cloudfoundry
diff --git a/‎server/src/test/java/org/cloudfoundry/identity/uaa/extensions/SystemPropertiesCleanupExtension.java‎
Lines changed: 38 additions & 0 deletions b/‎server/src/test/java/org/cloudfoundry/identity/uaa/extensions/SystemPropertiesCleanupExtension.java‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎uaa/src/test/java/org/cloudfoundry/identity/uaa/login/BootstrapTests.java‎
Lines changed: 63 additions & 118 deletions b/‎uaa/src/test/java/org/cloudfoundry/identity/uaa/login/BootstrapTests.java‎
Lines changed: 63 additions & 118 deletions
@@ -0,0 +1,38 @@
+package org.cloudfoundry.identity.uaa.extensions;
+
+import org.junit.jupiter.api.extension.AfterAllCallback;
+import org.junit.jupiter.api.extension.BeforeAllCallback;
+import org.junit.jupiter.api.extension.ExtensionContext;
+
+import java.util.Set;
+
+public class SystemPropertiesCleanupExtension implements BeforeAllCallback, AfterAllCallback {
+
+    private final Set<String> properties;
+
+    public SystemPropertiesCleanupExtension(String... props) {
+        this.properties = Set.of(props);
+    }
+
+    @Override
+    public void beforeAll(ExtensionContext context) {
+        ExtensionContext.Store store = context.getStore(ExtensionContext.Namespace.create(context.getRequiredTestClass()));
+
+        properties.forEach(s -> store.put(s, System.getProperty(s)));
+    }
+
+    @Override
+    public void afterAll(ExtensionContext context) {
+        ExtensionContext.Store store = context.getStore(ExtensionContext.Namespace.create(context.getRequiredTestClass()));
+
+        properties.forEach(key -> {
+                    String value = store.get(key, String.class);
+                    if (value == null) {
+                        System.clearProperty(key);
+                    } else {
+                        System.setProperty(key, value);
+                    }
+                }
+        );
+    }
+}
@@ -1,26 +1,25 @@
 package org.cloudfoundry.identity.uaa.login;
 
+import org.assertj.core.api.Assertions;
+import org.assertj.core.api.Condition;
 import org.cloudfoundry.identity.uaa.extensions.PollutionPreventionExtension;
 import org.cloudfoundry.identity.uaa.extensions.SpringProfileCleanupExtension;
+import org.cloudfoundry.identity.uaa.extensions.SystemPropertiesCleanupExtension;
 import org.cloudfoundry.identity.uaa.impl.config.IdentityZoneConfigurationBootstrap;
 import org.cloudfoundry.identity.uaa.impl.config.YamlServletProfileInitializer;
 import org.cloudfoundry.identity.uaa.provider.SamlIdentityProviderDefinition;
 import org.cloudfoundry.identity.uaa.provider.saml.BootstrapSamlIdentityProviderData;
 import org.cloudfoundry.identity.uaa.provider.saml.SamlConfigurationBean;
 import org.cloudfoundry.identity.uaa.scim.ScimGroup;
 import org.cloudfoundry.identity.uaa.scim.ScimGroupProvisioning;
-import org.cloudfoundry.identity.uaa.util.PredicateMatcher;
 import org.cloudfoundry.identity.uaa.zone.IdentityZone;
 import org.cloudfoundry.identity.uaa.zone.IdentityZoneConfiguration;
 import org.cloudfoundry.identity.uaa.zone.IdentityZoneHolder;
 import org.cloudfoundry.identity.uaa.zone.IdentityZoneProvisioning;
 import org.cloudfoundry.identity.uaa.zone.SamlConfig;
 import org.junit.jupiter.api.Disabled;
 import org.junit.jupiter.api.Test;
-import org.junit.jupiter.api.extension.AfterAllCallback;
-import org.junit.jupiter.api.extension.BeforeAllCallback;
 import org.junit.jupiter.api.extension.ExtendWith;
-import org.junit.jupiter.api.extension.ExtensionContext;
 import org.junit.jupiter.api.extension.RegisterExtension;
 import org.junit.jupiter.params.ParameterizedTest;
 import org.junit.jupiter.params.provider.Arguments;
@@ -30,67 +29,34 @@
 import org.springframework.beans.factory.xml.ResourceEntityResolver;
 import org.springframework.beans.factory.xml.XmlBeanDefinitionReader;
 import org.springframework.context.ConfigurableApplicationContext;
+import org.springframework.core.io.DefaultResourceLoader;
+import org.springframework.core.io.Resource;
+import org.springframework.core.io.ResourceLoader;
 import org.springframework.lang.NonNull;
 import org.springframework.mock.web.MockRequestDispatcher;
 import org.springframework.mock.web.MockServletConfig;
 import org.springframework.mock.web.MockServletContext;
+import org.springframework.util.FileCopyUtils;
 import org.springframework.util.StringUtils;
 import org.springframework.web.context.support.AbstractRefreshableWebApplicationContext;
 import org.springframework.web.servlet.ViewResolver;
 
 import javax.servlet.RequestDispatcher;
-import java.io.File;
-import java.util.Arrays;
+import java.io.IOException;
+import java.io.InputStreamReader;
+import java.io.Reader;
+import java.io.UncheckedIOException;
 import java.util.EventListener;
 import java.util.List;
-import java.util.Scanner;
-import java.util.Set;
-import java.util.stream.Collectors;
 import java.util.stream.Stream;
 
-import static org.hamcrest.MatcherAssert.assertThat;
-import static org.junit.jupiter.api.Assertions.assertEquals;
-import static org.junit.jupiter.api.Assertions.assertFalse;
-import static org.junit.jupiter.api.Assertions.assertNotNull;
-import static org.junit.jupiter.api.Assertions.assertNull;
-import static org.junit.jupiter.api.Assertions.assertTrue;
+import static java.nio.charset.StandardCharsets.UTF_8;
+import static org.assertj.core.api.Assertions.assertThat;
 import static org.junit.jupiter.params.provider.Arguments.arguments;
 
-class SystemPropertiesCleanupExtension implements BeforeAllCallback, AfterAllCallback {
-
-    private final Set<String> properties;
-
-    SystemPropertiesCleanupExtension(String... props) {
-        this.properties = Arrays.stream(props).collect(Collectors.toUnmodifiableSet());
-    }
-
-    @Override
-    public void beforeAll(ExtensionContext context) {
-        ExtensionContext.Store store = context.getStore(ExtensionContext.Namespace.create(context.getRequiredTestClass()));
-
-        properties.forEach(s -> store.put(s, System.getProperty(s)));
-    }
-
-    @Override
-    public void afterAll(ExtensionContext context) {
-        ExtensionContext.Store store = context.getStore(ExtensionContext.Namespace.create(context.getRequiredTestClass()));
-
-        properties.forEach(key -> {
-                    String value = store.get(key, String.class);
-                    if (value == null) {
-                        System.clearProperty(key);
-                    } else {
-                        System.setProperty(key, value);
-                    }
-                }
-        );
-    }
-}
-
 @ExtendWith(PollutionPreventionExtension.class)
 @ExtendWith(SpringProfileCleanupExtension.class)
 class BootstrapTests {
-
     private static final String LOGIN_IDP_METADATA = "login.idpMetadata";
     private static final String LOGIN_IDP_ENTITY_ALIAS = "login.idpEntityAlias";
     private static final String LOGIN_IDP_METADATA_URL = "login.idpMetadataURL";
@@ -146,15 +112,14 @@ static Stream<Arguments> samlSignatureParameterProvider() {
         );
     }
 
-    private static SamlIdentityProviderDefinition findProvider(
+    private static SamlIdentityProviderDefinition providerByAlias(
             final List<SamlIdentityProviderDefinition> defs,
             final String alias) {
-        for (SamlIdentityProviderDefinition def : defs) {
-            if (alias.equals(def.getIdpEntityAlias())) {
-                return def;
-            }
-        }
-        return null;
+
+        return defs.stream()
+                .filter(def -> alias.equals(def.getIdpEntityAlias()))
+                .findFirst()
+                .orElse(null);
     }
 
     private static ConfigurableApplicationContext getServletContext(
@@ -182,76 +147,71 @@ private static ConfigurableApplicationContext getServletContext(
     }
 
     @Test
-    void xlegacyTestDeprecatedProperties() {
+    void legacyDeprecatedProperties() {
         context = getServletContext(null, "test/bootstrap/deprecated_properties_still_work.yml");
         ScimGroupProvisioning scimGroupProvisioning = context.getBean("scimGroupProvisioning", ScimGroupProvisioning.class);
         List<ScimGroup> scimGroups = scimGroupProvisioning.retrieveAll(IdentityZoneHolder.get().getId());
-        assertThat(scimGroups, PredicateMatcher.has(g -> g.getDisplayName().equals("pony") && "The magic of friendship".equals(g.getDescription())));
-        assertThat(scimGroups, PredicateMatcher.has(g -> g.getDisplayName().equals("cat") && "The cat".equals(g.getDescription())));
+        Assertions.assertThat(scimGroups)
+                .haveAtLeastOne(new Condition<>(g -> g.getDisplayName().equals("pony") && g.getDescription().equals("The magic of friendship"), "pony group"))
+                .haveAtLeastOne(new Condition<>(g -> g.getDisplayName().equals("cat") && g.getDescription().equals("The cat"), "cat group"));
+
         IdentityZoneConfigurationBootstrap zoneBootstrap = context.getBean(IdentityZoneConfigurationBootstrap.class);
-        assertEquals("https://deprecated.home_redirect.com", zoneBootstrap.getHomeRedirect());
+        assertThat(zoneBootstrap.getHomeRedirect()).isEqualTo("https://deprecated.home_redirect.com");
         IdentityZone defaultZone = context.getBean(IdentityZoneProvisioning.class).retrieve("uaa");
         IdentityZoneConfiguration defaultConfig = defaultZone.getConfig();
-        assertTrue(defaultConfig.getSamlConfig().getKeys().containsKey(SamlConfig.LEGACY_KEY_ID), "Legacy SAML keys should be available");
-        assertEquals(SamlLoginServerKeyManagerTests.CERTIFICATE.trim(), defaultConfig.getSamlConfig().getCertificate().trim());
-        assertEquals(SamlLoginServerKeyManagerTests.KEY.trim(), defaultConfig.getSamlConfig().getPrivateKey().trim());
-        assertEquals(SamlLoginServerKeyManagerTests.PASSWORD.trim(), defaultConfig.getSamlConfig().getPrivateKeyPassword().trim());
+
+        assertThat(defaultConfig.getSamlConfig().getKeys()).as("Legacy SAML keys should be available").containsKey(SamlConfig.LEGACY_KEY_ID);
+        assertThat(defaultConfig.getSamlConfig().getCertificate().trim()).isEqualTo(SamlLoginServerKeyManagerTests.CERTIFICATE.trim());
+        assertThat(defaultConfig.getSamlConfig().getPrivateKey().trim()).isEqualTo(SamlLoginServerKeyManagerTests.KEY.trim());
+        assertThat(defaultConfig.getSamlConfig().getPrivateKeyPassword().trim()).isEqualTo(SamlLoginServerKeyManagerTests.PASSWORD.trim());
     }
 
     @Test
-    @Disabled("SAML test doesn't compile")
     void legacySamlIdpAsTopLevelElement() {
         System.setProperty(LOGIN_SAML_METADATA_TRUST_CHECK, "false");
-        System.setProperty(LOGIN_IDP_METADATA_URL, "https://simplesamlphp.uaa.com/saml2/idp/metadata.php");
+        System.setProperty(LOGIN_IDP_METADATA_URL, "classpath:sample-okta-localhost.xml");
         System.setProperty(LOGIN_IDP_ENTITY_ALIAS, "testIDPFile");
 
         context = getServletContext("default", "uaa.yml");
-        assertNotNull(context.getBean("viewResolver", ViewResolver.class));
-//        assertNotNull(context.getBean("samlLogger", SAMLDefaultLogger.class));
-        assertFalse(context.getBean(BootstrapSamlIdentityProviderData.class).isLegacyMetadataTrustCheck());
+        assertThat(context.getBean("viewResolver", ViewResolver.class)).isNotNull();
+        // assertNotNull(context.getBean("samlLogger", SAMLDefaultLogger.class))
+        assertThat(context.getBean(BootstrapSamlIdentityProviderData.class))
+                .returns(false, BootstrapSamlIdentityProviderData::isLegacyMetadataTrustCheck);
         List<SamlIdentityProviderDefinition> defs = context.getBean(BootstrapSamlIdentityProviderData.class).getIdentityProviderDefinitions();
-        assertNotNull(findProvider(defs, "testIDPFile"));
-        assertEquals(
-                SamlIdentityProviderDefinition.MetadataLocation.URL,
-                findProvider(defs, "testIDPFile").getType());
-        assertEquals(
-                SamlIdentityProviderDefinition.MetadataLocation.URL,
-                defs.get(defs.size() - 1).getType()
-        );
+        assertThat(providerByAlias(defs, "testIDPFile"))
+                // TODO: should file return URL? previously this test did
+                .returns(SamlIdentityProviderDefinition.MetadataLocation.UNKNOWN, SamlIdentityProviderDefinition::getType);
     }
 
     @Test
     @Disabled("SAML test fails")
-    void legacySamlMetadataAsXml() throws Exception {
-        String metadataString = new Scanner(new File("./src/test/resources/sample-okta-localhost.xml")).useDelimiter("\\Z").next();
+    void legacySamlMetadataAsXml() {
+        String metadataString = loadResouceAsString("sample-okta-localhost.xml");
         System.setProperty(LOGIN_IDP_METADATA, metadataString);
         System.setProperty(LOGIN_IDP_ENTITY_ALIAS, "testIDPData");
         context = getServletContext("default,saml,configMetadata", "uaa.yml");
         List<SamlIdentityProviderDefinition> defs = context.getBean(BootstrapSamlIdentityProviderData.class).getIdentityProviderDefinitions();
-        assertEquals(
-                SamlIdentityProviderDefinition.MetadataLocation.DATA,
-                findProvider(defs, "testIDPData").getType());
+        Assertions.assertThat(providerByAlias(defs, "testIDPData"))
+                .isNotNull()
+                .returns(SamlIdentityProviderDefinition.MetadataLocation.DATA, SamlIdentityProviderDefinition::getType);
     }
 
     @Test
-    @Disabled("SAML test doesn't compile")
     void legacySamlMetadataAsUrl() {
         System.setProperty(LOGIN_SAML_METADATA_TRUST_CHECK, "false");
-        System.setProperty(LOGIN_IDP_METADATA_URL, "http://simplesamlphp.uaa.com:80/saml2/idp/metadata.php");
+        System.setProperty(LOGIN_IDP_METADATA_URL, "http://simplesamlphp.uaa-acceptance.cf-app.com/saml2/idp/metadata.php");
         System.setProperty(LOGIN_IDP_ENTITY_ALIAS, "testIDPUrl");
 
         context = getServletContext("default", "uaa.yml");
-        assertNotNull(context.getBean("viewResolver", ViewResolver.class));
-//        assertNotNull(context.getBean("samlLogger", SAMLDefaultLogger.class));
-        assertFalse(context.getBean(BootstrapSamlIdentityProviderData.class).isLegacyMetadataTrustCheck());
+        assertThat(context.getBean("viewResolver", ViewResolver.class)).isNotNull();
+        // assertNotNull(context.getBean("samlLogger", SAMLDefaultLogger.class))
+        assertThat(context.getBean(BootstrapSamlIdentityProviderData.class))
+                .returns(false, BootstrapSamlIdentityProviderData::isLegacyMetadataTrustCheck);
         List<SamlIdentityProviderDefinition> defs = context.getBean(BootstrapSamlIdentityProviderData.class).getIdentityProviderDefinitions();
-        assertNull(
-                defs.get(defs.size() - 1).getSocketFactoryClassName()
-        );
-        assertEquals(
-                SamlIdentityProviderDefinition.MetadataLocation.URL,
-                defs.get(defs.size() - 1).getType()
-        );
+        Assertions.assertThat(providerByAlias(defs, "testIDPUrl"))
+                .isNotNull()
+                .returns(null, SamlIdentityProviderDefinition::getSocketFactoryClassName)
+                .returns(SamlIdentityProviderDefinition.MetadataLocation.URL, SamlIdentityProviderDefinition::getType);   
     }
 
     @ParameterizedTest
@@ -262,34 +222,19 @@ void samlSignatureAlgorithmsWereBootstrapped(String yamlFile, SamlConfigurationB
         context = getServletContext("default", yamlFile);
 
         SamlConfigurationBean samlConfig = context.getBean(SamlConfigurationBean.class);
-        assertEquals(
-                algorithm,
-                samlConfig.getSignatureAlgorithm(),
-                "The SAML signature algorithm in the yaml file is set in the bean"
-        );
+        assertThat(samlConfig.getSignatureAlgorithm())
+                .as("The SAML signature algorithm in the yaml file is set in the bean")
+                .isEqualTo(algorithm);
     }
 
-    @Test
-    @Disabled("SAML test doesn't compile")
-    void legacySamlUrlWithoutPort() {
-        System.setProperty(LOGIN_SAML_METADATA_TRUST_CHECK, "false");
-        System.setProperty(LOGIN_IDP_METADATA_URL, "http://simplesamlphp.uaa.com/saml2/idp/metadata.php");
-        System.setProperty(LOGIN_IDP_ENTITY_ALIAS, "testIDPUrl");
+    private static String loadResouceAsString(String resourceLocation) {
+        ResourceLoader resourceLoader = new DefaultResourceLoader();
+        Resource resource = resourceLoader.getResource(resourceLocation);
 
-        context = getServletContext("default", "uaa.yml");
-        assertNotNull(context.getBean("viewResolver", ViewResolver.class));
-//        assertNotNull(context.getBean("samlLogger", SAMLDefaultLogger.class));
-        assertFalse(context.getBean(BootstrapSamlIdentityProviderData.class).isLegacyMetadataTrustCheck());
-        List<SamlIdentityProviderDefinition> defs = context.getBean(BootstrapSamlIdentityProviderData.class).getIdentityProviderDefinitions();
-        assertFalse(
-                context.getBean(BootstrapSamlIdentityProviderData.class).getIdentityProviderDefinitions().isEmpty()
-        );
-        assertNull(
-                defs.get(defs.size() - 1).getSocketFactoryClassName()
-        );
-        assertEquals(
-                SamlIdentityProviderDefinition.MetadataLocation.URL,
-                defs.get(defs.size() - 1).getType()
-        );
+        try (Reader reader = new InputStreamReader(resource.getInputStream(), UTF_8)) {
+            return FileCopyUtils.copyToString(reader);
+        } catch (IOException e) {
+            throw new UncheckedIOException(e);
+        }
     }
 }