Blackduck scan fixes

Issue-ID: PORTAL-631
Change-Id: I240f3656de2de2d3540f0fc1d615c461beab14c5
Signed-off-by: st398c <st398c@research.att.com>

1 files changed, 106 insertions, 0 deletions

diff --git a/ecomp-sdk/epsdk-fw/src/test/java/org/onap/portalsdk/core/onboarding/util/AuthUtilTest.java b/ecomp-sdk/epsdk-fw/src/test/java/org/onap/portalsdk/core/onboarding/util/AuthUtilTest.java
new file mode 100644
index 00000000..35f0b026
--- /dev/null
+++ b/ecomp-sdk/epsdk-fw/src/test/java/org/onap/portalsdk/core/onboarding/util/AuthUtilTest.java
@@ -0,0 +1,106 @@
+/*
+ * ============LICENSE_START==========================================
+ * ONAP Portal SDK
+ * ===================================================================
+ * Copyright © 2017 AT&T Intellectual Property. All rights reserved.
+ * ===================================================================
+ *
+ * Unless otherwise specified, all software contained herein is licensed
+ * under the Apache License, Version 2.0 (the "License");
+ * you may not use this software except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *             http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * Unless otherwise specified, all documentation contained herein is licensed
+ * under the Creative Commons License, Attribution 4.0 Intl. (the "License");
+ * you may not use this documentation except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *             https://creativecommons.org/licenses/by/4.0/
+ *
+ * Unless required by applicable law or agreed to in writing, documentation
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * ============LICENSE_END============================================
+ *
+ * 
+ */
+package org.onap.portalsdk.core.onboarding.util;
+
+import static org.junit.Assert.*;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+
+import org.junit.Test;
+import org.mockito.InjectMocks;
+import org.mockito.Mockito;
+import org.onap.aaf.cadi.CadiWrap;
+import org.onap.portalsdk.core.onboarding.exception.PortalAPIException;
+
+public class AuthUtilTest {
+
+	@InjectMocks
+	AuthUtil authUtil = new AuthUtil();
+
+	HttpServletRequest request = Mockito.mock(HttpServletRequest.class);
+
+	CadiWrap wrapReq = Mockito.mock(CadiWrap.class);
+
+	@Test
+	public void matchPatternTestSuccessCase1() {
+		assertTrue(AuthUtil.matchPattern("api/v3/test", "api/v3/*"));
+	}
+
+	@Test
+	public void matchPatternTestSuccessCase2() {
+		assertTrue(AuthUtil.matchPattern("test", "*"));
+	}
+
+	@Test
+	public void matchPatternTestSuccessCase3() {
+		assertTrue(AuthUtil.matchPattern("test", "test"));
+	}
+
+	@Test(expected = PortalAPIException.class)
+	public void isAccessAllowedExceptionTest() throws PortalAPIException {
+		Map<String, String> appCreds = new HashMap<>();
+		appCreds.put("username", "test");
+		appCreds.put("password", "test1");
+		AuthUtil.isAccessAllowed(request, "com.test", appCreds);
+	}
+
+	@Test
+	public void isAccessAllowedTest() throws PortalAPIException {
+		Mockito.when(request.getHeader("username")).thenReturn("test");
+		Mockito.when(request.getHeader("password")).thenReturn("test1");
+		Map<String, String> appCreds = new HashMap<>();
+		appCreds.put("username", "test");
+		appCreds.put("password", "test1");
+		assertTrue(AuthUtil.isAccessAllowed(request, "com.test", appCreds));
+	}
+
+	@Test
+	public void isAccessAllowedFalseTest() throws PortalAPIException {
+		Mockito.when(request.getHeader("username")).thenReturn("test");
+		Mockito.when(request.getHeader("password")).thenReturn("test1");
+		Map<String, String> appCreds = new HashMap<>();
+		appCreds.put("username", "test");
+		appCreds.put("password", "test123");
+		appCreds.put("appName", "testApp");
+		assertFalse(AuthUtil.isAccessAllowed(request, "com.test", appCreds));
+	}
+
+}