OZG-5176 OZG-5278 Use `@WithJwt` in security integration test

598c3aad · Jan Zickermann · 3bf479f0 · 598c3aad · 598c3aad · 3bf479f0
Commit 598c3aad authored Mar 26, 2024 by Jan Zickermann
--- a/src/test/java/de/ozgcloud/admin/security/SecurityConfigurationITCase.java
+++ b/src/test/java/de/ozgcloud/admin/security/SecurityConfigurationITCase.java
@@ -33,11 +33,9 @@ import org.junit.jupiter.params.provider.ValueSource;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.boot.test.autoconfigure.web.servlet.AutoConfigureMockMvc;
 import org.springframework.http.HttpStatus;
-import org.springframework.security.test.context.support.WithMockUser;
 import org.springframework.test.web.servlet.MockMvc;
 import org.springframework.test.web.servlet.ResultActions;
-import de.ozgcloud.admin.common.user.UserRole;
 import de.ozgcloud.common.test.DataITCase;
 import lombok.SneakyThrows;
@@ -179,9 +177,18 @@ class SecurityConfigurationITCase {
 	@DisplayName("with admin role")
 	@Nested
 	class TestWithAdminRole {
+		static final String CLAIMS = """
+				{
+				  "preferredUsername": "testUser",
+				  "scope": "openid testscope",
+				  "resource_access": { "admin": { "roles": ["ADMIN_ADMIN"] } }
+				}""";
 		@Test
 		@SneakyThrows
-		@WithMockUser(roles = UserRole.ADMIN_USER)
+		@WithJwt(CLAIMS)
 		void shouldAllowSettings() {
 			var result = mockMvc.perform(get("/api/configuration/settings"));
@@ -190,7 +197,7 @@ class SecurityConfigurationITCase {
 		@Test
 		@SneakyThrows
-		@WithMockUser(roles = UserRole.ADMIN_USER)
+		@WithJwt(CLAIMS)
 		void shouldAllowConfiguration() {
 			var result = mockMvc.perform(get("/api/configuration"));

--- a/src/test/resources/application-itcase.yaml
+++ b/src/test/resources/application-itcase.yaml
 mongock:
  enabled: false
+ozgcloud:
+  oauth2:
+    auth-server-url: https://sso.it-case.de
+    realm: by-kiel-dev
+    resource: admin
--- a/src/test/resources/application.yaml
+++ b/src/test/resources/application.yaml
-management:
-  server:
-    port: 8081
-spring:
-  application:
-    name: OzgCloud_Administration
-  data:
-    mongodb:
-      authentication-database: admin
-    rest:
-      basePath: /api/configuration
-  cloud:
-    config:
-      server:
-        prefix: /configserver
-  security:
-    oauth2:
-      resourceserver:
-        jwt:
-          issuer-uri: ${ozgcloud.oauth2.auth-server-url}/realms/${ozgcloud.oauth2.realm}
-ozgcloud:
-  oauth2:
-    auth-server-url: https://sso.dev.by.ozg-cloud.de
-    realm: by-kiel-dev
\ No newline at end of file