=doc,htpi #18496 more security directives docs

2015-10-08 15:20:17 +02:00 · 2015-10-08 15:20:17 +02:00 · ea49e7624c
commit ea49e7624c
parent 92e2ac21f0
11 changed files with 203 additions and 39 deletions
--- a/akka-docs-dev/rst/scala/code/docs/http/scaladsl/server/directives/SecurityDirectivesExamplesSpec.scala
+++ b/akka-docs-dev/rst/scala/code/docs/http/scaladsl/server/directives/SecurityDirectivesExamplesSpec.scala
@ -5,12 +5,12 @@
 package docs.http.scaladsl.server
 package directives

+import akka.http.scaladsl.model._
+import akka.http.scaladsl.model.headers._
 import akka.http.scaladsl.server.Route
 import akka.http.scaladsl.server.directives.Credentials
-import akka.stream.scaladsl.{ FlowGraph, Flow, FlattenStrategy }
+
 import scala.concurrent.Future
-import akka.http.scaladsl.model._
-import headers._

 class SecurityDirectivesExamplesSpec extends RoutingSpec {

@ -51,6 +51,90 @@ class SecurityDirectivesExamplesSpec extends RoutingSpec {
        header[`WWW-Authenticate`].get.challenges.head shouldEqual HttpChallenge("Basic", "secure site")
      }
  }
+  "authenticateBasicPF-0" in {
+    val myUserPassAuthenticator: AuthenticatorPF[String] = {
+      case p @ Credentials.Provided(id) if p.verify("p4ssw0rd")         => id
+      case p @ Credentials.Provided(id) if p.verify("p4ssw0rd-special") => s"$id-admin"
+    }
+
+    val route =
+      Route.seal {
+        path("secured") {
+          authenticateBasicPF(realm = "secure site", myUserPassAuthenticator) { userName =>
+            complete(s"The user is '$userName'")
+          }
+        }
+      }
+
+    Get("/secured") ~> route ~> check {
+      status shouldEqual StatusCodes.Unauthorized
+      responseAs[String] shouldEqual "The resource requires authentication, which was not supplied with the request"
+      header[`WWW-Authenticate`].get.challenges.head shouldEqual HttpChallenge("Basic", "secure site")
+    }
+
+    val validCredentials = BasicHttpCredentials("John", "p4ssw0rd")
+    Get("/secured") ~> addCredentials(validCredentials) ~> // adds Authorization header
+      route ~> check {
+        responseAs[String] shouldEqual "The user is 'John'"
+      }
+
+    val validAdminCredentials = BasicHttpCredentials("John", "p4ssw0rd-special")
+    Get("/secured") ~> addCredentials(validAdminCredentials) ~> // adds Authorization header
+      route ~> check {
+        responseAs[String] shouldEqual "The user is 'John-admin'"
+      }
+
+    val invalidCredentials = BasicHttpCredentials("Peter", "pan")
+    Get("/secured") ~>
+      addCredentials(invalidCredentials) ~> // adds Authorization header
+      route ~> check {
+        status shouldEqual StatusCodes.Unauthorized
+        responseAs[String] shouldEqual "The supplied authentication is invalid"
+        header[`WWW-Authenticate`].get.challenges.head shouldEqual HttpChallenge("Basic", "secure site")
+      }
+  }
+  "authenticateBasicPFAsync-0" in {
+    case class User(id: String)
+    def fetchUser(id: String): Future[User] = {
+      // some fancy logic to obtain a User
+      Future.successful(User(id))
+    }
+
+    val myUserPassAuthenticator: AsyncAuthenticatorPF[User] = {
+      case p @ Credentials.Provided(id) if p.verify("p4ssw0rd") =>
+        fetchUser(id)
+    }
+
+    val route =
+      Route.seal {
+        path("secured") {
+          authenticateBasicPFAsync(realm = "secure site", myUserPassAuthenticator) { user =>
+            complete(s"The user is '${user.id}'")
+          }
+        }
+      }
+
+    Get("/secured") ~> route ~> check {
+      status shouldEqual StatusCodes.Unauthorized
+      responseAs[String] shouldEqual "The resource requires authentication, which was not supplied with the request"
+      header[`WWW-Authenticate`].get.challenges.head shouldEqual HttpChallenge("Basic", "secure site")
+    }
+
+    val validCredentials = BasicHttpCredentials("John", "p4ssw0rd")
+    Get("/secured") ~> addCredentials(validCredentials) ~> // adds Authorization header
+      route ~> check {
+        responseAs[String] shouldEqual "The user is 'John'"
+      }
+
+    val invalidCredentials = BasicHttpCredentials("Peter", "pan")
+    Get("/secured") ~>
+      addCredentials(invalidCredentials) ~> // adds Authorization header
+      route ~> check {
+        status shouldEqual StatusCodes.Unauthorized
+        responseAs[String] shouldEqual "The supplied authentication is invalid"
+        header[`WWW-Authenticate`].get.challenges.head shouldEqual HttpChallenge("Basic", "secure site")
+      }
+  }
  "authenticateBasicAsync-0" in {
    def myUserPassAuthenticator(credentials: Credentials): Future[Option[String]] =
      credentials match {