test: proxy and ssl configuration

granitdula · granitdula · commit 701c217fdbe1 · 2023-10-23T13:28:30.000+01:00
diff --git a/src/main/java/com/factset/sdk/utils/authentication/ConfidentialClient.java b/src/main/java/com/factset/sdk/utils/authentication/ConfidentialClient.java
@@ -166,6 +166,25 @@ protected ConfidentialClient(final Configuration config, final TokenRequestBuild
         this.tokenRequestBuilder = tokReqBuilder.uri(this.providerMetadata.getTokenEndpointURI());
     }
 
+    /**
+     * Creates a new ConfidentialClient. When setting up the OAuth 2.0 client, this constructor reaches out to
+     * FactSet's well-known URI to retrieve metadata about its authorization server. This information along with
+     * information about the OAuth 2.0 client is stored and used whenever a new access token is fetched.
+     *
+     * @param config        Configuration object.
+     * @param tokReqBuilder The TokenRequest builder, used to build custom TokenRequest instances.
+     * @param requestOptions Object that can configure options like proxy and SSL settings
+     * @throws AuthServerMetadataContentException If Meta Issuer or Meta Token Endpoint is missing.
+     * @throws AuthServerMetadataException        If reading from URL is unsuccessful.
+     * @throws NullPointerException               Unchecked exception, if config is null.
+     */
+    protected ConfidentialClient(final Configuration config, final TokenRequestBuilder tokReqBuilder, RequestOptions requestOptions)
+            throws AuthServerMetadataContentException,
+            AuthServerMetadataException {
+        this(config, requestOptions);
+        this.tokenRequestBuilder = tokReqBuilder.uri(this.providerMetadata.getTokenEndpointURI());
+    }
+
     /**
      * Returns an access token that can be used for authentication. If the cache contains a valid access token,
      * it's returned. Otherwise, a new access token is retrieved from FactSet's authorization server. The access
diff --git a/src/test/java/com/factset/sdk/utils/authentication/ConfidentialClientTest.java b/src/test/java/com/factset/sdk/utils/authentication/ConfidentialClientTest.java
@@ -8,6 +8,7 @@
 import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.Test;
 
+import javax.net.ssl.HttpsURLConnection;
 import java.io.File;
 import java.io.IOException;
 import java.net.*;
@@ -149,9 +150,11 @@ void confidentialClientValidPathValidConfigCannotGetInputStreamThrowsAuthServerM
     }
 
     @Test
-    void confidentialClientValidPathValidConfigMissingIssuerAndTokenEndpointThrowsAuthServerMetadataContentException() {
+    void confidentialClientValidPathValidConfigMissingIssuerAndTokenEndpointThrowsAuthServerMetadataContentException() throws Exception {
+        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+        URL mockedURL = getUrlMockResponse("emptyJson.txt", mockedConn);
         assertThrows(AuthServerMetadataContentException.class,
-                () -> new ConfidentialClient(getConfigSpyMockedResponse("emptyJson.txt", "validConfig.txt")));
+                () -> new ConfidentialClient(getConfigSpyMockedResponse(mockedURL, "validConfig.txt")));
     }
 
     @Test
@@ -163,7 +166,8 @@ void confidentialClientValidPathValidConfigCustomWellKnownUriInitialisesWithNoEx
                 "https://test.test.com/.test-test/test-test");
 
             // If this confidential client is instantiated without exceptions, that results in a passing test.
-            URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt");
+            HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+            URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
             Configuration configurationSpy = spy(configuration);
             when(configurationSpy.getWellKnownUrl()).thenReturn(mockedURL);
             new ConfidentialClient(configurationSpy);
@@ -174,10 +178,27 @@ void confidentialClientValidPathValidConfigCustomWellKnownUriInitialisesWithNoEx
     void confidentialClientValidConfigInitialisesWithNoException() {
         assertDoesNotThrow(() -> {
             // If this confidential client is instantiated without exceptions, that results in a passing test.
-            new ConfidentialClient(getConfigSpyMockedResponse("exampleResponseWellKnownUri.txt", "validConfig.txt"));
+            HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+            URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
+            new ConfidentialClient(getConfigSpyMockedResponse(mockedURL, "validConfig.txt"));
         });
     }
 
+    @Test
+    void confidentialClientValidConfigInitialisesWithRequestOptions() throws Exception {
+        Proxy mockProxy = new Proxy(Proxy.Type.HTTP, new InetSocketAddress("127.0.0.1", 8080));
+        RequestOptions reqOptions = RequestOptions.builder().proxy(mockProxy).build();
+
+        HttpsURLConnection mockedConn = mock(HttpsURLConnection.class);
+        URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
+        Configuration config = getConfigSpyMockedResponse(mockedURL, "validConfig.txt");
+        new ConfidentialClient(config, reqOptions);
+
+        verify(mockedURL).openConnection(mockProxy);
+        verify(mockedConn).setHostnameVerifier(reqOptions.getHostnameVerifier());
+        verify(mockedConn).setSSLSocketFactory(reqOptions.getSslSocketFactory());
+    }
+
     @Test
     void getAccessTokenCallingWithFailedSigningRaisesSigningJwsException() throws Exception {
         try {
@@ -195,14 +216,18 @@ void getAccessTokenCallingWithFailedSigningRaisesSigningJwsException() throws Ex
     @Test
     void getAccessTokenCallingWithErroneousResponseRaisesAccessTokenException() throws Exception {
         try {
+            HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+            URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
             Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
-                    "exampleResponseWellKnownUri.txt", "validConfig.txt"
+                    mockedURL, "validConfig.txt"
             );
 
+            HTTPRequest mockedRequest = mock(HTTPRequest.class);
             TokenRequestBuilder tokenRequestBuilderSpy = ConfidentialClientTest.createTokenRequestBuilderSpy(
                     HTTPResponse.SC_UNAUTHORIZED,
                     "{\"error_description\":\"Unauthorized access.\",\"error\":\"invalid_request\"}",
-                    false
+                    false,
+                    mockedRequest
             );
 
             ConfidentialClient confidentialClientSpy = spy(new ConfidentialClient(configurationMock, tokenRequestBuilderSpy));
@@ -215,14 +240,18 @@ void getAccessTokenCallingWithErroneousResponseRaisesAccessTokenException() thro
 
     @Test
     void getAccessTokenCalledForTheFirstTimeReturnsANewAccessToken() throws Exception {
+        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+        URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
         Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
-                "exampleResponseWellKnownUri.txt", "validConfig.txt"
+                mockedURL, "validConfig.txt"
         );
 
+        HTTPRequest mockedRequest = mock(HTTPRequest.class);
         TokenRequestBuilder tokenRequestBuilderSpy = ConfidentialClientTest.createTokenRequestBuilderSpy(
                 HTTPResponse.SC_OK,
                 "{\"access_token\":\"test token\",\"token_type\":\"Bearer\",\"expires_in\":899}",
-                true
+                true,
+                mockedRequest
         );
 
         ConfidentialClient confidentialClientSpy = spy(new ConfidentialClient(configurationMock, tokenRequestBuilderSpy));
@@ -231,10 +260,38 @@ void getAccessTokenCalledForTheFirstTimeReturnsANewAccessToken() throws Exceptio
         assertEquals("test token", accessToken);
     }
 
+    @Test
+    void getAccessTokenCalledWithRequestOptionsSetsProxyAndSSLSettings() throws Exception {
+        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+        URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
+        Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
+                mockedURL, "validConfig.txt"
+        );
+
+        HTTPRequest mockedRequest = mock(HTTPRequest.class);
+        TokenRequestBuilder tokenRequestBuilderSpy = ConfidentialClientTest.createTokenRequestBuilderSpy(
+                HTTPResponse.SC_OK,
+                "{\"access_token\":\"test token\",\"token_type\":\"Bearer\",\"expires_in\":899}",
+                true,
+                mockedRequest
+        );
+
+        Proxy mockProxy = new Proxy(Proxy.Type.HTTP, new InetSocketAddress("127.0.0.1", 8080));
+        RequestOptions reqOptions = RequestOptions.builder().proxy(mockProxy).build();
+        ConfidentialClient confidentialClientSpy = spy(new ConfidentialClient(configurationMock, tokenRequestBuilderSpy, reqOptions));
+        confidentialClientSpy.getAccessToken();
+
+        verify(mockedRequest).setProxy(mockProxy);
+        verify(mockedRequest).setHostnameVerifier(reqOptions.getHostnameVerifier());
+        verify(mockedRequest).setSSLSocketFactory(reqOptions.getSslSocketFactory());
+    }
+
     @Test
     void getAccessTokenCalledTwiceBeforeExpirationReturnsSameAccessToken() throws Exception {
+        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+        URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
         Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
-                "exampleResponseWellKnownUri.txt", "validConfig.txt"
+                mockedURL, "validConfig.txt"
         );
 
         HTTPResponse res = new HTTPResponse(HTTPResponse.SC_OK);
@@ -265,8 +322,10 @@ void getAccessTokenCalledTwiceBeforeExpirationReturnsSameAccessToken() throws Ex
 
     @Test
     void getAccessTokenCallingBeforeAndAfterExpirationReturnsDifferentAccessToken() throws Exception {
+        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+        URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
         Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
-                "exampleResponseWellKnownUri.txt", "validConfig.txt"
+                mockedURL, "validConfig.txt"
         );
 
         HTTPResponse res1 = new HTTPResponse(HTTPResponse.SC_OK);
@@ -302,14 +361,18 @@ void getAccessTokenCallingBeforeAndAfterExpirationReturnsDifferentAccessToken()
     @Test
     void getAccessTokenCallingWithSendErrorRaisesAccessTokenException() throws Exception {
         try {
+            HttpURLConnection mockedConn = mock(HttpURLConnection.class);
+            URL mockedURL = getUrlMockResponse("exampleResponseWellKnownUri.txt", mockedConn);
             Configuration configurationMock = ConfidentialClientTest.getConfigSpyMockedResponse(
-                    "exampleResponseWellKnownUri.txt", "validConfig.txt"
+                    mockedURL, "validConfig.txt"
             );
 
+            HTTPRequest mockedRequest = mock(HTTPRequest.class);
             TokenRequestBuilder tokenRequestBuilderSpy = ConfidentialClientTest.createTokenRequestBuilderSpy(
                     HTTPResponse.SC_OK,
                     "{\"error_description\":\"Invalid request.\",\"error\":\"invalid_request\"}",
-                    false
+                    false,
+                    mockedRequest
             );
 
             ConfidentialClient confidentialClientSpy = spy(new ConfidentialClient(configurationMock, tokenRequestBuilderSpy));
@@ -321,19 +384,17 @@ void getAccessTokenCallingWithSendErrorRaisesAccessTokenException() throws Excep
         }
     }
 
-    private static URL getUrlMockResponse(String stringFile) throws IOException {
+    private static URL getUrlMockResponse(String stringFile, HttpURLConnection mockedConn) throws IOException {
         final File file = new File(String.valueOf(Paths.get(String.valueOf(pathToResources), stringFile)));
 
         URL mockedUrl = mock(URL.class);
-        HttpURLConnection mockedConn = mock(HttpURLConnection.class);
         when(mockedUrl.openConnection(any(Proxy.class))).thenReturn(mockedConn);
         when(mockedConn.getInputStream()).thenReturn(Files.newInputStream(file.toPath()));
 
         return mockedUrl;
     }
 
-    private static Configuration getConfigSpyMockedResponse(String urlResponse, String configFile) throws IOException, ConfigurationException {
-        URL mockedURL = getUrlMockResponse(urlResponse);
+    private static Configuration getConfigSpyMockedResponse(URL mockedURL, String configFile) throws ConfigurationException {
         Configuration configuration = new Configuration(String.valueOf(Paths.get(pathToResources.toString(), configFile)));
         Configuration configurationSpy = spy(configuration);
         when(configurationSpy.getWellKnownUrl()).thenReturn(mockedURL);
@@ -352,7 +413,7 @@ private static Configuration getConfigSpyThrowsIOException(String configFile) th
     }
 
     private static TokenRequestBuilder createTokenRequestBuilderSpy(int statusCode, String resContent,
-                                                                    boolean requiresHeader) throws URISyntaxException,
+                                                                    boolean requiresHeader, HTTPRequest mockedRequest) throws URISyntaxException,
                                                                                                    IOException {
         HTTPResponse res = new HTTPResponse(statusCode);
         res.setContent(resContent);
@@ -367,11 +428,9 @@ private static TokenRequestBuilder createTokenRequestBuilderSpy(int statusCode,
 
         TokenRequestBuilder tokenRequestBuilderSpy = spy(new TokenRequestBuilder());
 
-        HTTPRequest httpRequestMock = mock(HTTPRequest.class);
-
         doReturn(tokenRequestMock).when(tokenRequestBuilderSpy).build();
-        doReturn(httpRequestMock).when(tokenRequestMock).toHTTPRequest();
-        doReturn(res).when(httpRequestMock).send();
+        doReturn(mockedRequest).when(tokenRequestMock).toHTTPRequest();
+        doReturn(res).when(mockedRequest).send();
 
         return tokenRequestBuilderSpy;
     }
