Metacat

    private static final String PLAINPASSWORD = "ecoinformatics";

    private static final String PLAINPASSWORD2 = "n%cea4s";

    private static final String HASHEDPASSWORD2 = "$2a$10$iMZXvVYs8nEUAWDFfcCF8ePEvzcnak32tx7TQAecsZcPGRouqSdse";

    private static final String PLAINPASSWORD3 = "q8w*er";

    private static final String HASHEDPASSWORD3 = "$2a$10$zO4Cw1p38xWeUh4DneMGCecg67yo2SN25m0wzWCJ9zu7FfRwLTvue";

    private static final String EMAILADDRESS = "john@nceas.ucsb.edu";

    private static final String SURNAME = "John";

    private static final String GIVENNAME = "Joe";

         suite.addTest(new AuthFileTest("testChangePassword"));

         authFile.addUser(USERNAME, groups, PLAINPASSWORD, null, EMAILADDRESS, SURNAME, GIVENNAME);

         //user a hash value of the PASSWORD

         authFile.addUser(USERNAME2, null, null, HASHEDPASSWORD2, null, null,null);

             authFile.addUser(USERNAME, groups, PLAINPASSWORD, null, null, null, null);

         boolean success = authFile.authenticate(USERNAME, PLAINPASSWORD);

         success = authFile.authenticate("hello", PLAINPASSWORD);

         success = authFile.authenticate(USERNAME2, PLAINPASSWORD2);

         if(!success) {

             assertTrue("The authentication for "+USERNAME2 +" should succeed.", false);

         }

         success = authFile.authenticate(USERNAME2, HASHEDPASSWORD2);

         if(success) {

             assertTrue("The authentication should NOT succeed.", false);

         }

         assertTrue("The common name for the user "+USERNAME+" should be "+GIVENNAME+" "+SURNAME, users[0][1].equals(GIVENNAME+" "+SURNAME));

         assertTrue("The org name for the user "+USERNAME+" should be null ", users[0][2]== null);

         assertTrue("The org unit name for the user "+USERNAME+" should be null ", users[0][3]== null);

         assertTrue("The email address for the user "+USERNAME+" should be "+EMAILADDRESS, users[0][4].equals(EMAILADDRESS));

         assertTrue("The file should have one user "+USERNAME2, users[1][0].equals(USERNAME2));

         assertTrue("The common name for the user "+USERNAME2+" should be null", users[1][1]==null);

         assertTrue("The org name for the user "+USERNAME2+" should be null ", users[1][2]== null);

         assertTrue("The org unit name for the user "+USERNAME2+" should be null ", users[1][3]== null);

         assertTrue("The email address for the user "+USERNAME2+" should be null.", users[1][4]==null);

         groupForUser = authFile.getGroups(null, null, USERNAME2);

         assertTrue("There shouldn't have any groups assoicated with user "+USERNAME2, groupForUser==null);

         authFile.authenticate(USERNAME, PLAINPASSWORD);

         authFile.modifyPassWithPlain(USERNAME,newPassword);

         boolean success = authFile.authenticate(USERNAME, newPassword);

         assertTrue("The authentication should be successful with the new password", success);

             //System.out.println("Failed to change the password for a user: "+e.getMessage());

         success = authFile.authenticate(USERNAME, "qws");

         assertTrue("The authentication should fail with a wrong password", !success);

         //test change the password with hashed version

         authFile.modifyPassWithHash(USERNAME, HASHEDPASSWORD3);

         success = authFile.authenticate(USERNAME, PLAINPASSWORD3);

         assertTrue("The authentication should be successful with the new password (after modifying the password with a hashed value", success);

         success = authFile.authenticate(USERNAME, HASHEDPASSWORD3);

         assertTrue("The authentication should faile when the user directly use the hash password.", !success);

         success = authFile.authenticate(USERNAME, newPassword);

         assertTrue("The authentication should be successful with a wrong password", !success);