MockGeoNetworkXmlUserLoginService.java

/webportal/src/test/java/au/org/emii/portal/test/authentication/MockGeoNetworkXmlUserLoginService.java

http://alageospatialportal.googlecode.com/ · Java · 77 lines · 48 code · 12 blank · 17 comment · 6 complexity · 93f66f14c758a98b71678e90c69b3e2f MD5 · raw file


/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */

package au.org.emii.portal.test.authentication;

import java.io.IOException;
import java.io.PrintStream;
import org.apache.commons.io.IOUtils;
import org.apache.log4j.Logger;
import org.simpleframework.http.Request;
import org.simpleframework.http.Response;
import org.simpleframework.http.core.Container;

/**
 * Use simple framework embedded http server to create simulated http responses
 * @author geoff
 */
public class MockGeoNetworkXmlUserLoginService implements Container {

    private final static String SUCCEED_OUTPUT = "test_data/xml.user.login-succeed";
    private final static String FAIL_OUTPUT = "test_data/xml.user.login-fail";
    public static final String GOOD_USER = "admin";
    public static final String GOOD_PASSWORD = "admin";
    public static final String BAD_USER = "nothere";
    public static final String BAD_PASSWORD = "nothere";
    private Logger logger = Logger.getLogger(getClass());
    /**
     * True if login requests will succeed otherwise false
     */
    private boolean succeed = true;

    public boolean isSucceed() {
        return succeed;
    }

    public void setSucceed(boolean succeed) {
        this.succeed = succeed;
    }


    /**
     * Fake long function
     * @param username
     * @param password
     * @return
     */
    private boolean login(String username, String password) {
        return username != null && username.equals(GOOD_USER) &&
               password != null && password.equals(GOOD_PASSWORD);
    }

    @Override
    public void handle(Request request, Response response) {
        try {
            String username = request.getParameter("username");
            String password = request.getParameter("password");
            PrintStream out = response.getPrintStream();
            boolean loggedIn = login(username, password);
            logger.debug("fake sever says logged in = " + loggedIn);
            if (loggedIn) {
                response.set("Content-Type", "application/xml");
                out.print(IOUtils.toString(getClass().getClassLoader().getResourceAsStream(SUCCEED_OUTPUT)));
            } else {
                response.set("Content-Type", "text/html");
                out.print(IOUtils.toString(getClass().getClassLoader().getResourceAsStream(FAIL_OUTPUT)));
            }
            out.close();
        } catch (IOException e) {
            logger.error("IO exception - should never happen", e);
        }

    }

    
}

Summary ✨

This Java code creates a mock HTTP server using the Simple Framework library, simulating an authentication service for a GeoNetwork application. It responds to login requests with either a successful XML output or an error HTML output based on the provided username and password credentials. The response is determined by a boolean flag that can be set to control the outcome of the login attempt.

Tech Fingerprint

Alerts (5)

'String password' Security Critical: Storing passwords or sensitive secrets directly in String objects is insecure. Strings are immutable and pooled, making them hard to clear from memory reliably. Use `char[]` instead and explicitly clear it after use.
49 58
Complexity hotspot; lines 50 to 51 (total complexity: 4)
50 51
'.close()' Manual .close() call detected. Prefer using try-with-resources (Java 7+) for automatic and safer resource management, especially handling exceptions during close.
69