Merge branch 'master' into issues/doc-build-error

Author: maximthomas

openam-authentication/openam-auth-common/pom.xml

@@ -52,7 +52,7 @@
         </dependency>
         <dependency>
             <groupId>org.mockito</groupId>
-            <artifactId>mockito-all</artifactId>
+            <artifactId>mockito-core</artifactId>
             <scope>test</scope>
         </dependency>
     </dependencies>

openam-authentication/openam-auth-common/src/test/java/org/forgerock/openam/authentication/modules/common/JaspiAuthLoginModulePAPTest.java

@@ -12,7 +12,7 @@
  * information: "Portions copyright [year] [name of copyright owner]".
  *
  * Copyright 2013-2016 ForgeRock AS.
- * Portions Copyrighted 2025 3A Systems LLC.
+ * Portions Copyrighted 2025-2026 3A Systems, LLC.
  */
 
 package org.forgerock.openam.authentication.modules.common;
@@ -38,7 +38,7 @@
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
-import org.mockito.Matchers;
+import org.mockito.ArgumentMatchers;
 import org.testng.annotations.BeforeMethod;
 import org.testng.annotations.Test;
 
@@ -106,8 +106,8 @@ public void shouldCallOnLoginSuccessAndThrowAuthenticationExceptionWhenAuthExcep
         }
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
-        verify(jaspiAuthWrapper, never()).secureResponse(Matchers.<MessageInfo>anyObject());
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper, never()).secureResponse(ArgumentMatchers.<MessageInfo>anyObject());
         assertTrue(exceptionCaught);
         assertEquals(exception.getErrorCode(), "authFailed");
     }
@@ -121,16 +121,16 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsSendSuccess() throw
         HttpServletResponse response = mock(HttpServletResponse.class);
         SSOToken ssoToken = mock(SSOToken.class);
 
-        given(jaspiAuthWrapper.secureResponse(Matchers.<MessageInfo>anyObject()))
+        given(jaspiAuthWrapper.secureResponse(ArgumentMatchers.<MessageInfo>anyObject()))
                 .willReturn(AuthStatus.SEND_SUCCESS);
 
         //When
         jaspiPostAuthPlugin.onLoginSuccess(requestParamsMap, request, response, ssoToken);
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
         assertTrue(onLoginSuccessMethodCalled);
-        verify(jaspiAuthWrapper).secureResponse(Matchers.<MessageInfo>anyObject());
+        verify(jaspiAuthWrapper).secureResponse(ArgumentMatchers.<MessageInfo>anyObject());
     }
 
     @Test
@@ -143,7 +143,7 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsSendFailure() throw
         HttpServletResponse response = mock(HttpServletResponse.class);
         SSOToken ssoToken = mock(SSOToken.class);
 
-        given(jaspiAuthWrapper.secureResponse(Matchers.<MessageInfo>anyObject()))
+        given(jaspiAuthWrapper.secureResponse(ArgumentMatchers.<MessageInfo>anyObject()))
                 .willReturn(AuthStatus.SEND_FAILURE);
 
         //When
@@ -157,9 +157,9 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsSendFailure() throw
         }
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
         assertTrue(onLoginSuccessMethodCalled);
-        verify(jaspiAuthWrapper).secureResponse(Matchers.<MessageInfo>anyObject());
+        verify(jaspiAuthWrapper).secureResponse(ArgumentMatchers.<MessageInfo>anyObject());
         assertTrue(exceptionCaught);
         assertEquals(exception.getErrorCode(), "authFailed");
     }
@@ -174,7 +174,7 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsSendContinue() thro
         HttpServletResponse response = mock(HttpServletResponse.class);
         SSOToken ssoToken = mock(SSOToken.class);
 
-        given(jaspiAuthWrapper.secureResponse(Matchers.<MessageInfo>anyObject()))
+        given(jaspiAuthWrapper.secureResponse(ArgumentMatchers.<MessageInfo>anyObject()))
                 .willReturn(AuthStatus.SEND_CONTINUE);
 
         //When
@@ -188,9 +188,9 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsSendContinue() thro
         }
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
         assertTrue(onLoginSuccessMethodCalled);
-        verify(jaspiAuthWrapper).secureResponse(Matchers.<MessageInfo>anyObject());
+        verify(jaspiAuthWrapper).secureResponse(ArgumentMatchers.<MessageInfo>anyObject());
         assertTrue(exceptionCaught);
         assertEquals(exception.getErrorCode(), "authFailed");
     }
@@ -204,7 +204,7 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsElse() throws Authe
         HttpServletResponse response = mock(HttpServletResponse.class);
         SSOToken ssoToken = mock(SSOToken.class);
 
-        given(jaspiAuthWrapper.secureResponse(Matchers.<MessageInfo>anyObject()))
+        given(jaspiAuthWrapper.secureResponse(ArgumentMatchers.<MessageInfo>anyObject()))
                 .willReturn(AuthStatus.SUCCESS);
 
         //When
@@ -218,9 +218,9 @@ public void shouldCallOnLoginSuccessWhenSecureResponseReturnsElse() throws Authe
         }
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
         assertTrue(onLoginSuccessMethodCalled);
-        verify(jaspiAuthWrapper).secureResponse(Matchers.<MessageInfo>anyObject());
+        verify(jaspiAuthWrapper).secureResponse(ArgumentMatchers.<MessageInfo>anyObject());
         assertTrue(exceptionCaught);
         assertEquals(exception.getErrorCode(), "authFailed");
     }

openam-authentication/openam-auth-common/src/test/java/org/forgerock/openam/authentication/modules/common/JaspiAuthLoginModuleTest.java

@@ -12,7 +12,7 @@
  * information: "Portions copyright [year] [name of copyright owner]".
  *
  * Copyright 2013-2016 ForgeRock AS.
- * Portions Copyrighted 2025 3A Systems LLC.
+ * Portions Copyrighted 2025-2026 3A Systems, LLC.
  */
 
 package org.forgerock.openam.authentication.modules.common;
@@ -37,7 +37,7 @@
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
-import org.mockito.Matchers;
+import org.mockito.ArgumentMatchers;
 import org.testng.annotations.BeforeMethod;
 import org.testng.annotations.Test;
 
@@ -99,7 +99,7 @@ public void shouldInitialiseAuthenticationModuleWrapper() throws Exception {
         jaspiAuthLoginModule.init(subject, sharedState, options);
 
         //Then
-        verify(jaspiAuthWrapper).initialize(any(CallbackHandler.class), eq(config));
+        verify(jaspiAuthWrapper).initialize(ArgumentMatchers.nullable(CallbackHandler.class), eq(config));
     }
 
     @Test
@@ -131,15 +131,15 @@ public void shouldProcessCallbacksWhenValidateRequestReturnsSuccess() throws Log
         Callback[] callbacks = new Callback[0];
         int state = ISAuthConstants.LOGIN_START;
 
-        given(jaspiAuthWrapper.validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject()))
+        given(jaspiAuthWrapper.validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject()))
                 .willReturn(AuthStatus.SUCCESS);
 
         //When
         int returnedState = jaspiAuthLoginModule.process(callbacks, state);
 
         //Then
         assertTrue(processMethodCalled);
-        verify(jaspiAuthWrapper).validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject());
+        verify(jaspiAuthWrapper).validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject());
         assertEquals(returnedState, ISAuthConstants.LOGIN_SUCCEED);
     }
 
@@ -150,15 +150,15 @@ public void shouldProcessCallbacksWhenValidateRequestReturnsSendSuccess() throws
         Callback[] callbacks = new Callback[0];
         int state = ISAuthConstants.LOGIN_START;
 
-        given(jaspiAuthWrapper.validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject()))
+        given(jaspiAuthWrapper.validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject()))
                 .willReturn(AuthStatus.SEND_SUCCESS);
 
         //When
         int returnedState = jaspiAuthLoginModule.process(callbacks, state);
 
         //Then
         assertTrue(processMethodCalled);
-        verify(jaspiAuthWrapper).validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject());
+        verify(jaspiAuthWrapper).validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject());
         assertEquals(returnedState, ISAuthConstants.LOGIN_SUCCEED);
     }
 
@@ -169,7 +169,7 @@ public void shouldProcessCallbacksWhenValidateRequestReturnsSendFailure() throws
         Callback[] callbacks = new Callback[0];
         int state = ISAuthConstants.LOGIN_START;
 
-        given(jaspiAuthWrapper.validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject()))
+        given(jaspiAuthWrapper.validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject()))
                 .willReturn(AuthStatus.SEND_FAILURE);
 
         //When
@@ -184,7 +184,7 @@ public void shouldProcessCallbacksWhenValidateRequestReturnsSendFailure() throws
 
         //Then
         assertTrue(processMethodCalled);
-        verify(jaspiAuthWrapper).validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject());
+        verify(jaspiAuthWrapper).validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject());
         assertTrue(exceptionCaught);
         assertEquals(exception.getErrorCode(), "authFailed");
     }
@@ -196,15 +196,15 @@ public void shouldProcessCallbacksWhenValidateRequestReturnsSendContinue() throw
         Callback[] callbacks = new Callback[0];
         int state = ISAuthConstants.LOGIN_START;
 
-        given(jaspiAuthWrapper.validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject()))
+        given(jaspiAuthWrapper.validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject()))
                 .willReturn(AuthStatus.SEND_CONTINUE);
 
         //When
         int returnedState = jaspiAuthLoginModule.process(callbacks, state);
 
         //Then
         assertTrue(processMethodCalled);
-        verify(jaspiAuthWrapper).validateRequest(Matchers.<MessageInfo>anyObject(), Matchers.<Subject>anyObject());
+        verify(jaspiAuthWrapper).validateRequest(ArgumentMatchers.<MessageInfo>anyObject(), ArgumentMatchers.<Subject>anyObject());
         assertEquals(returnedState, ISAuthConstants.LOGIN_IGNORE);
     }
 

openam-authentication/openam-auth-common/src/test/java/org/forgerock/openam/authentication/modules/common/JaspiAuthModuleWrapperTest.java

@@ -12,7 +12,7 @@
  * information: "Portions copyright [year] [name of copyright owner]".
  *
  * Copyright 2013-2016 ForgeRock AS.
- * Portions Copyrighted 2025 3A Systems LLC.
+ * Portions Copyrighted 2025-2026 3A Systems, LLC.
  */
 
 package org.forgerock.openam.authentication.modules.common;
@@ -32,7 +32,7 @@
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
-import org.mockito.Matchers;
+import org.mockito.ArgumentMatchers;
 import org.testng.annotations.BeforeMethod;
 import org.testng.annotations.Test;
 
@@ -66,7 +66,7 @@ public void shouldInitialiseAuthenticationModule() throws Exception {
         jaspiAuthWrapper.initialize(callbackHandler, config);
 
         //Then
-        verify(serverAuthModule).initialize(Matchers.<MessagePolicy>anyObject(), (MessagePolicy) isNull(),
+        verify(serverAuthModule).initialize(ArgumentMatchers.<MessagePolicy>anyObject(), (MessagePolicy) isNull(),
                 eq(callbackHandler), eq(config));
     }
 }

openam-authentication/openam-auth-device-id/pom.xml

@@ -43,7 +43,7 @@
         </dependency>
         <dependency>
             <groupId>org.mockito</groupId>
-            <artifactId>mockito-all</artifactId>
+            <artifactId>mockito-core</artifactId>
             <scope>test</scope>
         </dependency>
          <dependency>

openam-authentication/openam-auth-device-id/src/test/java/org/forgerock/openam/authentication/modules/deviceprint/ProfilePersisterTest.java

@@ -12,6 +12,7 @@
  * information: "Portions copyright [year] [name of copyright owner]".
  *
  * Copyright 2014-2016 ForgeRock AS.
+ * Portions copyright 2026 3A Systems, LLC.
  */
 
 package org.forgerock.openam.authentication.modules.deviceprint;
@@ -32,7 +33,7 @@
 import static org.assertj.core.api.Assertions.assertThat;
 import static org.forgerock.openam.utils.Time.*;
 import static org.mockito.BDDMockito.given;
-import static org.mockito.Matchers.eq;
+import static org.mockito.ArgumentMatchers.eq;
 import static org.mockito.Mockito.mock;
 import static org.mockito.Mockito.verify;
 

openam-authentication/openam-auth-fr-oath/src/test/java/org/forgerock/openam/authentication/modules/fr/oath/OathMakerTest.java

@@ -12,12 +12,13 @@
  * information: "Portions copyright [year] [name of copyright owner]".
  *
  * Copyright 2015-2016 ForgeRock AS.
+ * Portions copyright 2026 3A Systems, LLC.
  */
 
 package org.forgerock.openam.authentication.modules.fr.oath;
 
 import static org.assertj.core.api.Assertions.*;
-import static org.mockito.Matchers.eq;
+import static org.mockito.ArgumentMatchers.eq;
 import static org.mockito.Mockito.*;
 
 import com.sun.identity.shared.debug.Debug;

openam-authentication/openam-auth-nt/pom.xml

@@ -38,7 +38,7 @@
 
         <dependency>
             <groupId>org.mockito</groupId>
-            <artifactId>mockito-all</artifactId>
+            <artifactId>mockito-core</artifactId>
             <scope>test</scope>
         </dependency>
         <dependency>
@@ -53,7 +53,7 @@
         </dependency>
         <dependency>
             <groupId>org.powermock</groupId>
-            <artifactId>powermock-api-mockito</artifactId>
+            <artifactId>powermock-api-mockito2</artifactId>
             <scope>test</scope>
         </dependency>
         <dependency>

openam-authentication/openam-auth-oauth2/pom.xml

@@ -61,25 +61,25 @@
         </dependency>
 		<dependency>
             <groupId>org.mockito</groupId>
-            <artifactId>mockito-all</artifactId>
+            <artifactId>mockito-core</artifactId>
             <scope>test</scope>
         </dependency>
 		<dependency>
 	      <groupId>org.powermock</groupId>
 	      <artifactId>powermock-module-testng</artifactId>
-	      <version>1.7.4</version>
+	      <version>2.0.9</version>
 	      <scope>test</scope>
 	   </dependency>
 	   <dependency>
 	      <groupId>org.powermock</groupId>
 	      <artifactId>powermock-core</artifactId>
-	      <version>1.7.4</version>
+	      <version>2.0.9</version>
 	      <scope>test</scope>
 	   </dependency>
 	   <dependency>
 	      <groupId>org.powermock</groupId>
-	      <artifactId>powermock-api-mockito</artifactId>
-	      <version>1.7.4</version>
+	      <artifactId>powermock-api-mockito2</artifactId>
+	      <version>2.0.9</version>
 	      <scope>test</scope>
 	   </dependency> 
 

openam-authentication/openam-auth-oauth2/src/test/java/org/forgerock/openam/authentication/modules/oauth2/ESIATest.java

@@ -11,15 +11,15 @@
  * Header, with the fields enclosed by brackets [] replaced by your own identifying
  * information: "Portions copyright [year] [name of copyright owner]".
  *
- * Copyright 2018-2025 3A Systems LLC.
+ * Copyright 2018-2026 3A Systems LLC.
  */
 
 package org.forgerock.openam.authentication.modules.oauth2;
 
 import org.openidentityplatform.bouncycastle.openssl.jcajce.JcaPEMWriter;
 import org.forgerock.openam.authentication.modules.oauth2.service.ESIAServiceUrlProvider;
 import org.forgerock.openam.authentication.modules.oauth2.service.esia.Signer;
-import org.mockito.Matchers;
+import org.mockito.ArgumentMatchers;
 import org.powermock.api.mockito.PowerMockito;
 import org.powermock.core.classloader.annotations.PowerMockIgnore;
 import org.powermock.core.classloader.annotations.PrepareForTest;
@@ -53,7 +53,7 @@ public class ESIATest extends PowerMockTestCase {
 	public void syncOffsetTest() throws Exception {
 		HttpRequestContent httpRequestContent =  mock(HttpRequestContent.class);
 		Map<String, List<String>> headers = Collections.singletonMap("Date", Collections.singletonList("Mon, 11 Mar 2019 07:07:25 GMT"));
-		when(httpRequestContent.getHeadersUsingHEAD(Matchers.anyString())).thenReturn(headers);
+		when(httpRequestContent.getHeadersUsingHEAD(ArgumentMatchers.anyString())).thenReturn(headers);
 		PowerMockito.mockStatic(HttpRequestContent.class);
 		PowerMockito.when(HttpRequestContent.getInstance()).thenReturn(httpRequestContent);
 		ESIAServiceUrlProvider.getSyncOffset();