Removed the overloaded Argon2Encoding methods in Authenticator and moved the Argon2StubEncoding method to AuthenticatorStub

2018-05-22 13:41:26 +02:00 · 2018-05-22 13:41:26 +02:00 · 96388c0951
commit 96388c0951
parent aeb9754500
5 changed files with 43 additions and 70 deletions
--- a/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/authenticate/AuthenticatorStub.java
+++ b/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/authenticate/AuthenticatorStub.java
@ -9,6 +9,8 @@ import java.util.Map;

 import javax.servlet.http.HttpServletRequest;

+import de.mkammerer.argon2.Argon2;
+import de.mkammerer.argon2.Argon2Factory;
 import edu.cornell.mannlib.vedit.beans.LoginStatusBean;
 import edu.cornell.mannlib.vedit.beans.LoginStatusBean.AuthenticationSource;
 import edu.cornell.mannlib.vitro.webapp.beans.UserAccount;
@ -114,6 +116,22 @@ public class AuthenticatorStub extends Authenticator {
 		return false;
 	}

+	/**
+	 * Applies Argon2i hashing on a string.
+	 * Used by tests only with pre-specified values because the configuration
+	 * properties (runtime.properties) is not set at compile time.
+	 **/
+
+	public static String applyArgon2iEncodingStub(String raw) {
+		Argon2 argon2 = Argon2Factory.create();
+		try {
+			return argon2.hash(200, 500, 1, raw);
+		} catch (Exception e) {
+			// This can't happen with a normal Java runtime.
+			throw new RuntimeException(e);
+		}
+	}
+

 	@Override
 	public boolean isCurrentPasswordArgon2(UserAccount userAccount,
--- a/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/authenticate/ProgramLoginTest.java
+++ b/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/authenticate/ProgramLoginTest.java
@ -98,7 +98,7 @@ public class ProgramLoginTest extends AbstractTestClass {
 		user.setUri(uri);
 		user.setPermissionSetUris(Collections
 				.singleton(PermissionSets.URI_DBA));
-		user.setArgon2Password(Authenticator.applyArgon2iEncodingStub(password));
+		user.setArgon2Password(AuthenticatorStub.applyArgon2iEncodingStub(password));
 		user.setMd5Password("");
 		user.setLoginCount(loginCount);
 		user.setPasswordChangeRequired(loginCount == 0);
--- a/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/edit/AuthenticateTest.java
+++ b/api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/edit/AuthenticateTest.java
@ -191,7 +191,7 @@ public class AuthenticateTest extends AbstractTestClass {
 		user.setEmailAddress(userInfo.username);
 		user.setUri(userInfo.uri);
 		user.setPermissionSetUris(userInfo.permissionSetUris);
-		user.setArgon2Password(Authenticator.applyArgon2iEncodingStub(userInfo.password));
+		user.setArgon2Password(AuthenticatorStub.applyArgon2iEncodingStub(userInfo.password));
 		user.setMd5Password("");
 		user.setLoginCount(userInfo.loginCount);
 		user.setPasswordChangeRequired(userInfo.loginCount == 0);