Merge pull request #1171 from Unicon/persondir-nullattr

Ensure null principal is returned when no attrs are found

Merge pull request #1171 from Unicon/persondir-nullattr
Ensure null principal is returned when no attrs are found
ccccc4b7 · Misagh Moayyed · e2418393 · ace2069c · ccccc4b7 · ccccc4b7
Commit ccccc4b7 authored Sep 24, 2015 by Misagh Moayyed
--- a/cas-server-core/src/main/java/org/jasig/cas/authentication/principal/PersonDirectoryPrincipalResolver.java
+++ b/cas-server-core/src/main/java/org/jasig/cas/authentication/principal/PersonDirectoryPrincipalResolver.java
@@ -86,11 +86,10 @@ public class PersonDirectoryPrincipalResolver implements PrincipalResolver {
            attributes = personAttributes.getAttributes();
        }
-        if (attributes == null & !this.returnNullIfNoAttributes) {
+        if (attributes == null || attributes.isEmpty()) {
-            return this.principalFactory.createPrincipal(principalId);
+            if (!this.returnNullIfNoAttributes) {
-        }
+                return this.principalFactory.createPrincipal(principalId);
+            }
-        if (attributes == null) {
            return null;
        }

--- a/cas-server-core/src/test/java/org/jasig/cas/TestUtils.java
+++ b/cas-server-core/src/test/java/org/jasig/cas/TestUtils.java
@@ -18,6 +18,7 @@
 */
 package org.jasig.cas;
+import com.google.common.collect.ImmutableList;
 import com.google.common.collect.ImmutableSet;
 import org.jasig.cas.authentication.Authentication;
 import org.jasig.cas.authentication.AuthenticationHandler;
@@ -44,6 +45,7 @@ import org.jasig.cas.services.ReturnAllowedAttributeReleasePolicy;
 import org.jasig.cas.services.support.RegisteredServiceRegexAttributeFilter;
 import org.jasig.cas.validation.Assertion;
 import org.jasig.cas.validation.ImmutableAssertion;
+import org.jasig.services.persondir.IPersonAttributeDao;
 import org.jasig.services.persondir.support.StubPersonAttributeDao;
 import org.jasig.services.persondir.support.merger.NoncollidingAttributeAdder;
 import org.springframework.mock.web.MockHttpServletRequest;
@@ -131,6 +133,15 @@ public final class TestUtils {
        }
    }
+    public static IPersonAttributeDao getAttributeRepository() {
+        final Map<String, List<Object>>  attributes = new HashMap<>();
+        attributes.put("uid", (List) ImmutableList.of(CONST_USERNAME));
+        attributes.put("cn", (List) ImmutableList.of(CONST_USERNAME.toUpperCase()));
+        attributes.put("givenName", (List) ImmutableList.of(CONST_USERNAME));
+        attributes.put("memberOf", (List) ImmutableList.of("system", "admin", "cas"));
+        return new StubPersonAttributeDao(attributes);
+    }
    public static Principal getPrincipal() {
        return getPrincipal(CONST_USERNAME);
    }

--- a/cas-server-core/src/test/java/org/jasig/cas/authentication/principal/PersonDirectoryPrincipalResolverTests.java
+++ b/cas-server-core/src/test/java/org/jasig/cas/authentication/principal/PersonDirectoryPrincipalResolverTests.java
+/*
+ * Licensed to Apereo under one or more contributor license
+ * agreements. See the NOTICE file distributed with this work
+ * for additional information regarding copyright ownership.
+ * Apereo licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License.  You may obtain a
+ * copy of the License at the following location:
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+package org.jasig.cas.authentication.principal;
+import org.jasig.cas.TestUtils;
+import org.jasig.cas.authentication.Credential;
+import org.junit.Test;
+import static org.junit.Assert.*;
+/**
+ * Test cases for {@link PersonDirectoryPrincipalResolver}.
+ * @author Misagh Moayyed
+ * @since 4.2
+ */
+public class PersonDirectoryPrincipalResolverTests {
+    @Test
+    public void verifyNullPrincipal() {
+        final PersonDirectoryPrincipalResolver resolver = new PersonDirectoryPrincipalResolver();
+        final Principal p = resolver.resolve(new Credential() {
+            @Override
+            public String getId() {
+                return null;
+            }
+        });
+        assertNull(p);
+    }
+    @Test
+    public void verifyNullAttributes() {
+        final PersonDirectoryPrincipalResolver resolver = new PersonDirectoryPrincipalResolver();
+        resolver.setReturnNullIfNoAttributes(true);
+        resolver.setPrincipalAttributeName(TestUtils.CONST_USERNAME);
+        final Credential c = TestUtils.getCredentialsWithSameUsernameAndPassword();
+        final Principal p = resolver.resolve(c);
+        assertNull(p);
+    }
+    @Test
+    public void verifyNoAttributesWithPrincipal() {
+        final PersonDirectoryPrincipalResolver resolver = new PersonDirectoryPrincipalResolver();
+        resolver.setPrincipalAttributeName(TestUtils.CONST_USERNAME);
+        final Credential c = TestUtils.getCredentialsWithSameUsernameAndPassword();
+        final Principal p = resolver.resolve(c);
+        assertNotNull(p);
+    }
+    @Test
+    public void verifyAttributesWithPrincipal() {
+        final PersonDirectoryPrincipalResolver resolver = new PersonDirectoryPrincipalResolver();
+        resolver.setAttributeRepository(TestUtils.getAttributeRepository());
+        resolver.setPrincipalAttributeName("cn");
+        final Credential c = TestUtils.getCredentialsWithSameUsernameAndPassword();
+        final Principal p = resolver.resolve(c);
+        assertNotNull(p);
+        assertNotEquals(p.getId(), TestUtils.CONST_USERNAME);
+        assertTrue(p.getAttributes().containsKey("memberOf"));
+    }
+}