Add support for credentials

It is now possible to test authentication handling. You can restrict
the server to accept only specific pairs of username and password.

    public class TestClass {
      @rule
      public final FakeSftpServerRule sftpServer = new
FakeSftpServerRule()
          .addUser("username", "password");

      ...
    }

It is also possible to do this during the test using the same method.

Fixes #6.

Author: stefanbirkner

README.md

@@ -12,7 +12,7 @@ Fake SFTP Server Rule is published under the
 if you want to use it with an older version of Java.
 
 I want to thank my former team SAM at ThoughtWorks for using this library and
-@OArtyomov for his feature request.
+@crizzis and @OArtyomov for their feature requests.
 
 
 ## Installation
@@ -23,7 +23,7 @@ Fake SFTP Server Rule is available from
     <dependency>
       <groupId>com.github.stefanbirkner</groupId>
       <artifactId>fake-sftp-server-rule</artifactId>
-      <version>1.3.1</version>
+      <version>1.4.0</version>
     </dependency>
 
 
@@ -42,9 +42,19 @@ The Fake SFTP Server Rule is used by adding it to your test class.
 
 This rule starts a server before your test and stops it afterwards.
 
-You can interact with the SFTP server by using the SFTP protocol with an
-arbitrary username and password. (The server accepts every combination of
-username and password.)
+You can interact with the SFTP server by using the SFTP protocol with password
+authentication. By default the server accepts every pair of username and
+password, but you can restrict it to specific pairs.
+
+    public class TestClass {
+      @Rule
+      public final FakeSftpServerRule sftpServer = new FakeSftpServerRule()
+          .addUser("username", "password");
+
+      ...
+    }
+
+It is also possible to do this during the test using the same method.
 
 The port of the server is obtained by `sftpServer.getPort()`. You can change it
 by calling `setPort(int)`. If you do this from within a test then the server

pom.xml

@@ -9,7 +9,7 @@
     </parent>
 
     <artifactId>fake-sftp-server-rule</artifactId>
-    <version>1.4.0-SNAPSHOT</version>
+    <version>1.4.0</version>
     <packaging>jar</packaging>
 
     <name>Fake SFTP Server Rule</name>

src/main/java/com/github/stefanbirkner/fakesftpserver/rule/FakeSftpServerRule.java

@@ -1,8 +1,8 @@
 package com.github.stefanbirkner.fakesftpserver.rule;
 
 import org.apache.sshd.server.SshServer;
-import org.apache.sshd.server.auth.password.StaticPasswordAuthenticator;
 import org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider;
+import org.apache.sshd.server.session.ServerSession;
 import org.apache.sshd.server.subsystem.sftp.SftpSubsystemFactory;
 import org.junit.rules.TestRule;
 import org.junit.runner.Description;
@@ -15,6 +15,9 @@
 import java.nio.file.attribute.BasicFileAttributes;
 import java.nio.file.attribute.UserPrincipalLookupService;
 import java.nio.file.spi.FileSystemProvider;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Objects;
 import java.util.Set;
 
 import static com.github.marschall.memoryfilesystem.MemoryFileSystemBuilder.newLinux;
@@ -35,9 +38,19 @@
  * }
  * </pre>
  * <p>This rule starts a server before your test and stops it afterwards.
- * <p>You can interact with the SFTP server by using the SFTP protocol with an
- * arbitrary username and password. (The server accepts every combination of
- * username and password.)
+ * <p>You can interact with the SFTP server by using the SFTP protocol with
+ * password authentication. By default the server accepts every pair of
+ * username and password, buy you can restrict it to specific pairs.
+ * <pre>
+ * public class TestClass {
+ *   &#064;Rule
+ *   public final FakeSftpServerRule sftpServer = new FakeSftpServerRule()
+ *       .{@link #addUser(String, String) addUser}("username", "password");
+ *
+ *   ...
+ * }
+ * </pre>
+ * <p>It is also possible to do this during the test using the same method.
  * <p>The port of the server is obtained by
  * {@link #getPort() sftpServer.getPort()}. You can change it by calling
  * {@link #setPort(int)}. If you do this from within a test then the server gets
@@ -164,6 +177,7 @@ public FileVisitResult postVisitDirectory(
                 return super.postVisitDirectory(dir, exc);
             }
     };
+    private final Map<String, String> usernamesAndPasswords = new HashMap<>();
     private int port = 23454;
 
     private FileSystem fileSystem;
@@ -201,6 +215,24 @@ public FakeSftpServerRule setPort(
         return this;
     }
 
+    /**
+     * Register a username with its password. After registering a username
+     * it is only possible to connect to the server with one of the registered
+     * username/password pairs.
+     * <p>If {@code addUser} is called multiple times with the same username but
+     * different passwords then the last password is effective.
+     * @param username the username.
+     * @param password the password for the specified username.
+     * @return the rule itself.
+     */
+    public FakeSftpServerRule addUser(
+        String username,
+        String password
+    ) {
+        usernamesAndPasswords.put(username, password);
+        return this;
+    }
+
     private void restartServer() {
         try {
             server.stop();
@@ -384,7 +416,7 @@ private SshServer startServer(
         SshServer server = SshServer.setUpDefaultServer();
         server.setPort(port);
         server.setKeyPairProvider(new SimpleGeneratorHostKeyProvider());
-        server.setPasswordAuthenticator(new StaticPasswordAuthenticator(true));
+        server.setPasswordAuthenticator(this::authenticate);
         server.setSubsystemFactories(singletonList(new SftpSubsystemFactory()));
         /* When a channel is closed SshServer calls close() on the file system.
          * In order to use the file system for multiple channels/sessions we
@@ -396,6 +428,18 @@ private SshServer startServer(
         return server;
     }
 
+    private boolean authenticate(
+        String username,
+        String password,
+        ServerSession session
+    ) {
+        return usernamesAndPasswords.isEmpty()
+            || Objects.equals(
+                usernamesAndPasswords.get(username),
+                password
+            );
+    }
+
     private void ensureDirectoryOfPathExists(
         Path path
     ) throws IOException {

src/test/java/com/github/stefanbirkner/fakesftpserver/rule/FakeSftpServerRuleTest.java

@@ -3,6 +3,7 @@
 
 import com.jcraft.jsch.*;
 import org.apache.commons.io.IOUtils;
+import org.assertj.core.api.ThrowableAssert.ThrowingCallable;
 import org.junit.Test;
 import org.junit.experimental.runners.Enclosed;
 import org.junit.runner.RunWith;
@@ -62,14 +63,6 @@ public void a_file_that_is_written_to_the_SFTP_server_can_be_read() {
     }
 
     public static class connection {
-        @Test
-        public void the_server_accepts_connections_with_password() {
-            FakeSftpServerRule sftpServer = new FakeSftpServerRule();
-            executeTestWithRule(
-                () -> connectToServer(sftpServer),
-                sftpServer
-            );
-        }
 
         @Test
         public void multiple_connections_to_the_server_are_possible() {
@@ -94,6 +87,159 @@ public void a_client_can_connect_to_the_server_at_a_user_specified_port() {
         }
     }
 
+    @RunWith(Enclosed.class)
+    public static class authentication {
+        public static class server_without_credentials {
+            @Test
+            public void the_server_accepts_connections_with_password() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule();
+                executeTestWithRule(
+                    () -> {
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "dummy password"
+                        );
+                        session.connect(TIMEOUT);
+                    },
+                    sftpServer
+                );
+            }
+        }
+
+        public static class server_with_credentials_immediately_set {
+            @Test
+            public void the_server_accepts_connections_with_correct_password() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule()
+                    .addUser("dummy user", "dummy password");
+                executeTestWithRule(
+                    () -> {
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "dummy password"
+                        );
+                        session.connect(TIMEOUT);
+                    },
+                    sftpServer
+                );
+            }
+
+
+            @Test
+            public void the_server_rejects_connections_with_wrong_password() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule()
+                    .addUser("dummy user", "correct password");
+                executeTestWithRule(
+                    () -> {
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "wrong password"
+                        );
+                        assertAuthenticationFails(
+                            () -> session.connect(TIMEOUT)
+                        );
+                    },
+                    sftpServer
+                );
+            }
+
+            @Test
+            public void the_last_password_is_effective_if_addUser_is_called_multiple_times() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule()
+                    .addUser("dummy user", "first password")
+                    .addUser("dummy user", "second password");
+                executeTestWithRule(
+                    () -> {
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "second password"
+                        );
+                        session.connect(TIMEOUT);
+                    },
+                    sftpServer
+                );
+            }
+        }
+
+        public static class server_with_credentials_set_during_test {
+            @Test
+            public void the_server_accepts_connections_with_correct_password() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule();
+                executeTestWithRule(
+                    () -> {
+                        sftpServer.addUser("dummy user", "dummy password");
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "dummy password"
+                        );
+                        session.connect(TIMEOUT);
+                    },
+                    sftpServer
+                );
+            }
+
+            @Test
+            public void the_server_rejects_connections_with_wrong_password() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule();
+                executeTestWithRule(
+                    () -> {
+                        sftpServer.addUser("dummy user", "correct password");
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "wrong password"
+                        );
+                        assertAuthenticationFails(
+                            () -> session.connect(TIMEOUT)
+                        );
+                    },
+                    sftpServer
+                );
+            }
+
+            @Test
+            public void the_last_password_is_effective_if_addUser_is_called_multiple_times() {
+                FakeSftpServerRule sftpServer = new FakeSftpServerRule();
+                executeTestWithRule(
+                    () -> {
+                        sftpServer
+                            .addUser("dummy user", "first password")
+                            .addUser("dummy user", "second password");
+                        Session session = createSessionWithCredentials(
+                            sftpServer,
+                            "dummy user",
+                            "second password"
+                        );
+                        session.connect(TIMEOUT);
+                    },
+                    sftpServer
+                );
+            }
+        }
+
+        private static Session createSessionWithCredentials(
+            FakeSftpServerRule sftpServer,
+            String username,
+            String password
+        ) throws JSchException {
+            return FakeSftpServerRuleTest.createSessionWithCredentials(
+                username, password, sftpServer.getPort()
+            );
+        }
+
+        private static void assertAuthenticationFails(
+            ThrowingCallable connectToServer
+        ) {
+            assertThatThrownBy(connectToServer)
+                .isInstanceOf(JSchException.class)
+                .hasMessage("Auth fail");
+        }
+    }
+
     @RunWith(Enclosed.class)
     public static class file_upload {
         public static class a_text_file {