aboutsummaryrefslogtreecommitdiffstats
path: root/jdisc-security-filters/src/test/java
diff options
context:
space:
mode:
authorBjørn Christian Seime <bjorncs@yahooinc.com>2023-06-15 13:10:18 +0200
committerBjørn Christian Seime <bjorncs@yahooinc.com>2023-06-15 13:13:48 +0200
commitf5cf6f814eeeaa7b77a5312ac8c6bf7cdc4fa4c3 (patch)
treea9c6fe4fd7314b903664eb9bf56227e9622e1bf5 /jdisc-security-filters/src/test/java
parent147de419d353b7da73795c97e3e95e901b59fad4 (diff)
Misc improvements
Remove duplicate unit tests. Improve symbol names. Use `Map` to simplify code and reduce cost. Introduce constant for the number of bytes in token check hash. Improve code comments.
Diffstat (limited to 'jdisc-security-filters/src/test/java')
-rw-r--r--jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java17
1 files changed, 3 insertions, 14 deletions
diff --git a/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java b/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java
index 2dd577c18d6..e81ef45d3af 100644
--- a/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java
+++ b/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java
@@ -27,6 +27,7 @@ import java.util.Set;
import static com.yahoo.jdisc.Response.Status.FORBIDDEN;
import static com.yahoo.jdisc.Response.Status.UNAUTHORIZED;
+import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.CHECK_HASH_BYTES;
import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.Permission.READ;
import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.Permission.WRITE;
import static com.yahoo.security.KeyAlgorithm.EC;
@@ -52,9 +53,9 @@ class CloudDataPlaneFilterTest {
private static final String TOKEN_CONTEXT = "my-token-context";
private static final String TOKEN_ID = "my-token-id";
private static final Token VALID_TOKEN =
- TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", 32);
+ TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", CHECK_HASH_BYTES);
private static final Token UNKNOWN_TOKEN =
- TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", 32);
+ TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", CHECK_HASH_BYTES);
@Test
void accepts_any_trusted_client_certificate_in_legacy_mode() {
@@ -190,18 +191,6 @@ class CloudDataPlaneFilterTest {
}
@Test
- void fails_for_reverse_proxy_without_configured_token() {
- var req = FilterTestUtils.newRequestBuilder()
- .withMethod(Method.GET)
- .withClientCertificate(REVERSE_PROXY_CERT)
- .build();
- var responseHandler = new MockResponseHandler();
- newFilterWithClientsConfig().filter(req, responseHandler);
- assertNotNull(responseHandler.getResponse());
- assertEquals(FORBIDDEN, responseHandler.getResponse().getStatus());
- }
-
- @Test
void fails_for_missing_certificate_with_token() {
var req = FilterTestUtils.newRequestBuilder()
.withMethod(Method.GET)