diff options
author | Bjørn Christian Seime <bjorncs@yahooinc.com> | 2023-06-15 13:10:18 +0200 |
---|---|---|
committer | Bjørn Christian Seime <bjorncs@yahooinc.com> | 2023-06-15 13:13:48 +0200 |
commit | f5cf6f814eeeaa7b77a5312ac8c6bf7cdc4fa4c3 (patch) | |
tree | a9c6fe4fd7314b903664eb9bf56227e9622e1bf5 /jdisc-security-filters/src/test/java | |
parent | 147de419d353b7da73795c97e3e95e901b59fad4 (diff) |
Misc improvements
Remove duplicate unit tests. Improve symbol names.
Use `Map` to simplify code and reduce cost.
Introduce constant for the number of bytes in token check hash.
Improve code comments.
Diffstat (limited to 'jdisc-security-filters/src/test/java')
-rw-r--r-- | jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java | 17 |
1 files changed, 3 insertions, 14 deletions
diff --git a/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java b/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java index 2dd577c18d6..e81ef45d3af 100644 --- a/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java +++ b/jdisc-security-filters/src/test/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilterTest.java @@ -27,6 +27,7 @@ import java.util.Set; import static com.yahoo.jdisc.Response.Status.FORBIDDEN; import static com.yahoo.jdisc.Response.Status.UNAUTHORIZED; +import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.CHECK_HASH_BYTES; import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.Permission.READ; import static com.yahoo.jdisc.http.filter.security.cloud.CloudDataPlaneFilter.Permission.WRITE; import static com.yahoo.security.KeyAlgorithm.EC; @@ -52,9 +53,9 @@ class CloudDataPlaneFilterTest { private static final String TOKEN_CONTEXT = "my-token-context"; private static final String TOKEN_ID = "my-token-id"; private static final Token VALID_TOKEN = - TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", 32); + TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", CHECK_HASH_BYTES); private static final Token UNKNOWN_TOKEN = - TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", 32); + TokenGenerator.generateToken(TokenDomain.of("fp-ctx", TOKEN_CONTEXT), "vespa_token_", CHECK_HASH_BYTES); @Test void accepts_any_trusted_client_certificate_in_legacy_mode() { @@ -190,18 +191,6 @@ class CloudDataPlaneFilterTest { } @Test - void fails_for_reverse_proxy_without_configured_token() { - var req = FilterTestUtils.newRequestBuilder() - .withMethod(Method.GET) - .withClientCertificate(REVERSE_PROXY_CERT) - .build(); - var responseHandler = new MockResponseHandler(); - newFilterWithClientsConfig().filter(req, responseHandler); - assertNotNull(responseHandler.getResponse()); - assertEquals(FORBIDDEN, responseHandler.getResponse().getStatus()); - } - - @Test void fails_for_missing_certificate_with_token() { var req = FilterTestUtils.newRequestBuilder() .withMethod(Method.GET) |