check

leleuj · leleuj · commit 538386b3703e · 2025-09-24T08:35:32.000+02:00
diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml
@@ -0,0 +1,41 @@
+name: Build and Test
+
+on:
+  push:
+    branches: [ main, master ]
+  pull_request:
+    branches: [ main, master ]
+
+jobs:
+  build-and-test:
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Set up JDK 17
+      uses: actions/setup-java@v5
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+        
+    - name: Cache Maven dependencies
+      uses: actions/cache@v3
+      with:
+        path: ~/.m2
+        key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
+        restore-keys: ${{ runner.os }}-m2
+        
+    - name: Run build and test
+      run: |
+        cd ci
+        chmod +x run_and_check.sh
+        ./run_and_check.sh
+        
+    - name: Upload test logs
+      if: failure()
+      uses: actions/upload-artifact@v4
+      with:
+        name: server-logs
+        path: target/app.log
diff --git a/.gitignore b/.gitignore
@@ -6,4 +6,5 @@ test-output/
 bin/
 *.iml
 .idea
-sp-metadata.xml
+sp-metadata.xml
+.vscode/
diff --git a/ci/run_and_check.sh b/ci/run_and_check.sh
@@ -0,0 +1,210 @@
+#!/bin/bash
+
+# Script to launch spring-webflux-pac4j-boot-demo and verify it works
+# Usage: ./run_and_check.sh
+
+set -e  # Stop script on error
+
+echo "🚀 Starting spring-webflux-pac4j-boot-demo..."
+
+# Go to project directory (one level up from ci/)
+cd ..
+
+# Clean and compile project (package jar)
+echo "📦 Compiling project..."
+mvn clean package -q
+
+# Ensure target directory exists
+mkdir -p target
+
+# Start Spring Boot jar in background
+JAR="target/spring-webflux-pac4j-boot-demo.jar"
+if [ ! -f "$JAR" ]; then
+  # In case the finalName differs, try to find the produced boot jar
+  JAR=$(ls -1 target/*-SNAPSHOT.jar 2>/dev/null | head -n1)
+  if [ -z "$JAR" ]; then
+    JAR=$(ls -1 target/*.jar 2>/dev/null | head -n1)
+  fi
+fi
+
+if [ ! -f "$JAR" ]; then
+  echo "❌ Could not locate a built jar in target/." >&2
+  ls -la target || true
+  exit 1
+fi
+
+echo "🌐 Starting Spring Boot application ($JAR)..."
+java -jar "$JAR" > target/app.log 2>&1 &
+APP_PID=$!
+
+# Wait for server to start (maximum 60 seconds)
+echo "⏳ Waiting for server startup..."
+for i in {1..60}; do
+    if curl -s -o /dev/null -w "%{http_code}" http://localhost:8080 | grep -q "200"; then
+        echo "✅ Server started successfully!"
+        break
+    fi
+    if [ $i -eq 60 ]; then
+        echo "❌ Timeout: Server did not start within 60 seconds"
+        echo "📋 Server logs:"
+        cat target/app.log || true
+        kill $APP_PID 2>/dev/null || true
+        exit 1
+    fi
+    sleep 1
+done
+
+# Verify application responds correctly
+echo "🔍 Verifying HTTP response..."
+HTTP_CODE=$(curl -s -o /dev/null -w "%{http_code}" http://localhost:8080)
+
+if [ "$HTTP_CODE" = "200" ]; then
+    echo "✅ Application responds with HTTP 200"
+    echo "🌐 Application accessible at: http://localhost:8080"
+
+    # Default flags
+    CAS_AUTH_PASSED=false
+    
+    # Test clicking on casLink and following redirections to CAS login page
+    echo "🔗 Testing casLink redirection to CAS login page..."
+    
+    # Get the casLink URL from the homepage
+    CASLINK_URL="http://localhost:8080/cas/index.html"
+    echo "📍 Following casLink: $CASLINK_URL"
+    
+    # Follow redirections and capture final URL and response
+    CAS_RESPONSE=$(curl -s -L -w "FINAL_URL:%{url_effective}\nHTTP_CODE:%{http_code}" "$CASLINK_URL")
+    CAS_HTTP_CODE=$(echo "$CAS_RESPONSE" | grep "HTTP_CODE:" | cut -d: -f2)
+    CAS_FINAL_URL=$(echo "$CAS_RESPONSE" | grep "FINAL_URL:" | cut -d: -f2-)
+    CAS_CONTENT=$(echo "$CAS_RESPONSE" | sed '/^FINAL_URL:/d' | sed '/^HTTP_CODE:/d')
+    
+    echo "🌐 Final URL: $CAS_FINAL_URL"
+    echo "📄 HTTP Code: $CAS_HTTP_CODE"
+    
+    # Verify we reached the CAS login page
+    if [ "$CAS_HTTP_CODE" = "200" ] && echo "$CAS_CONTENT" | grep -q "Enter Username & Password"; then
+        echo "✅ CAS login page test passed!"
+        echo "🔐 Successfully redirected to CAS login page"
+        echo "📋 Page contains login form with username/password fields"
+        CAS_TEST_PASSED=true
+
+        # Simulate a CAS login using curl WITH cookies and follow redirects; then show final page content
+        echo "🧪 Simulating CAS authentication via curl (with cookies, follow redirects)..."
+        COOKIE_JAR="target/cas_cookies.txt"
+        CAS_LOGIN_PAGE="target/cas_login.html"
+        CAS_AFTER_LOGIN="target/cas_after_login.html"
+        FINAL_APP_PAGE="target/final_app.html"
+
+        # 1) Fetch the login page (keep cookies) and capture the execution token
+        echo "⬇️  Fetching CAS login page and capturing execution token..."
+        curl -s -c "$COOKIE_JAR" -b "$COOKIE_JAR" -L "$CAS_FINAL_URL" -o "$CAS_LOGIN_PAGE" -w "FINAL_URL:%{url_effective}\nHTTP_CODE:%{http_code}\n" > target/cas_login_fetch.meta
+
+        EXECUTION=$(grep -Eo 'name=\"execution\"[^>]*value=\"[^\"]+\"' "$CAS_LOGIN_PAGE" | sed -E 's/.*value=\"([^\"]+)\".*/\1/' | head -n1 || true)
+
+        if [ -z "$EXECUTION" ]; then
+            echo "❌ Could not extract CAS execution token from login page."
+            echo "   Saved page: $CAS_LOGIN_PAGE"
+            CAS_AUTH_PASSED=false
+        else
+            echo "🔑 Found execution token: $EXECUTION"
+
+            # 2) Post credentials to CAS with cookies and follow redirects (do NOT send service explicitly)
+            echo "📤 Posting credentials to CAS and following redirects..."
+            CAS_POST_RESPONSE=$(curl -s -c "$COOKIE_JAR" -b "$COOKIE_JAR" -L -o "$CAS_AFTER_LOGIN" -w "FINAL_URL:%{url_effective}\nHTTP_CODE:%{http_code}" \
+                --data-urlencode "username=leleuj@gmail.com" \
+                --data-urlencode "password=password" \
+                --data-urlencode "execution=$EXECUTION" \
+                --data-urlencode "_eventId=submit" \
+                "$CAS_FINAL_URL")
+
+            CAS_POST_HTTP_CODE=$(echo "$CAS_POST_RESPONSE" | grep "HTTP_CODE:" | cut -d: -f2)
+            CAS_POST_FINAL_URL=$(echo "$CAS_POST_RESPONSE" | grep "FINAL_URL:" | cut -d: -f2-)
+
+            echo "🌐 After login final URL: $CAS_POST_FINAL_URL"
+            echo "📄 HTTP Code: $CAS_POST_HTTP_CODE"
+
+            # 3) Fetch the application page after CAS login with cookies and show content
+            echo "📥 Fetching final app page content..."
+            TARGET_URL="$CAS_POST_FINAL_URL"
+            # In WebFlux, the callback may be the last URL. If so, request a protected page explicitly.
+            if echo "$TARGET_URL" | grep -q "/callback"; then
+                TARGET_URL="http://localhost:8080/protected/index.html"
+            fi
+            FINAL_META=$(curl -s -c "$COOKIE_JAR" -b "$COOKIE_JAR" -L -o "$FINAL_APP_PAGE" -w "FINAL_URL:%{url_effective}\nHTTP_CODE:%{http_code}" "$TARGET_URL")
+            FINAL_URL=$(echo "$FINAL_META" | grep "FINAL_URL:" | cut -d: -f2-)
+            FINAL_APP_CODE=$(echo "$FINAL_META" | grep "HTTP_CODE:" | cut -d: -f2)
+
+            echo "🌐 Final app URL after redirects: $FINAL_URL"
+            echo "📄 Final app HTTP Code: $FINAL_APP_CODE"
+
+            if [ "$FINAL_APP_CODE" = "200" ]; then
+                echo "✅ Demo reachable after CAS login (HTTP 200)"
+                CAS_AUTH_PASSED=true
+                echo "----- Final page content (begin) -----"
+                cat "$FINAL_APP_PAGE"
+                echo "\n----- Final page content (end) -----"
+
+                # Verify that the expected authenticated email is present in the page
+                if grep -q "leleuj@gmail.com" "$FINAL_APP_PAGE"; then
+                    echo "✅ Email 'leleuj@gmail.com' found in final page content"
+                else
+                    echo "❌ Email 'leleuj@gmail.com' NOT found in final page content"
+                    CAS_AUTH_PASSED=false
+                fi
+            else
+                echo "❌ Demo not reachable after CAS login (HTTP $FINAL_APP_CODE)"
+                CAS_AUTH_PASSED=false
+            fi
+        fi
+        
+    else
+        echo "❌ CAS login page test failed!"
+        echo "🚫 Expected CAS login page but got:"
+        echo "   HTTP Code: $CAS_HTTP_CODE"
+        echo "   Final URL: $CAS_FINAL_URL"
+        if [ ${#CAS_CONTENT} -lt 500 ]; then
+            echo "   Content preview: $CAS_CONTENT"
+        else
+            echo "   Content preview: $(echo "$CAS_CONTENT" | head -c 500)..."
+        fi
+        CAS_TEST_PASSED=false
+        CAS_AUTH_PASSED=false
+    fi
+else
+    echo "❌ Initial test failed! HTTP code received: $HTTP_CODE"
+    echo "📋 Server logs:"
+    cat target/app.log || true
+    CAS_TEST_PASSED=false
+    CAS_AUTH_PASSED=false
+fi
+
+# Always stop the server
+echo "🛑 Stopping server..."
+kill $APP_PID 2>/dev/null || true
+
+# Wait a moment for graceful shutdown
+sleep 2
+
+# Force kill if still running
+kill -9 $APP_PID 2>/dev/null || true
+
+if [ "$HTTP_CODE" = "200" ] && [ "$CAS_TEST_PASSED" = "true" ] && [ "$CAS_AUTH_PASSED" = "true" ]; then
+    echo "🎉 spring-webflux-pac4j-boot-demo test completed successfully!"
+    echo "✅ All tests passed:"
+    echo "   - Application responds with HTTP 200"
+    echo "   - CAS link redirects correctly to login page"
+    echo "   - CAS login succeeds and demo is reachable"
+    exit 0
+else
+    echo "💥 spring-webflux-pac4j-boot-demo test failed!"
+    if [ "$HTTP_CODE" != "200" ]; then
+        echo "❌ Application HTTP test failed (code: $HTTP_CODE)"
+    fi
+    if [ "$CAS_TEST_PASSED" != "true" ]; then
+        echo "❌ CAS redirection test failed"
+    fi
+    if [ "$CAS_AUTH_PASSED" != "true" ]; then
+        echo "❌ CAS authentication/redirect to demo failed"
+    fi
+    exit 1
+fi
diff --git a/pom.xml b/pom.xml
@@ -23,7 +23,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.5.6</version>
+        <version>2.7.6</version>
     </parent>
 
     <properties>
