安全提供程序未在功能测试期间注册

时间:2013-04-09 15:41:48

标签: mule esb

我们在部署在Mule上的RestFul webservices中使用基本身份验证,安全性由内置的Spring Security提供支持。我们正在使用Mule 3.3.0。

我们将mflow分成两个不同的部分 - main.xml和connector.xml。原因是在运行功能测试时,我们传递了另一个mflow connector-test.xml而不是connector.xml,其中所有端点(如AMQ等)都是存根的。但是对于Rest,我们仍在使用正确的端点。 在我们的Mule Functional测试中,我们使用apache commons httpclient对这些端点进行restful WS调用,等待响应,然后检查它是否通过了测试。

相同的功能在mule standalone中运行良好 - 即休息webservice部署得很好,我们可以进行http休息请求 - 它得到基本的身份验证,然后返回响应。但是,在功能测试期间进行身份验证时,它会失败并显示消息

Exception stack is:
1. There is no Security Provider reqistered called "org.mule.security.DefaultMuleAuthentication" (org.mule.api.security.SecurityProviderNotFoundException)
  org.mule.security.MuleSecurityManager:107 (http://www.mulesoft.org/docs/site/current3/apidocs/org/mule/api/security/SecurityProviderNotFoundException.html)
********************************************************************************
Root Exception stack trace:
org.mule.api.security.SecurityProviderNotFoundException: There is no Security Provider reqistered called "org.mule.security.DefaultMuleAuthentication"
      at org.mule.security.MuleSecurityManager.authenticate(MuleSecurityManager.java:107)
      at org.mule.transport.http.filters.HttpBasicAuthenticationFilter.authenticateInbound(HttpBasicAuthenticationFilter.java:134)
      at org.mule.security.AbstractEndpointSecurityFilter.authenticate(AbstractEndpointSecurityFilter.java:58)
      at org.mule.security.AbstractAuthenticationFilter.doFilter(AbstractAuthenticationFilter.java:56)
      at org.mule.security.AbstractEndpointSecurityFilter.doFilter(AbstractEndpointSecurityFilter.java:49)
      at org.mule.processor.SecurityFilterMessageProcessor.process(SecurityFilterMessageProcessor.java:52)
      at org.mule.execution.ExceptionToMessagingExceptionExecutionInterceptor.execute(ExceptionToMessagingExceptionExecutionInterceptor.java:27)
      at org.mule.execution.MessageProcessorNotificationExecutionInterceptor.execute(MessageProcessorNotificationExecutionInterceptor.java:43)
      at org.mule.execution.MessageProcessorExecutionTemplate.execute(MessageProcessorExecutionTemplate.java:43)
      at org.mule.execution.ExceptionToMessagingExceptionExecutionInterceptor.execute(ExceptionToMessagingExceptionExecutionInterceptor.java:27)
      at org.mule.execution.MessageProcessorNotificationExecutionInterceptor.execute(MessageProcessorNotificationExecutionInterceptor.java:43)
      at org.mule.execution.MessageProcessorExecutionTemplate.execute(MessageProcessorExecutionTemplate.java:43)
      at org.mule.execution.ExceptionToMessagingExceptionExecutionInterceptor.execute(ExceptionToMessagingExceptionExecutionInterceptor.java:27)
      at org.mule.execution.MessageProcessorNotificationExecutionInterceptor.execute(MessageProcessorNotificationExecutionInterceptor.java:43)
      at org.mule.execution.MessageProcessorExecutionTemplate.execute(MessageProcessorExecutionTemplate.java:43)
      at org.mule.execution.ExceptionToMessagingExceptionExecutionInterceptor.execute(ExceptionToMessagingExceptionExecutionInterceptor.java:27)
      at org.mule.execution.MessageProcessorNotificationExecutionInterceptor.execute(MessageProcessorNotificationExecutionInterceptor.java:43)
      at org.mule.execution.MessageProcessorExecutionTemplate.execute(MessageProcessorExecutionTemplate.java:43)
      at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:192)
      at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:174)
      at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:166)
      at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:153)
      at org.mule.transport.http.HttpMessageReceiver$HttpWorker$1.process(HttpMessageReceiver.java:310)
      at org.mule.transport.http.HttpMessageReceiver$HttpWorker$1.process(HttpMessageReceiver.java:305)
      at org.mule.execution.ExecuteCallbackInterceptor.execute(ExecuteCallbackInterceptor.java:20)
      at org.mule.execution.HandleExceptionInterceptor.execute(HandleExceptionInterceptor.java:34)
      at org.mule.execution.HandleExceptionInterceptor.execute(HandleExceptionInterceptor.java:18)
      at org.mule.execution.BeginAndResolveTransactionInterceptor.execute(BeginAndResolveTransactionInterceptor.java:58)
      at org.mule.execution.ResolvePreviousTransactionInterceptor.execute(ResolvePreviousTransactionInterceptor.java:48)
      at org.mule.execution.SuspendXaTransactionInterceptor.execute(SuspendXaTransactionInterceptor.java:54)
      at org.mule.execution.ValidateTransactionalStateInterceptor.execute(ValidateTransactionalStateInterceptor.java:44)
      at org.mule.execution.IsolateCurrentTransactionInterceptor.execute(IsolateCurrentTransactionInterceptor.java:44)
      at org.mule.execution.ExternalTransactionInterceptor.execute(ExternalTransactionInterceptor.java:52)
      at org.mule.execution.RethrowExceptionInterceptor.execute(RethrowExceptionInterceptor.java:32)
      at org.mule.execution.RethrowExceptionInterceptor.execute(RethrowExceptionInterceptor.java:17)
      at org.mule.execution.TransactionalErrorHandlingExecutionTemplate.execute(TransactionalErrorHandlingExecutionTemplate.java:113)
      at org.mule.execution.TransactionalErrorHandlingExecutionTemplate.execute(TransactionalErrorHandlingExecutionTemplate.java:34)
      at org.mule.transport.http.HttpMessageReceiver$HttpWorker.doRequest(HttpMessageReceiver.java:304)
      at org.mule.transport.http.HttpMessageReceiver$HttpWorker.processRequest(HttpMessageReceiver.java:250)
      at org.mule.transport.http.HttpMessageReceiver$HttpWorker.run(HttpMessageReceiver.java:163)
      at org.mule.work.WorkerContext.run(WorkerContext.java:311)
      at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
      at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
      at java.lang.Thread.run(Thread.java:662)

知道为什么安全提供商没有注册?

以下是设置..

main.xml的内容 

 <flow name="RestFlow" doc:name="RestFlow">
    <inbound-endpoint ref="restEndPoint" mimeType="text/xml">
            <mule-ss:http-security-filter realm="easervices-realm" />
        </inbound-endpoint>

            <jersey:resources doc:name="REST">
 <component>
            <spring-object bean="createCompany"/>            
        </component>
        <component>
            <spring-object bean="activateNumbers"/>            
        </component>
 </jersey:resources>
</flow>
    ........

如您所见,安全位如上所述注入RestFlow。 其余的安全设置在connector.xml(live)或connector-test.xml(test)

中完成

connector-test.xml的内容 - 在内存中部署以运行功能测试时要注意的事项Rest端点部署在端口8098上,尽管这与安全性无关

<spring:beans>
      <spring:import resource="classpath:spring/external-service-config-stub.xml" />

      <ss:authentication-manager alias="authenticationManager">
            <ss:authentication-provider>
                  <ss:password-encoder hash="sha" />
                  <ss:user-service id="userService">
                        <ss:user name="adminportal" password="0314795e56347590b54b7da2afba3456fgcd4968"
                              authorities="ROLE_ADMIN" />
                  </ss:user-service>

            </ss:authentication-provider>
      </ss:authentication-manager>
      <ss:global-method-security
            pre-post-annotations="enabled" jsr250-annotations="enabled" />
      </spring:beans>

<http:endpoint exchange-pattern="request-response" host="localhost"
            port="8098" path="mypath" name="restEndPoint" doc:name="HTTP" />
<mule-ss:security-manager>
            <mule-ss:delegate-security-provider
                  name="memory-provider" delegate-ref="authenticationManager" />
      </mule-ss:security-manager>

connector.xml的内容 - 在mule-standalone中部署时注意事项Rest在端口8088上公开,并注入真正的Spring服务(尽管它们与安全性无关)

<spring:beans>
    <spring:import resource="classpath:spring/external-service-config.xml" />

    <ss:authentication-manager alias="authenticationManager">
         <ss:authentication-provider>
                  <ss:password-encoder hash="sha" />
                  <ss:user-service id="userService">
                        <ss:user name="adminportal" password="0314795e56347590b54b7da2afba3456fgcd4968"
                              authorities="ROLE_ADMIN" />
                  </ss:user-service>

            </ss:authentication-provider>
    </ss:authentication-manager>
    <ss:global-method-security
        pre-post-annotations="enabled" jsr250-annotations="enabled" />

    <context:property-placeholder location="classpath:config/mule-config.properties" />
    </spring:beans>

<http:endpoint exchange-pattern="request-response" host="localhost"
        port="8088" path="mypath" name="restEndPoint" mimeType="text/xml"
        doc:name="HTTP" />
<mule-ss:security-manager>
        <mule-ss:delegate-security-provider
            name="memory-provider" delegate-ref="authenticationManager" />
    </mule-ss:security-manager>

在运行测试时发出http rest请求的Functional Test代码中调用代码。 

httpClient.getState().setCredentials(
                new AuthScope("localhost", 8098, "easervices-realm"),
                new UsernamePasswordCredentials("adminportal",
                        "thepassword"));
        httpClient.getParams().setAuthenticationPreemptive(true);
        httpClient.getParams().setParameter(AuthPolicy.AUTH_SCHEME_PRIORITY,
                Collections.singleton(AuthPolicy.BASIC));
        final PostMethod meth = new PostMethod("http://localhost:8098/horizon"
                + url);
        meth.setDoAuthentication(true);
        meth.setRequestEntity(new StringRequestEntity(xml, "text/xml",
                "ISO-8859-1"));
        // meth.addRequestHeader("Content-Type", "text/xml");

        httpClient.executeMethod(meth);

请帮助。在connector.xml中使用相同的安全设置,当应用程序部署在独立的mule 3.3.0中时,它部署得很好并且基本身份验证也很好。不知何故,安全提供程序在运行Mule Functional测试时没有注册,其中mule服务器在内存中启动,而应用程序部署用于测试配置的测试。

0 个答案:

没有答案
相关问题
最新问题