added test for SAMLAssertionWriter

Author: flaminiaScarciofolo

src/test/java/it/pagopa/pn/national/registries/client/SecureWebClientUtilsTest.java

@@ -6,9 +6,9 @@
 import it.pagopa.pn.national.registries.config.adecheckcf.CheckCfSecretConfig;
 import it.pagopa.pn.national.registries.model.SSLData;
 import it.pagopa.pn.national.registries.utils.X509CertificateUtils;
+import org.junit.jupiter.api.Assertions;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.extension.ExtendWith;
-import org.mockito.Mock;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.boot.test.mock.mockito.MockBean;
 import org.springframework.test.context.ContextConfiguration;
@@ -35,6 +35,33 @@ class SecureWebClientUtilsTest {
     private X509CertificateUtils x509CertificateUtils;
 
 
+    @Test
+    void getSslContextForAde_shouldReturnSslContextWhenTrustIsProvided() throws SSLException {
+        SslContextBuilder sslContextBuilder = mock(SslContextBuilder.class);
+        when(sslContextBuilder.build()).thenReturn(mock(SslContext.class));
+        when(sslContextBuilder.trustManager(any(InputStream.class))).thenReturn(sslContextBuilder);
+        when(sslContextBuilder.keyManager(any(PrivateKey.class), any(X509Certificate.class))).thenReturn(sslContextBuilder);
+
+        SSLData sslData = new SSLData();
+        when(x509CertificateUtils.getKeyAndCertificate(any())).thenReturn(sslData);
+        when(x509CertificateUtils.getPrivateKey(any())).thenReturn(mock(PrivateKey.class));
+        when(x509CertificateUtils.loadCertificate(any())).thenReturn(mock(X509Certificate.class));
+
+        SslContext sslContext = secureWebClientUtils.getSslContextForAde(sslContextBuilder, "dHJ1c3QK");
+        assertNotNull(sslContext);
+        verify(sslContextBuilder).trustManager(any(InputStream.class));
+        verify(sslContextBuilder).keyManager(any(PrivateKey.class), any(X509Certificate.class));
+    }
+
+
+    @Test
+    void getSslContextForAde_NoTrust() throws SSLException {
+        SslContextBuilder sslContextBuilder = mock(SslContextBuilder.class);
+        when(sslContextBuilder.build()).thenReturn(mock(SslContext.class));
+        SslContext sslContext = secureWebClientUtils.getSslContextForAde(sslContextBuilder, null);
+        Assertions.assertNotNull(sslContext);
+    }
+
     /**
      * Method under test:
      * {@link SecureWebClientUtils#getSslContext(SslContextBuilder, String)}

src/test/java/it/pagopa/pn/national/registries/config/adecheckcf/CheckCfClientConfigtest.java

@@ -0,0 +1,71 @@
+package it.pagopa.pn.national.registries.config.adecheckcf;
+
+import io.netty.handler.ssl.SslContext;
+import it.pagopa.pn.national.registries.client.SecureWebClientUtils;
+import it.pagopa.pn.national.registries.config.CustomRetryConfig;
+import it.pagopa.pn.national.registries.generated.openapi.msclient.ade.v1.api.VerificheApi;
+import it.pagopa.pn.national.registries.model.TrustData;
+import it.pagopa.pn.national.registries.service.PnNationalRegistriesSecretService;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.Mock;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.test.context.junit.jupiter.SpringExtension;
+import org.springframework.web.reactive.function.client.ExchangeFilterFunction;
+import org.springframework.web.reactive.function.client.WebClient;
+
+import javax.net.ssl.SSLException;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNotNull;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+
+@ExtendWith(SpringExtension.class)
+class CheckCfClientConfigtest {
+
+    @MockBean
+    static SecureWebClientUtils secureWebClientUtils;
+    @MockBean
+    static CheckCfSecretConfig checkCfSecretConfig;
+    @MockBean
+    static PnNationalRegistriesSecretService pnNationalRegistriesSecretService;
+    @Mock
+    private WebClient.Builder webClientBuilder;
+
+    @Mock
+    private CustomRetryConfig customRetryConfig;
+
+    @Mock
+    private WebClient webClient;
+
+    private CheckCfClientConfig checkCfClientConfig;
+
+    @BeforeEach
+    void setUp() {
+        when(webClientBuilder.build()).thenReturn(webClient);
+        when(webClientBuilder.defaultHeader(any(), any())).thenReturn(webClientBuilder);
+        when(webClientBuilder.baseUrl(any())).thenReturn(webClientBuilder);
+        when(webClientBuilder.filters(any())).thenReturn(webClientBuilder);
+        when(webClientBuilder.filter(any())).thenReturn(webClientBuilder);
+        when(webClientBuilder.clientConnector(any())).thenReturn(webClientBuilder);
+        checkCfClientConfig = new CheckCfClientConfig(customRetryConfig, pnNationalRegistriesSecretService, checkCfSecretConfig, secureWebClientUtils);
+    }
+
+    @Test
+    void e002ServiceApi() throws SSLException {
+        TrustData trustData = new TrustData();
+        trustData.setTrust("trust");
+
+        when(pnNationalRegistriesSecretService.getTrustedCertFromSecret(any())).thenReturn(trustData);
+        when(secureWebClientUtils.getSslContextForAde(any(), any())).thenReturn(mock(SslContext.class));
+        when(customRetryConfig.buildRetryExchangeFilterFunction()).thenReturn(mock(ExchangeFilterFunction.class));
+        VerificheApi verificheapi = checkCfClientConfig.verificheApi("basePath");
+
+        assertNotNull(verificheapi);
+        assertEquals("basePath", verificheapi.getApiClient().getBasePath());
+    }
+}

src/test/java/it/pagopa/pn/national/registries/utils/SAMLAssertionWriterTest.java

@@ -0,0 +1,98 @@
+package it.pagopa.pn.national.registries.utils;
+
+import it.pagopa.pn.commons.utils.MDCUtils;
+import it.pagopa.pn.national.registries.config.adelegal.AdeLegalSecretConfig;
+import it.pagopa.pn.national.registries.model.SSLData;
+import kotlin.jvm.internal.unsafe.MonitorKt;
+import org.junit.jupiter.api.Assertions;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.MockedStatic;
+import org.mockito.Mockito;
+import org.mockito.junit.jupiter.MockitoExtension;
+import org.opensaml.core.xml.NamespaceManager;
+import org.opensaml.core.xml.XMLObject;
+import org.opensaml.saml.common.SAMLVersion;
+import org.opensaml.saml.saml2.core.*;
+import org.opensaml.xmlsec.signature.*;
+import org.springframework.test.context.ContextConfiguration;
+
+import javax.security.auth.x500.X500Principal;
+import java.nio.charset.StandardCharsets;
+import java.security.PrivateKey;
+import java.security.cert.X509Certificate;
+import java.util.Base64;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.jupiter.api.Assertions.assertFalse;
+import static org.junit.jupiter.api.Assertions.assertNotNull;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.*;
+
+@ExtendWith(MockitoExtension.class)
+class SAMLAssertionWriterTest {
+
+    @Mock
+    private OpenSAMLUtils openSAMLUtils;
+
+    @Mock
+    private X509CertificateUtils x509CertificateUtils;
+
+    @Mock
+    private AdeLegalSecretConfig adeLegalSecretConfig;
+
+    @InjectMocks
+    private SAMLAssertionWriter samlAssertionWriter;
+
+    @Test
+    void buildDefaultAssertion_shouldHandleRootTraceId() {
+        try (MockedStatic<MDCUtils> mocked = mockStatic(MDCUtils.class)) {
+            mocked.when(MDCUtils::retrieveMDCContextMap).thenReturn(new HashMap<>());
+            MDCUtils.retrieveMDCContextMap().put("rootTraceId", "12345");
+
+            Assertion assertion = mock(Assertion.class);
+            when(assertion.getNamespaceManager()).thenReturn(mock(NamespaceManager.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(Assertion.DEFAULT_ELEMENT_NAME, null)).thenReturn(assertion);
+            Mockito.when(openSAMLUtils.buildSAMLObject(Issuer.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(Issuer.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(Signature.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(Signature.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(KeyInfo.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(KeyInfo.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(X509Data.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(X509Data.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(org.opensaml.xmlsec.signature.X509Certificate.DEFAULT_ELEMENT_NAME, null))
+                    .thenReturn(mock(org.opensaml.xmlsec.signature.X509Certificate.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(X509IssuerName.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(X509IssuerName.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(X509IssuerSerial.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(X509IssuerSerial.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(X509SerialNumber.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(X509SerialNumber.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(NameID.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(NameID.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(Subject.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(Subject.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(SubjectConfirmation.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(SubjectConfirmation.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(SubjectConfirmationData.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(SubjectConfirmationData.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(Conditions.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(Conditions.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(AuthnContextClassRef.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(AuthnContextClassRef.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(AuthnContext.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(AuthnContext.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(AuthnStatement.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(AuthnStatement.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(AttributeStatement.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(AttributeStatement.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(Attribute.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(Attribute.class));
+            Mockito.when(openSAMLUtils.buildSAMLObject(AttributeValue.DEFAULT_ELEMENT_NAME, null)).thenReturn(mock(AttributeValue.class));
+
+            X509Certificate cert = mock(X509Certificate.class);
+            X500Principal x500Principal = mock(X500Principal.class);
+            when(x500Principal.getName(X500Principal.RFC1779)).thenReturn("CN=subject");
+            when(cert.getIssuerX500Principal()).thenReturn(x500Principal);
+            when(x509CertificateUtils.loadCertificate(any())).thenReturn(cert);
+            SSLData sslData = new SSLData();
+            sslData.setCert(Base64.getEncoder().encodeToString("test".getBytes(StandardCharsets.UTF_8)));
+            when(x509CertificateUtils.getKeyAndCertificate(any())).thenReturn(sslData);
+            when(x509CertificateUtils.getPrivateKey(any())).thenReturn(mock(PrivateKey.class));
+
+            Assertion response = samlAssertionWriter.buildDefaultAssertion();
+            assertNotNull(response);
+        }catch (Exception e){
+            assertFalse(true);
+        }
+    }
+}