Coverage for import and migrate providers

Author: oharsta

server/src/main/java/access/api/ApplicationController.java

@@ -60,8 +60,7 @@
 import static access.SwaggerOpenIdConfig.API_TOKENS_SCHEME_NAME;
 import static access.SwaggerOpenIdConfig.OPEN_ID_SCHEME_NAME;
 import static access.api.Results.deleteResult;
-import static access.manage.ManageData.getData;
-import static access.manage.ManageData.getMetaDataFields;
+import static access.manage.ManageData.*;
 
 @RestController
 @RequestMapping(value = {"/api/v1/applications"}, produces = MediaType.APPLICATION_JSON_VALUE)
@@ -296,6 +295,7 @@ public ResponseEntity<List<Map<String, Object>>> identityProvidersByAllowedConne
     }
 
     @PutMapping({"/migrate"})
+    @Transactional
     public ResponseEntity<Map<String, Object>> migrate(User user, @Validated @RequestBody MigrateApplicationRequest migrateApplicationRequest) {
         LOG.debug("/migrate application by " + user.getEmail());
 
@@ -307,7 +307,10 @@ public ResponseEntity<Map<String, Object>> migrate(User user, @Validated @Reques
                 .orElseThrow(() -> new NotFoundException("Organization not found"));
         application.setOrganization(organization);
         applicationRepository.save(application);
-        application.getConnections().forEach(connection -> {
+        application.getConnections()
+                .stream()
+                .filter(connection -> !isEmpty(connection.getManageIdentifier()))
+                .forEach(connection -> {
             Map<String, Object> provider = manage.providerByConnection(connection);
             Map<String, Object> metaDataFields = getMetaDataFields(getData(provider));
             metaDataFields.put("OrganizationName:en", organization.getName());

server/src/main/java/access/api/ConnectionController.java

@@ -46,7 +46,6 @@
 
 import java.time.Instant;
 import java.util.Collections;
-import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 import java.util.Optional;
@@ -335,15 +334,15 @@ private Connection productionReadyChangeRequests(Connection connection, User use
                 newPathUpdates.forEach((key, value) -> {
                     if (key.equals("arp") && existingPathUpdates.containsKey(key)) {
                         //three way merge on the attributes and profile, motivation from the latest change
-                        Map<String, Object> attributes   = (Map<String, Object>) ((Map<String, Object>)value).get("attributes");
+                        Map<String, Object> attributes = (Map<String, Object>) ((Map<String, Object>) value).getOrDefault("attributes", Map.of());
                         List<String> attibuteNames = attributes.keySet().stream().toList();
 
-                        Map<String, Object> arpPath = (Map<String, Object>) existingPathUpdates.get("arp");
-                        Map<String, Object> pathAttributes   = (Map<String, Object>) arpPath.get("attributes");
+                        Map<String, Object> arpPath = (Map<String, Object>) existingPathUpdates.getOrDefault("arp", Map.of());
+                        Map<String, Object> pathAttributes = (Map<String, Object>) arpPath.getOrDefault("attributes", Map.of());
                         List<String> pathValues = pathAttributes.keySet().stream().toList();
 
-                        Map<String, Object> baseArp= (Map<String, Object>) getData(provider).get("arp");
-                        Map<String, Object> baseAttributes   = (Map<String, Object>) baseArp.get("attributes");
+                        Map<String, Object> baseArp = (Map<String, Object>) getData(provider).getOrDefault("arp", Map.of());
+                        Map<String, Object> baseAttributes = (Map<String, Object>) baseArp.getOrDefault("attributes", Map.of());
                         List<String> baseValues = baseAttributes.keySet().stream().toList();
 
                         List<String> newValues = ListMerger.threeWayMerge(baseValues, pathValues, attibuteNames);
@@ -352,7 +351,7 @@ private Connection productionReadyChangeRequests(Connection connection, User use
                                 attrName -> attrName,
                                 attrName -> attributes.getOrDefault(attrName, pathAttributes.getOrDefault(attrName, baseAttributes.get(attrName)))));
                         arpPath.put("attributes", newAttributes);
-                    } else if  (value instanceof List && existingPathUpdates.containsKey(key)) {
+                    } else if (value instanceof List && existingPathUpdates.containsKey(key)) {
                         //three way merge
                         List<String> pathUpdateValue = (List<String>) existingPathUpdates.get(key);
                         List<String> base = (List<String>) getMetaDataFields(getData(provider)).getOrDefault(key.substring(key.indexOf(".") + 1), List.of());

server/src/main/resources/manage/oidc10_rp.json

@@ -80,6 +80,7 @@
       "allowedall": true,
       "arp": {
         "enabled": true,
+        "profile": "personalized",
         "attributes": {
           "urn:mace:dir:attribute-def:cn": [
             {

server/src/test/java/access/AbstractTest.java

@@ -573,7 +573,15 @@ protected void stubForServiceProviders() {
                 .willReturn(aResponse().withHeader("Content-Type", "application/json")
                         .withBody(body)
                         .withStatus(200)));
+    }
 
+    protected Connection connection(EntityType entityType, String manageIdentifier) {
+        Connection connection = new Connection();
+        connection.setManageIdentifier(manageIdentifier);
+        connection.setProtocol(entityType);
+        connection.setEnvironment(Environment.PROD);
+        connection.setState(State.prodaccepted);
+        return connection;
     }
 
     private void doSeed() {

server/src/test/java/access/api/ApplicationControllerTest.java

@@ -9,7 +9,10 @@
 import access.model.ConnectionStatus;
 import access.model.EntityType;
 import access.model.Environment;
+import access.model.ImportEntityRequest;
+import access.model.MigrateApplicationRequest;
 import access.model.Organization;
+import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.core.type.TypeReference;
 import io.restassured.common.mapper.TypeRef;
 import io.restassured.http.ContentType;
@@ -239,4 +242,170 @@ void delete() {
         Optional<Application> optionalApplication = applicationRepository.findById(applicationId);
         assertFalse(optionalApplication.isPresent());
     }
+
+    @Test
+    void findAll() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+        List<Map<String, Object>> applications = given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .get("/api/v1/applications/all")
+                .as(new TypeRef<>() {
+                });
+
+        assertEquals(3, applications.size());
+    }
+
+    @Test
+    void allLightByOrganization() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+        Long organizationId = seedIdentifiers.get(SHARE_LOGICS);
+        List<Map<String, Object>> applications = given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .pathParam("organizationId", organizationId)
+                .get("/api/v1/applications/all/light/{organizationId}")
+                .as(new TypeRef<>() {
+                });
+
+        assertEquals(2, applications.size());
+    }
+
+    @Test
+    void identityProvidersByAllowedConnections() throws JsonProcessingException {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+        Long applicationId = seedIdentifiers.get(BUDDY_CHECK);
+
+        List<Connection> connections = List.of(
+                connection(EntityType.saml20_sp, "4"),
+                connection(EntityType.oidc10_rp, "5")
+        );
+        List<Map<String, Object>> identityProviders = localManage.identityProvidersByAllowedConnections(connections);
+        String body = objectMapper.writeValueAsString(identityProviders);
+        stubFor(post(urlEqualTo("/manage/api/internal/delete-consequences")).willReturn(aResponse()
+                .withHeader("Content-Type", "application/json")
+                .withBody(body)));
+
+        List<Map<String, Object>> providers = given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .pathParam("applicationId", applicationId)
+                .get("/api/v1/applications/identity-providers-allowed-connections/{applicationId}")
+                .as(new TypeRef<>() {
+                });
+
+        assertEquals(2, providers.size());
+    }
+
+    @Test
+    void identityProvidersByAllowedConnectionsTestConnection() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+        Long applicationId = seedIdentifiers.get(NITRO_MAP);
+        List<Map<String, Object>> providers = given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .pathParam("applicationId", applicationId)
+                .get("/api/v1/applications/identity-providers-allowed-connections/{applicationId}")
+                .as(new TypeRef<>() {
+                });
+
+        assertEquals(0, providers.size());
+    }
+
+    @Test
+    void migrate() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+        Application applicationBuddyCheck = applicationRepository.findDetailsById(seedIdentifiers.get(BUDDY_CHECK)).get();
+        assertEquals(SHARE_LOGICS, applicationBuddyCheck.getOrganization().getName());
+
+        MigrateApplicationRequest migrateApplicationRequest = new MigrateApplicationRequest(
+                seedIdentifiers.get(BUDDY_CHECK),
+                seedIdentifiers.get(FAR_WIND)
+        );
+        stubForGetProvider(EntityType.oidc10_rp, MANAGE_IDENTIFIER, Environment.PROD, "5");
+        Connection connectionProd = connectionRepository.findById(seedIdentifiers.get(BUDDY_CHECK_PROD)).get();
+        connectionProd.setManageIdentifier("5");
+        super.stubForSaveProvider(connectionProd);
+
+        given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .body(migrateApplicationRequest)
+                .put("/api/v1/applications/migrate")
+                .then()
+                .statusCode(HttpStatus.OK.value());
+
+        applicationBuddyCheck = applicationRepository.findDetailsById(seedIdentifiers.get(BUDDY_CHECK)).get();
+        assertEquals(FAR_WIND, applicationBuddyCheck.getOrganization().getName());
+
+    }
+
+    @Test
+    void importEntity() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+
+        Map<String, Object> provider = localManage.providerByManageIdentifier(EntityType.oidc10_rp, "10", Environment.PROD);
+        ImportEntityRequest importEntityRequest = new ImportEntityRequest(
+                seedIdentifiers.get(FAR_WIND),
+                null,
+                provider
+        );
+        super.stubForSaveProvider(connection(EntityType.oidc10_rp, "5"));
+        given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .body(importEntityRequest)
+                .post("/api/v1/applications/import")
+                .then()
+                .statusCode(HttpStatus.OK.value());
+
+        Organization organization = organizationRepository.findApplicationsDetailsOrganizationById(seedIdentifiers.get(FAR_WIND)).get();
+        //See src/main/resources/manage/oidc10_rp.json id="10"
+        Application application = organization.getApplications().stream()
+                .filter(app -> app.getName().equals("OIDC Playground Client")).findFirst().get();
+        assertEquals(1, application.getConnections().size());
+    }
+
+    @Test
+    void importEntityExistingApplication() {
+        AccessCookieFilter accessCookieFilter = mockLoginFlow(SUPER_SUB);
+
+        Map<String, Object> provider = localManage.providerByManageIdentifier(EntityType.oidc10_rp, "10", Environment.PROD);
+        ImportEntityRequest importEntityRequest = new ImportEntityRequest(
+                seedIdentifiers.get(FAR_WIND),
+                seedIdentifiers.get(NITRO_MAP),
+                provider
+        );
+        super.stubForSaveProvider(connection(EntityType.oidc10_rp, "10"));
+        given()
+                .when()
+                .filter(accessCookieFilter.cookieFilter())
+                .header(csrfHeader(accessCookieFilter))
+                .accept(ContentType.JSON)
+                .contentType(ContentType.JSON)
+                .body(importEntityRequest)
+                .post("/api/v1/applications/import")
+                .then()
+                .statusCode(HttpStatus.OK.value());
+        Application application = applicationRepository.findDetailsById(seedIdentifiers.get(NITRO_MAP)).get();
+        assertEquals(1, application.getConnections().size());
+    }
 }