pac4j callbacks doesn't work if application.path is set fix #572

Author: jknack

coverage-report/src/test/java/org/jooby/issues/Issue572.java

@@ -0,0 +1,52 @@
+package org.jooby.issues;
+
+import static org.junit.Assert.assertEquals;
+
+import org.jooby.pac4j.Auth;
+import org.jooby.test.ServerFeature;
+import org.jsoup.Jsoup;
+import org.jsoup.nodes.Document;
+import org.junit.Test;
+
+import com.typesafe.config.ConfigFactory;
+import com.typesafe.config.ConfigValueFactory;
+
+public class Issue572 extends ServerFeature {
+
+  {
+    use(ConfigFactory.empty()
+        .withValue("application.path", ConfigValueFactory.fromAnyRef("/572")));
+
+    use(new Auth());
+
+    get("/", req -> req.path());
+  }
+
+  @Test
+  public void auth() throws Exception {
+    request()
+        .get("/572/auth?username=test&password=test")
+        .expect("/");
+  }
+
+  @Test
+  public void redirectToLoginPage() throws Exception {
+    request()
+        .dontFollowRedirect()
+        .get("/572/auth/form")
+        .expect(302)
+        .header("Location", "/572/login");
+  }
+
+  @Test
+  public void loginPage() throws Exception {
+    request()
+        .get("/572/auth/form")
+        .expect(rsp -> {
+          Document html = Jsoup.parse(rsp);
+          String action = (html.select("form").attr("action"));
+          assertEquals("/auth?client_name=FormClient", action);
+        });
+  }
+
+}

coverage-report/src/test/java/org/jooby/issues/Issue572b.java

@@ -0,0 +1,46 @@
+package org.jooby.issues;
+
+import static org.junit.Assert.assertEquals;
+
+import org.jooby.pac4j.Auth;
+import org.jooby.test.ServerFeature;
+import org.jsoup.Jsoup;
+import org.jsoup.nodes.Document;
+import org.junit.Test;
+
+public class Issue572b extends ServerFeature {
+
+  {
+    use(new Auth());
+
+    get("/", req -> req.path());
+  }
+
+  @Test
+  public void auth() throws Exception {
+    request()
+        .get("/auth?username=test&password=test")
+        .expect("/");
+  }
+
+  @Test
+  public void redirectToLoginPage() throws Exception {
+    request()
+        .dontFollowRedirect()
+        .get("/auth/form")
+        .expect(302)
+        .header("Location", "/login");
+  }
+
+  @Test
+  public void loginPage() throws Exception {
+    request()
+        .get("/auth/form")
+        .expect(rsp -> {
+          Document html = Jsoup.parse(rsp);
+          String action = (html.select("form").attr("action"));
+          assertEquals("/auth?client_name=FormClient", action);
+        });
+  }
+
+}

coverage-report/src/test/java/org/jooby/issues/Issue572c.java

@@ -0,0 +1,21 @@
+package org.jooby.issues;
+
+import org.jooby.test.ServerFeature;
+import org.junit.Test;
+
+import com.typesafe.config.Config;
+
+public class Issue572c extends ServerFeature {
+
+  {
+    get("/572c", () -> require(Config.class).getString("contextPath"));
+  }
+
+  @Test
+  public void shouldGetEmptyContextPath() throws Exception {
+    request()
+        .get("/572c")
+        .expect("");
+  }
+
+}

coverage-report/src/test/java/org/jooby/issues/Issue572d.java

@@ -0,0 +1,26 @@
+package org.jooby.issues;
+
+import org.jooby.test.ServerFeature;
+import org.junit.Test;
+
+import com.typesafe.config.Config;
+import com.typesafe.config.ConfigFactory;
+import com.typesafe.config.ConfigValueFactory;
+
+public class Issue572d extends ServerFeature {
+
+  {
+    use(ConfigFactory.empty()
+        .withValue("application.path", ConfigValueFactory.fromAnyRef("/572d")));
+
+    get("/", () -> require(Config.class).getString("contextPath"));
+  }
+
+  @Test
+  public void shouldGetEmptyContextPath() throws Exception {
+    request()
+        .get("/572d")
+        .expect("/572d");
+  }
+
+}

gource.mp4

@@ -404,15 +404,16 @@ private void authorizer(final Object authorizer, final String name, final String
   public Auth form(final String pattern,
       final Class<? extends Authenticator<UsernamePasswordCredentials>> authenticator) {
     bindings.put(pattern, (binder, conf) -> {
-      TypeLiteral<Authenticator<UsernamePasswordCredentials>> usernamePasswordAuthenticator = new TypeLiteral<Authenticator<UsernamePasswordCredentials>>() {};
+      TypeLiteral<Authenticator<UsernamePasswordCredentials>> usernamePasswordAuthenticator = new TypeLiteral<Authenticator<UsernamePasswordCredentials>>() {
+      };
       binder.bind(usernamePasswordAuthenticator.getRawType()).to(authenticator);
 
       bindProfile(binder, CommonProfile.class);
 
       Multibinder.newSetBinder(binder, Client.class)
           .addBinding().toProvider(FormAuth.class);
 
-      return new FormFilter(conf.getString("auth.form.loginUrl"), conf.getString("auth.callback"));
+      return new FormFilter(conf.getString("auth.form.loginUrl"), authCallbackPath(conf));
     });
 
     return this;
@@ -449,7 +450,8 @@ public Auth form() {
   public Auth basic(final String pattern,
       final Class<? extends Authenticator<UsernamePasswordCredentials>> authenticator) {
     bindings.put(pattern, (binder, config) -> {
-      TypeLiteral<Authenticator<UsernamePasswordCredentials>> usernamePasswordAuthenticator = new TypeLiteral<Authenticator<UsernamePasswordCredentials>>() {};
+      TypeLiteral<Authenticator<UsernamePasswordCredentials>> usernamePasswordAuthenticator = new TypeLiteral<Authenticator<UsernamePasswordCredentials>>() {
+      };
       binder.bind(usernamePasswordAuthenticator.getRawType()).to(authenticator);
 
       bindProfile(binder, CommonProfile.class);
@@ -635,7 +637,7 @@ public Auth logout(final String logoutUrl) {
 
   @SuppressWarnings({"rawtypes", "unchecked" })
   @Override
-  public void configure(final Env env, final Config config, final Binder binder) {
+  public void configure(final Env env, final Config conf, final Binder binder) {
     binder.bind(Clients.class).toProvider(ClientsProvider.class);
 
     binder.bind(org.pac4j.core.config.Config.class).toProvider(ConfigProvider.class);
@@ -646,21 +648,18 @@ public void configure(final Env env, final Config config, final Binder binder) {
     OptionalBinder.newOptionalBinder(binder, ClientFinder.class)
         .setDefault().toInstance(new DefaultClientFinder());
 
-    String fullcallback = config.getString("auth.callback");
-    String callback = URI.create(fullcallback).getPath();
-
     Router routes = env.router();
 
     MapBinder<String, Authorizer> authorizers = MapBinder
         .newMapBinder(binder, String.class, Authorizer.class);
 
-    routes.use("*", callback, (req, rsp, chain) -> req
+    routes.use("*", authCallbackPath(conf), (req, rsp, chain) -> req
         .require(AuthCallback.class).handle(req, rsp, chain))
         .excludes("/favicon.ico")
         .name("auth(Callback)");
 
-    routes.use("*", logoutUrl.orElse(config.getString("auth.logout.url")),
-        new AuthLogout(redirecTo.orElse(config.getString("auth.logout.redirectTo"))))
+    routes.use("*", logoutUrl.orElse(conf.getString("auth.logout.url")),
+        new AuthLogout(redirecTo.orElse(conf.getString("auth.logout.redirectTo"))))
         .name("auth(Logout)");
 
     if (bindings.size() == 0) {
@@ -672,7 +671,7 @@ public void configure(final Env env, final Config config, final Binder binder) {
       String pattern = e.getKey();
       List<AuthFilter> filters = new ArrayList<>();
       e.getValue().forEach(it -> {
-        AuthFilter filter = it.apply(binder, config);
+        AuthFilter filter = it.apply(binder, conf);
         if (filters.size() == 0) {
           // push 1st filter
           filters.add(filter);
@@ -713,6 +712,13 @@ public void configure(final Env env, final Config config, final Binder binder) {
     });
   }
 
+  private String authCallbackPath(final Config conf) {
+    String fullcallback = conf.getString("auth.callback");
+    String root = conf.getString("application.path");
+    String callback = URI.create(fullcallback).getPath().replace(root, "");
+    return Route.normalize(callback);
+  }
+
   @Override
   public Config config() {
     return ConfigFactory.parseResources(getClass(), "auth.conf");

jooby-pac4j/src/main/java/org/jooby/pac4j/Auth.java

@@ -1,7 +1,7 @@
 auth {
 
   # default callback, like http://localhost:8080/auth
-  callback = "http://"${application.host}":"${application.port}${application.path}"auth"
+  callback = "http://"${application.host}":"${application.port}${contextPath}"/auth"
 
   # login options
   login {

jooby-pac4j/src/main/resources/org/jooby/pac4j/auth.conf

@@ -2857,17 +2857,23 @@ private Config buildConfig(final Config source, final Config args,
         .map(c -> c.getString("application.env"))
         .orElse("dev");
 
-    Config modeConfig = modeConfig(source, env);
+    String cpath = Arrays.asList(system, args, source).stream()
+        .filter(it -> it.hasPath("application.path"))
+        .findFirst()
+        .map(c -> c.getString("application.path"))
+        .orElse("/");
+
+    Config envcof = envConf(source, env);
 
     // application.[env].conf -> application.conf
-    Config config = modeConfig.withFallback(source);
+    Config conf = envcof.withFallback(source);
 
     return system
         .withFallback(args)
-        .withFallback(config)
+        .withFallback(conf)
         .withFallback(moduleStack)
         .withFallback(MediaType.types)
-        .withFallback(defaultConfig(config))
+        .withFallback(defaultConfig(conf, Route.normalize(cpath)))
         .resolve();
   }
 
@@ -2916,7 +2922,7 @@ static Config args(final String[] args) {
    * @param env Application env.
    * @return A config env.
    */
-  private Config modeConfig(final Config source, final String env) {
+  private Config envConf(final Config source, final String env) {
     String origin = source.origin().resource();
     Config result = ConfigFactory.empty();
     if (origin != null) {
@@ -2956,47 +2962,49 @@ static Config fileConfig(final String fname) {
   /**
    * Build default application.* properties.
    *
-   * @param config A source config.
+   * @param conf A source config.
+   * @param cpath Application path.
    * @return default properties.
    */
-  private Config defaultConfig(final Config config) {
+  private Config defaultConfig(final Config conf, final String cpath) {
     String ns = getClass().getPackage().getName();
     String[] parts = ns.split("\\.");
     String appname = parts[parts.length - 1];
 
     // locale
     final List<Locale> locales;
-    if (!config.hasPath("application.lang")) {
+    if (!conf.hasPath("application.lang")) {
       locales = Optional.ofNullable(this.languages)
           .map(langs -> LocaleUtils.parse(Joiner.on(",").join(langs)))
           .orElse(ImmutableList.of(Locale.getDefault()));
     } else {
-      locales = LocaleUtils.parse(config.getString("application.lang"));
+      locales = LocaleUtils.parse(conf.getString("application.lang"));
     }
     Locale locale = locales.iterator().next();
     String lang = locale.toLanguageTag();
 
     // time zone
     final String tz;
-    if (!config.hasPath("application.tz")) {
+    if (!conf.hasPath("application.tz")) {
       tz = Optional.ofNullable(zoneId).orElse(ZoneId.systemDefault()).getId();
     } else {
-      tz = config.getString("application.tz");
+      tz = conf.getString("application.tz");
     }
 
     // number format
     final String nf;
-    if (!config.hasPath("application.numberFormat")) {
+    if (!conf.hasPath("application.numberFormat")) {
       nf = Optional.ofNullable(numberFormat)
           .orElseGet(() -> ((DecimalFormat) DecimalFormat.getInstance(locale)).toPattern());
     } else {
-      nf = config.getString("application.numberFormat");
+      nf = conf.getString("application.numberFormat");
     }
 
     int processors = Runtime.getRuntime().availableProcessors();
     String version = Optional.ofNullable(getClass().getPackage().getImplementationVersion())
         .orElse("0.0.0");
     Config defs = ConfigFactory.parseResources(Jooby.class, "jooby.conf")
+        .withValue("contextPath", ConfigValueFactory.fromAnyRef(cpath.equals("/") ? "" : cpath))
         .withValue("application.name", ConfigValueFactory.fromAnyRef(appname))
         .withValue("application.version", ConfigValueFactory.fromAnyRef(version))
         .withValue("application.class", ConfigValueFactory.fromAnyRef(getClass().getName()))