getAuthUrl")
+    void testCreateProvider() throws Exception {
+        OIDCAuthProvider oidcAuthProvider = (OIDCAuthProvider) OIDCAuthenticationProviderFactory.buildFromSettings();
+        assertTrue(oidcAuthProvider.getMetadata().getTokenEndpointURI().toString().startsWith(keycloakContainer.getAuthServerUrl()));
+    }
+}
\ No newline at end of file