From 53da3907d44fdb9a599af3eea62514044347121f Mon Sep 17 00:00:00 2001
From: Alex Rudyy <orudyy@apache.org>
Date: Fri, 29 Mar 2013 17:30:54 +0000
Subject: QPID-4678: Add ACL checks to restrict the operations to change broker
 level configuration through the management interfaces

git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk@1462551 13f79535-47bb-0310-9956-ffa450edef68
---
 .../qpid/server/security/access/config/PlainConfigurationTest.java | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'qpid/java/broker-plugins/access-control/src')

diff --git a/qpid/java/broker-plugins/access-control/src/test/java/org/apache/qpid/server/security/access/config/PlainConfigurationTest.java b/qpid/java/broker-plugins/access-control/src/test/java/org/apache/qpid/server/security/access/config/PlainConfigurationTest.java
index cbfc9003c8..3a324bc571 100644
--- a/qpid/java/broker-plugins/access-control/src/test/java/org/apache/qpid/server/security/access/config/PlainConfigurationTest.java
+++ b/qpid/java/broker-plugins/access-control/src/test/java/org/apache/qpid/server/security/access/config/PlainConfigurationTest.java
@@ -447,6 +447,13 @@ public class PlainConfigurationTest extends TestCase
                 "user1", Operation.ACCESS, ObjectType.MANAGEMENT, ObjectProperties.EMPTY);
     }
 
+    public void testBrokerRuleParsing() throws Exception
+    {
+        validateRule(writeACLConfig("ACL ALLOW user1 CONFIGURE BROKER"), "user1", Operation.CONFIGURE, ObjectType.BROKER,
+                ObjectProperties.EMPTY);
+        validateRule(writeACLConfig("ACL ALLOW user1 ALL BROKER"), "user1", Operation.ALL, ObjectType.BROKER, ObjectProperties.EMPTY);
+    }
+
     private void validateRule(final PlainConfiguration config, String username, Operation operation, ObjectType objectType, ObjectProperties objectProperties)
     {
         final RuleSet rs = config.getConfiguration();
-- 
cgit v1.2.1