FF-175 Refactor Exceptions and UnitTests (#48)

open-schnick · web-flow · commit 29d8fcd79d90 · 2020-11-30T09:44:32.000+01:00
* Added missing sanitation.

* FF-175 Refactor Exceptions and UnitTests in UserBusinessService.

* FF-175 Refactor Exceptions and UnitTests in remaining classes.
diff --git a/src/main/java/de/filefighter/rest/domain/common/InputSanitizerService.java b/src/main/java/de/filefighter/rest/domain/common/InputSanitizerService.java
@@ -19,7 +19,7 @@ public static boolean stringIsValid(String s) {
      */
     public static String sanitizeString(String string) {
         if(!InputSanitizerService.stringIsValid(string))
-            throw new RequestDidntMeetFormalRequirementsException("String was empty");
+            throw new RequestDidntMeetFormalRequirementsException("String was empty.");
         return string.replaceAll("\\s", "");
     }
 
diff --git a/src/main/java/de/filefighter/rest/domain/token/business/AccessTokenDtoService.java b/src/main/java/de/filefighter/rest/domain/token/business/AccessTokenDtoService.java
@@ -30,7 +30,7 @@ public AccessToken createDto(AccessTokenEntity entity) {
     public AccessTokenEntity findEntity(AccessToken dto) {
         AccessTokenEntity accessTokenEntity = accessTokenRepository.findByUserIdAndValue(dto.getUserId(), dto.getTokenValue());
         if (null == accessTokenEntity)
-            throw new AccessTokenNotFoundException("AccessTokenEntity does not exist for AccessToken: "+ dto);
+            throw new AccessTokenNotFoundException("AccessTokenEntity does not exist for AccessToken with userId "+ dto.getUserId()+".");
 
         return accessTokenEntity;
     }
diff --git a/src/main/java/de/filefighter/rest/domain/user/business/UserBusinessService.java b/src/main/java/de/filefighter/rest/domain/user/business/UserBusinessService.java
@@ -11,7 +11,6 @@
 import de.filefighter.rest.domain.user.exceptions.UserNotUpdatedException;
 import de.filefighter.rest.domain.user.group.GroupRepository;
 import de.filefighter.rest.domain.user.group.Groups;
-import de.filefighter.rest.rest.exceptions.RequestDidntMeetFormalRequirementsException;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Value;
@@ -25,7 +24,6 @@
 import java.util.Arrays;
 import java.util.regex.Pattern;
 
-import static de.filefighter.rest.domain.common.InputSanitizerService.sanitizeString;
 import static de.filefighter.rest.domain.common.InputSanitizerService.stringIsValid;
 
 @Service
@@ -71,7 +69,7 @@ public RefreshToken getRefreshTokenForUser(User user) {
         String refreshTokenValue = userEntity.getRefreshToken();
 
         if (!stringIsValid(refreshTokenValue))
-            throw new IllegalStateException("RefreshToken was empty in db.");
+            throw new IllegalStateException("RefreshToken was invalid or empty in db.");
 
         return RefreshToken
                 .builder()
@@ -81,10 +79,7 @@ public RefreshToken getRefreshTokenForUser(User user) {
     }
 
     public User findUserByUsername(String username) {
-        if (!stringIsValid(username))
-            throw new RequestDidntMeetFormalRequirementsException("Username was not valid.");
-
-        String lowercaseUsername = sanitizeString(username.toLowerCase());
+        String lowercaseUsername = username.toLowerCase();
 
         UserEntity entity = userRepository.findByLowercaseUsername(lowercaseUsername);
         if (null == entity)
@@ -158,7 +153,7 @@ public void updateUser(long userId, UserRegisterForm userToUpdate, User authenti
             throw new UserNotUpdatedException("No updates specified.");
 
         if (null == authenticatedUser.getGroups())
-            throw new UserNotUpdatedException("Authenticated User is not allowed");
+            throw new UserNotUpdatedException("Authenticated User is not allowed.");
 
         boolean authenticatedUserIsAdmin = Arrays.stream(authenticatedUser.getGroups()).anyMatch(g -> g == Groups.ADMIN);
         if (userId != authenticatedUser.getId() && !authenticatedUserIsAdmin)
@@ -218,7 +213,7 @@ public void updateUser(long userId, UserRegisterForm userToUpdate, User authenti
             try {
                 for (Groups group : groupRepository.getGroupsByIds(userToUpdate.getGroupIds())) {
                     if (group == Groups.ADMIN && !authenticatedUserIsAdmin)
-                        throw new UserNotUpdatedException("Only admins can add users to group " + Groups.ADMIN.getDisplayName());
+                        throw new UserNotUpdatedException("Only admins can add users to group " + Groups.ADMIN.getDisplayName() + ".");
                 }
             } catch (IllegalArgumentException exception) {
                 throw new UserNotUpdatedException("One or more groups do not exist.");
@@ -236,14 +231,14 @@ public void updateUser(long userId, UserRegisterForm userToUpdate, User authenti
         mongoTemplate.findAndModify(query, newUpdate, UserEntity.class);
     }
 
-    public long generateRandomUserId(){
+    public long generateRandomUserId() {
         long possibleUserId = 0L;
         boolean userIdIsFree = false;
 
-        while(!userIdIsFree){
+        while (!userIdIsFree) {
             possibleUserId = new SecureRandom().nextInt(UserBusinessService.USER_ID_MAX);
             UserEntity userEntity = userRepository.findByUserId(possibleUserId);
-            if(null == userEntity && possibleUserId > 0)
+            if (null == userEntity && possibleUserId > 0)
                 userIdIsFree = true;
         }
 
diff --git a/src/main/java/de/filefighter/rest/domain/user/exceptions/UserNotFoundException.java b/src/main/java/de/filefighter/rest/domain/user/exceptions/UserNotFoundException.java
@@ -7,7 +7,7 @@ public UserNotFoundException(){
     }
 
     public UserNotFoundException(long id) {
-        super("Could not find user " + id);
+        super("Could not find user with userId " + id+".");
     }
 
     public UserNotFoundException(String message) {
diff --git a/src/main/java/de/filefighter/rest/domain/user/group/GroupRepository.java b/src/main/java/de/filefighter/rest/domain/user/group/GroupRepository.java
@@ -12,7 +12,7 @@ public Groups getGroupById(long id) {
                 return group;
             }
         }
-        throw new IllegalArgumentException("id doesnt belong to a group");
+        throw new IllegalArgumentException("id "+id+" doesnt belong to a group.");
     }
 
     public Groups[] getGroupsByIds(long... ids){
diff --git a/src/main/java/de/filefighter/rest/domain/user/rest/UserRestService.java b/src/main/java/de/filefighter/rest/domain/user/rest/UserRestService.java
@@ -90,10 +90,11 @@ public ResponseEntity<ServerResponse> registerNewUserWithAccessToken(UserRegiste
     public ResponseEntity<User> findUserByUsernameAndAccessToken(String username, String accessTokenHeader) {
         String sanitizedHeaderValue = inputSanitizerService.sanitizeRequestHeader(AUTHORIZATION_BEARER_PREFIX, accessTokenHeader);
         String sanitizedTokenString = inputSanitizerService.sanitizeTokenValue(sanitizedHeaderValue);
+        String sanitizedUserName = InputSanitizerService.sanitizeString(username);
 
         AccessToken accessToken = accessTokenBusinessService.findAccessTokenByValue(sanitizedTokenString);
         userAuthorizationService.authenticateUserWithAccessToken(accessToken);
-        User foundUser = userBusinessService.findUserByUsername(username);
+        User foundUser = userBusinessService.findUserByUsername(sanitizedUserName);
         return new ResponseEntity<>(foundUser, HttpStatus.OK);
     }
 }
diff --git a/src/test/java/de/filefighter/rest/domain/common/InputSanitizerServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/common/InputSanitizerServiceUnitTest.java
@@ -23,11 +23,13 @@ void sanitizeStringThrows() {
         String string0 = "";
         String string1 = null;
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        RequestDidntMeetFormalRequirementsException ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 InputSanitizerService.sanitizeString(string0));
+        assertEquals("Request didnt meet formal requirements. String was empty.", ex.getMessage());
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 InputSanitizerService.sanitizeString(string1));
+        assertEquals("Request didnt meet formal requirements. String was empty.", ex.getMessage());
     }
 
     @Test
@@ -49,17 +51,21 @@ void sanitizeRequestHeaderThrows() {
         String string2 = header + "";
         String string3 = header + " as a a s d d  d ";
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        RequestDidntMeetFormalRequirementsException ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeRequestHeader(header, string0));
+        assertEquals("Request didnt meet formal requirements. Header does not contain a valid String.", ex.getMessage());
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeRequestHeader(header, string1));
+        assertEquals("Request didnt meet formal requirements. Header does not contain a valid String.", ex.getMessage());
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeRequestHeader(header, string2));
+        assertEquals("Request didnt meet formal requirements. Header does not contain '" + header + "', or format is invalid.", ex.getMessage());
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeRequestHeader(header, string3));
+        assertEquals("Request didnt meet formal requirements. Header does not contain '" + header + "', or format is invalid.", ex.getMessage());
     }
 
 
@@ -79,10 +85,14 @@ void sanitizeTokenThrows() {
         String string0 = "";
         String string1 = null;
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        RequestDidntMeetFormalRequirementsException ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeTokenValue(string0));
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+        assertEquals("Request didnt meet formal requirements. String was empty.", ex.getMessage());
+
+        ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
                 inputSanitizerService.sanitizeTokenValue(string1));
+        assertEquals("Request didnt meet formal requirements. String was empty.", ex.getMessage());
+
     }
 
     @Test
diff --git a/src/test/java/de/filefighter/rest/domain/filesystem/type/FileSystemTypeRepositoryUnitTest.java b/src/test/java/de/filefighter/rest/domain/filesystem/type/FileSystemTypeRepositoryUnitTest.java
@@ -11,8 +11,10 @@ class FileSystemTypeRepositoryUnitTest {
 
     @Test
     void findFileSystemTypeByIdThrows() {
-        assertThrows(IllegalArgumentException.class, () ->
-                fileSystemTypeRepository.findFileSystemTypeById(900));
+        long id = 900;
+        IllegalArgumentException ex = assertThrows(IllegalArgumentException.class, () ->
+                fileSystemTypeRepository.findFileSystemTypeById(id));
+        assertEquals("No FileSystemType found for id: " + id, ex.getMessage());
     }
 
     @Test
diff --git a/src/test/java/de/filefighter/rest/domain/token/business/AccessTokenBusinessServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/token/business/AccessTokenBusinessServiceUnitTest.java
@@ -95,7 +95,9 @@ void getValidAccessTokenForUserWhenTokenDeletionFails() {
         when(accessTokenRepositoryMock.findByUserId(dummyId)).thenReturn(dummyAccessTokenEntity);
         when(accessTokenRepositoryMock.deleteByUserId(dummyId)).thenReturn(dummyId - 1);
 
-        assertThrows(FileFighterDataException.class, () -> accessTokenBusinessService.getValidAccessTokenForUser(dummyUser));
+        FileFighterDataException ex = assertThrows(FileFighterDataException.class, () ->
+                accessTokenBusinessService.getValidAccessTokenForUser(dummyUser));
+        assertEquals("Internal Error occurred. AccessToken for userId " + dummyId + " could not be deleted.", ex.getMessage());
     }
 
     @Test
@@ -105,9 +107,10 @@ void findAccessTokenByValueAndUserIdWithTokenNotFound() {
 
         when(accessTokenRepositoryMock.findByUserIdAndValue(userId, tokenValue)).thenReturn(null);
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        UserNotAuthenticatedException ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 accessTokenBusinessService.findAccessTokenByValueAndUserId(tokenValue, userId)
         );
+        assertEquals("User with the id " + userId + " could not be authenticated.", ex.getMessage());
     }
 
     @Test
@@ -127,12 +130,14 @@ void findAccessTokenByValueAndUserIdWithFoundToken() {
 
     @Test
     void findAccessTokenByValueThrowsException() {
-        String invalidFormat = "";
         String validFormat = "ugabuga";
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        when(accessTokenRepositoryMock.findByValue(validFormat)).thenReturn(null);
+
+        UserNotAuthenticatedException ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 accessTokenBusinessService.findAccessTokenByValue(validFormat)
         );
+        assertEquals("User could not be authenticated. AccessToken not found.", ex.getMessage());
     }
 
     @Test
diff --git a/src/test/java/de/filefighter/rest/domain/token/business/AccessTokenDtoServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/token/business/AccessTokenDtoServiceUnitTest.java
@@ -7,7 +7,8 @@
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
 
-import static org.junit.jupiter.api.Assertions.*;
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertThrows;
 import static org.mockito.Mockito.mock;
 import static org.mockito.Mockito.when;
 
@@ -44,9 +45,10 @@ void findEntityNotSuccessfully() {
 
         when(accessTokenRepository.findByUserIdAndValue(userId, token)).thenReturn(null);
 
-        assertThrows(AccessTokenNotFoundException.class, () ->
+        AccessTokenNotFoundException ex = assertThrows(AccessTokenNotFoundException.class, () ->
                 accessTokenDtoService.findEntity(dummyToken)
         );
+        assertEquals("AccessTokenEntity does not exist for AccessToken with userId "+userId+".", ex.getMessage());
     }
 
     @Test
diff --git a/src/test/java/de/filefighter/rest/domain/user/business/UserAuthorizationServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/user/business/UserAuthorizationServiceUnitTest.java
@@ -27,14 +27,15 @@ void authenticateUserWithUsernameAndPasswordThrows() {
         String matchesButIsNotSupportedEncoding = "���"; //funny enough sonar doesnt like this. who cares.
         String matchesButUserWasNotFound = "dXNlcjpwYXNzd29yZA==";
 
-        assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
-                userAuthorizationService.authenticateUserWithUsernameAndPassword(matchesButIsNotSupportedEncoding)
-        );
+        RuntimeException ex = assertThrows(RequestDidntMeetFormalRequirementsException.class, () ->
+                userAuthorizationService.authenticateUserWithUsernameAndPassword(matchesButIsNotSupportedEncoding));
+        assertEquals("Request didnt meet formal requirements. Found unsupported character in header.", ex.getMessage());
 
         when(userRepositoryMock.findByLowercaseUsernameAndPassword("user", "password")).thenReturn(null);
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 userAuthorizationService.authenticateUserWithUsernameAndPassword(matchesButUserWasNotFound));
+        assertEquals("User could not be authenticated. No User found with this username and password.", ex.getMessage());
     }
 
     @Test
@@ -57,8 +58,9 @@ void authenticateUserWithRefreshTokenThrowsExceptions() {
 
         when(userRepositoryMock.findByRefreshToken(refreshToken)).thenReturn(null);
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        UserNotAuthenticatedException ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 userAuthorizationService.authenticateUserWithRefreshToken(authString));
+        assertEquals("User could not be authenticated. No user found for this Refresh Token.", ex.getMessage());
     }
 
     @Test
@@ -82,8 +84,9 @@ void authenticateUserWithAccessTokenThrows() {
 
         when(userRepositoryMock.findByUserId(userId)).thenReturn(null);
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        UserNotAuthenticatedException ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 userAuthorizationService.authenticateUserWithAccessToken(accessToken));
+        assertEquals("User with the id " + userId + " could not be authenticated.", ex.getMessage());
     }
 
     @Test
@@ -104,13 +107,15 @@ void authenticateUserWithAccessTokenAndGroupThrows() {
 
         when(userRepositoryMock.findByUserId(userId)).thenReturn(null);
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        UserNotAuthenticatedException ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 userAuthorizationService.authenticateUserWithAccessTokenAndGroup(accessToken, Groups.ADMIN));
+        assertEquals("User with the id " + userId + " could not be authenticated.", ex.getMessage());
 
         when(userRepositoryMock.findByUserId(userId)).thenReturn(UserEntity.builder().groupIds(new long[]{0}).build());
 
-        assertThrows(UserNotAuthenticatedException.class, () ->
+        ex = assertThrows(UserNotAuthenticatedException.class, () ->
                 userAuthorizationService.authenticateUserWithAccessTokenAndGroup(accessToken, Groups.ADMIN));
+        assertEquals("User could not be authenticated. Not in necessary group.", ex.getMessage());
     }
 
     @Test
diff --git a/src/test/java/de/filefighter/rest/domain/user/business/UserBusinessServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/user/business/UserBusinessServiceUnitTest.java
diff --git a/src/test/java/de/filefighter/rest/domain/user/business/UserDtoServiceUnitTest.java b/src/test/java/de/filefighter/rest/domain/user/business/UserDtoServiceUnitTest.java
diff --git a/src/test/java/de/filefighter/rest/domain/user/group/GroupRepositoryUnitTest.java b/src/test/java/de/filefighter/rest/domain/user/group/GroupRepositoryUnitTest.java

Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ public static boolean stringIsValid(String s) {`
`19`	`19`	`*/`
`20`	`20`	`public static String sanitizeString(String string) {`
`21`	`21`	`if(!InputSanitizerService.stringIsValid(string))`
`22`		`- throw new RequestDidntMeetFormalRequirementsException("String was empty");`
	`22`	`+ throw new RequestDidntMeetFormalRequirementsException("String was empty.");`
`23`	`23`	`return string.replaceAll("\\s", "");`
`24`	`24`	`}`
`25`	`25`
Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ public AccessToken createDto(AccessTokenEntity entity) {`
`30`	`30`	`public AccessTokenEntity findEntity(AccessToken dto) {`
`31`	`31`	`AccessTokenEntity accessTokenEntity = accessTokenRepository.findByUserIdAndValue(dto.getUserId(), dto.getTokenValue());`
`32`	`32`	`if (null == accessTokenEntity)`
`33`		`- throw new AccessTokenNotFoundException("AccessTokenEntity does not exist for AccessToken: "+ dto);`
	`33`	`+ throw new AccessTokenNotFoundException("AccessTokenEntity does not exist for AccessToken with userId "+ dto.getUserId()+".");`
`34`	`34`
`35`	`35`	`return accessTokenEntity;`
`36`	`36`	`}`
Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@ public UserNotFoundException(){`
`7`	`7`	`}`
`8`	`8`
`9`	`9`	`public UserNotFoundException(long id) {`
`10`		`- super("Could not find user " + id);`
	`10`	`+ super("Could not find user with userId " + id+".");`
`11`	`11`	`}`
`12`	`12`
`13`	`13`	`public UserNotFoundException(String message) {`
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@ public Groups getGroupById(long id) {`
`12`	`12`	`return group;`
`13`	`13`	`}`
`14`	`14`	`}`
`15`		`- throw new IllegalArgumentException("id doesnt belong to a group");`
	`15`	`+ throw new IllegalArgumentException("id "+id+" doesnt belong to a group.");`
`16`	`16`	`}`
`17`	`17`
`18`	`18`	`public Groups[] getGroupsByIds(long... ids){`
Original file line number	Diff line number	Diff line change
`@@ -90,10 +90,11 @@ public ResponseEntity<ServerResponse> registerNewUserWithAccessToken(UserRegiste`
`90`	`90`	`public ResponseEntity<User> findUserByUsernameAndAccessToken(String username, String accessTokenHeader) {`
`91`	`91`	`String sanitizedHeaderValue = inputSanitizerService.sanitizeRequestHeader(AUTHORIZATION_BEARER_PREFIX, accessTokenHeader);`
`92`	`92`	`String sanitizedTokenString = inputSanitizerService.sanitizeTokenValue(sanitizedHeaderValue);`
	`93`	`+ String sanitizedUserName = InputSanitizerService.sanitizeString(username);`
`93`	`94`
`94`	`95`	`AccessToken accessToken = accessTokenBusinessService.findAccessTokenByValue(sanitizedTokenString);`
`95`	`96`	`userAuthorizationService.authenticateUserWithAccessToken(accessToken);`
`96`		`- User foundUser = userBusinessService.findUserByUsername(username);`
	`97`	`+ User foundUser = userBusinessService.findUserByUsername(sanitizedUserName);`
`97`	`98`	`return new ResponseEntity<>(foundUser, HttpStatus.OK);`
`98`	`99`	`}`
`99`	`100`	`}`