Skip to content

KNOX-3223: Suppress cleanup, removed deprecations #1133

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
hanicz merged 1 commit into from
Dec 17, 2025
Merged

KNOX-3223: Suppress cleanup, removed deprecations #1133

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 9 additions & 9 deletions gateway-adapter/src/test/java/org/apache/hadoop/gateway/shirorealm/KnoxLdapRealmTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,35 +30,35 @@ public class KnoxLdapRealmTest {
public void setGetSearchBase() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setSearchBase("dc=hadoop,dc=apache,dc=org");
assertEquals(realm.getSearchBase(), "dc=hadoop,dc=apache,dc=org");
assertEquals("dc=hadoop,dc=apache,dc=org", realm.getSearchBase());
}

@Test
public void setGetGroupObjectClass() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setGroupObjectClass("groupOfMembers");
assertEquals(realm.getGroupObjectClass(), "groupOfMembers");
assertEquals("groupOfMembers", realm.getGroupObjectClass());
}

@Test
public void setGetUniqueMemberAttribute() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setMemberAttribute("member");
assertEquals(realm.getMemberAttribute(), "member");
assertEquals("member", realm.getMemberAttribute());
}

@Test
public void setGetUserSearchAttributeName() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setUserSearchAttributeName("uid");
assertEquals(realm.getUserSearchAttributeName(), "uid");
assertEquals("uid", realm.getUserSearchAttributeName());
}

@Test
public void setGetUserObjectClass() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setUserObjectClass("inetuser");
assertEquals(realm.getUserObjectClass(), "inetuser");
assertEquals("inetuser", realm.getUserObjectClass());
}

@Test
Expand All @@ -74,7 +74,7 @@ public void setGetGroupSearchBase() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setSearchBase("dc=example,dc=com");
realm.setGroupSearchBase("dc=knox,dc=example,dc=com");
assertEquals(realm.getGroupSearchBase(), "dc=knox,dc=example,dc=com");
assertEquals("dc=knox,dc=example,dc=com", realm.getGroupSearchBase());
}

@Test
Expand All @@ -86,20 +86,20 @@ public void verifyDefaultUserSearchAttributeName() {
@Test
public void verifyDefaultGetUserObjectClass() {
KnoxLdapRealm realm = new KnoxLdapRealm();
assertEquals(realm.getUserObjectClass(), "person");
assertEquals("person", realm.getUserObjectClass());
}

@Test
public void verifyDefaultUserSearchBase() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setSearchBase("dc=knox,dc=example,dc=com");
assertEquals(realm.getUserSearchBase(), "dc=knox,dc=example,dc=com");
assertEquals("dc=knox,dc=example,dc=com", realm.getUserSearchBase());
}

@Test
public void verifyDefaultGroupSearchBase() {
KnoxLdapRealm realm = new KnoxLdapRealm();
realm.setSearchBase("dc=knox,dc=example,dc=com");
assertEquals(realm.getGroupSearchBase(), "dc=knox,dc=example,dc=com");
assertEquals("dc=knox,dc=example,dc=com", realm.getGroupSearchBase());
}
}
2 changes: 1 addition & 1 deletion gateway-adapter/src/test/java/org/apache/hadoop/gateway/shirorealm/KnoxPamRealmTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@ public class KnoxPamRealmTest {
public void setService() {
KnoxPamRealm realm = new KnoxPamRealm();
realm.setService("knox-pam-os-service");
assertEquals(realm.getService(), "knox-pam-os-service");
assertEquals("knox-pam-os-service", realm.getService());
}

@Test
Expand Down
1 change: 0 additions & 1 deletion ...a/org/apache/knox/gateway/topology/discovery/cm/monitor/PollingConfigurationAnalyzer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -521,7 +521,6 @@ private List<RelevantEvent> getRelevantEvents(final String address, final String
return relevantEvents;
}

@SuppressWarnings("unchecked")
private boolean isStartEvent(ApiEvent event) {
final Map<String, Object> attributeMap = getAttributeMap(event.getAttributes());
final String command = getAttribute(attributeMap, COMMAND);
Expand Down
6 changes: 1 addition & 5 deletions ...g/apache/knox/gateway/identityasserter/common/filter/AbstractIdentityAssertionFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,6 @@
package org.apache.knox.gateway.identityasserter.common.filter;

import java.io.IOException;
import java.security.AccessController;
import java.security.Principal;
import java.security.PrivilegedActionException;
import java.security.PrivilegedExceptionAction;
Expand Down Expand Up @@ -52,8 +51,6 @@
import org.apache.knox.gateway.security.PrimaryPrincipal;
import org.apache.knox.gateway.security.SubjectUtils;

import de.thetaphi.forbiddenapis.SuppressForbidden;

public abstract class AbstractIdentityAssertionFilter extends
AbstractIdentityAssertionBase implements Filter {

Expand Down Expand Up @@ -89,7 +86,6 @@ public AbstractIdentityAssertionFilter() {
*/
public abstract String mapUserPrincipal(String principalName);

@SuppressForbidden
protected void continueChainAsPrincipal(HttpServletRequestWrapper request, ServletResponse response,
FilterChain chain, String mappedPrincipalName, String[] groups) throws IOException,
ServletException {
Expand All @@ -102,7 +98,7 @@ protected void continueChainAsPrincipal(HttpServletRequestWrapper request, Servl
boolean groupsMapped;

// look up the current Java Subject and assosciated group principals
Subject currentSubject = Subject.getSubject(AccessController.getContext());
Subject currentSubject = SubjectUtils.getCurrentSubject();
if (currentSubject == null) {
LOG.subjectNotAvailable();
throw new IllegalStateException("Required Subject Missing");
Expand Down
5 changes: 1 addition & 4 deletions ...org/apache/knox/gateway/identityasserter/common/filter/CommonIdentityAssertionFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,6 @@
import static org.apache.knox.gateway.util.AuthFilterUtils.PROXYGROUP_PREFIX;

import java.io.IOException;
import java.security.AccessController;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Collections;
Expand All @@ -45,7 +44,6 @@
import javax.servlet.http.HttpServletRequestWrapper;
import javax.servlet.http.HttpServletResponse;

import de.thetaphi.forbiddenapis.SuppressForbidden;
import org.apache.commons.lang3.ArrayUtils;
import org.apache.commons.lang3.StringUtils;
import org.apache.knox.gateway.IdentityAsserterMessages;
Expand Down Expand Up @@ -222,11 +220,10 @@ public void destroy() {
* to the identity to be asserted as appropriate and create the provider specific
* assertion token. Add the assertion token to the request.
*/
@SuppressForbidden
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
Subject subject = Subject.getSubject(AccessController.getContext());
Subject subject = SubjectUtils.getCurrentSubject();

if (subject == null) {
LOG.subjectNotAvailable();
Expand Down
3 changes: 1 addition & 2 deletions ...t/java/org/apache/knox/gateway/identityasserter/common/filter/VirtualGroupMapperTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,6 @@
import javax.servlet.ServletRequest;
import javax.servlet.http.HttpServletRequest;

@SuppressWarnings("PMD.NonStaticInitializer")
public class VirtualGroupMapperTest {
private Parser parser = new Parser();
private VirtualGroupMapper mapper;
Expand Down Expand Up @@ -159,4 +158,4 @@ private Set<String> virtualGroups(String user1, List<String> ldapGroups, Servlet
private static Set<String> setOf(String... strings) {
return new HashSet<>(Arrays.asList(strings));
}
}
}
1 change: 0 additions & 1 deletion ...che/knox/gateway/identityasserter/hadoop/groups/filter/HadoopGroupProviderFilterTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -142,7 +142,6 @@ public void testUnknownUser() throws ServletException {
* {@link LdapGroupsMapping} and in case of bad config we get empty groups
* (Hadoop way).
*/
@SuppressWarnings({ "unchecked", "rawtypes" })
@Test
public void badConfigTest() throws ServletException {

Expand Down
2 changes: 0 additions & 2 deletions .../main/java/org/apache/knox/gateway/filter/rewrite/impl/UrlRewriteRulesDescriptorImpl.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -91,14 +91,12 @@ public <T extends UrlRewriteFunctionDescriptor<?>> T getFunction( String name )
}

@Override
@SuppressWarnings("unchecked")
public <T extends UrlRewriteFunctionDescriptor<?>> T addFunction( String name ) {
T descriptor = newFunction( name );
addFunction( descriptor );
return descriptor;
}

@SuppressWarnings("unchecked")
protected <T extends UrlRewriteFunctionDescriptor<?>> T newFunction( String name ) {
return UrlRewriteFunctionDescriptorFactory.create( name );
}
Expand Down
1 change: 0 additions & 1 deletion ...rc/main/java/org/apache/knox/gateway/filter/rewrite/spi/UrlRewriteFlowDescriptorBase.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -105,7 +105,6 @@ public List<UrlRewriteStepDescriptor> steps() {
// return step;
// }

@SuppressWarnings( "unchecked" )
@Override
public <T extends UrlRewriteStepDescriptor<?>> T addStep( String type ) {
T step = UrlRewriteStepDescriptorFactory.create( type );
Expand Down
5 changes: 2 additions & 3 deletions ...src/test/java/org/apache/knox/gateway/hadoopauth/HadoopAuthDeploymentContributorTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -46,11 +46,10 @@

public class HadoopAuthDeploymentContributorTest {

@SuppressWarnings("rawtypes")
@Test
public void testServiceLoader() {
ServiceLoader loader = ServiceLoader.load( ProviderDeploymentContributor.class );
Iterator iterator = loader.iterator();
ServiceLoader<ProviderDeploymentContributor> loader = ServiceLoader.load( ProviderDeploymentContributor.class );
Iterator<ProviderDeploymentContributor> iterator = loader.iterator();
assertThat( "Service iterator empty.", iterator.hasNext() );
while( iterator.hasNext() ) {
Object object = iterator.next();
Expand Down
6 changes: 2 additions & 4 deletions ...oopauth/src/test/java/org/apache/knox/gateway/hadoopauth/filter/HadoopAuthFilterTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,13 +33,13 @@
import static org.junit.Assert.assertFalse;
import static org.junit.Assert.assertTrue;

import de.thetaphi.forbiddenapis.SuppressForbidden;
import org.apache.knox.gateway.GatewayFilter;
import org.apache.knox.gateway.config.GatewayConfig;
import org.apache.knox.gateway.context.ContextAttributes;
import org.apache.knox.gateway.provider.federation.jwt.filter.AbstractJWTFilter;
import org.apache.knox.gateway.provider.federation.jwt.filter.JWTFederationFilter;
import org.apache.knox.gateway.provider.federation.jwt.filter.SignatureVerificationCache;
import org.apache.knox.gateway.security.SubjectUtils;
import org.apache.knox.gateway.services.GatewayServices;
import org.apache.knox.gateway.services.security.AliasService;
import org.apache.knox.gateway.topology.Topology;
Expand All @@ -59,7 +59,6 @@
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.security.AccessController;
import java.util.Collections;
import java.util.HashMap;
import java.util.Map;
Expand Down Expand Up @@ -548,12 +547,11 @@ public static class DummyFilterChain implements FilterChain {
boolean doFilterCalled;
Subject subject;

@SuppressForbidden
@Override
public void doFilter(ServletRequest request, ServletResponse response)
throws IOException {
doFilterCalled = true;
subject = Subject.getSubject( AccessController.getContext() );
subject = SubjectUtils.getCurrentSubject();
}
}

Expand Down
2 changes: 1 addition & 1 deletion ...c/main/java/org/apache/knox/gateway/provider/federation/jwt/filter/AbstractJWTFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -375,11 +375,11 @@ public Subject createSubjectFromTokenIdentifier(final String tokenId) throws Unk
return null;
}

@SuppressWarnings("rawtypes")
protected Subject createSubjectFromTokenData(final String principal, final String expectedPrincipalClaimValue) {
String claimValue =
(expectedPrincipalClaimValue != null) ? expectedPrincipalClaimValue.toLowerCase(Locale.ROOT) : null;

@SuppressWarnings("rawtypes")
HashSet emptySet = new HashSet();
Set<Principal> principals = new HashSet<>();
Principal p = new PrimaryPrincipal(claimValue != null ? claimValue : principal);
Expand Down
6 changes: 2 additions & 4 deletions ...org/apache/knox/gateway/provider/federation/jwt/filter/JWTAccessTokenAssertionFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,6 @@
package org.apache.knox.gateway.provider.federation.jwt.filter;

import java.io.IOException;
import java.security.AccessController;
import java.text.ParseException;
import java.util.HashMap;

Expand All @@ -31,11 +30,11 @@
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import de.thetaphi.forbiddenapis.SuppressForbidden;
import org.apache.commons.lang3.StringUtils;
import org.apache.knox.gateway.filter.security.AbstractIdentityAssertionFilter;
import org.apache.knox.gateway.i18n.messages.MessagesFactory;
import org.apache.knox.gateway.provider.federation.jwt.JWTMessages;
import org.apache.knox.gateway.security.SubjectUtils;
import org.apache.knox.gateway.services.GatewayServices;
import org.apache.knox.gateway.services.ServiceType;
import org.apache.knox.gateway.services.registry.ServiceRegistry;
Expand Down Expand Up @@ -78,7 +77,6 @@ public void init( FilterConfig filterConfig ) throws ServletException {
: filterConfig.getInitParameter(JWTAccessTokenAssertionFilter.ISSUER);
}

@SuppressForbidden
@Override
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException, ServletException {
Expand Down Expand Up @@ -111,7 +109,7 @@ public void doFilter(ServletRequest request, ServletResponse response,
// the JWTFederationFilter - once we get here we can assume that it is authorized and we just need
// to assert the identity via an access token

Subject subject = Subject.getSubject(AccessController.getContext());
Subject subject = SubjectUtils.getCurrentSubject();
String principalName = getPrincipalName(subject);
principalName = mapper.mapUserPrincipal(principalName);

Expand Down
6 changes: 2 additions & 4 deletions ...va/org/apache/knox/gateway/provider/federation/jwt/filter/JWTAuthCodeAssertionFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,6 @@
package org.apache.knox.gateway.provider.federation.jwt.filter;

import java.io.IOException;
import java.security.AccessController;
import java.util.HashMap;

import javax.security.auth.Subject;
Expand All @@ -28,9 +27,9 @@
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;

import de.thetaphi.forbiddenapis.SuppressForbidden;
import org.apache.commons.lang3.StringUtils;
import org.apache.knox.gateway.filter.security.AbstractIdentityAssertionFilter;
import org.apache.knox.gateway.security.SubjectUtils;
import org.apache.knox.gateway.services.ServiceType;
import org.apache.knox.gateway.services.GatewayServices;
import org.apache.knox.gateway.services.registry.ServiceRegistry;
Expand Down Expand Up @@ -65,11 +64,10 @@ public void init( FilterConfig filterConfig ) throws ServletException {
: filterConfig.getInitParameter(JWTAccessTokenAssertionFilter.ISSUER);
}

@SuppressForbidden
@Override
public void doFilter(ServletRequest request, ServletResponse response,
FilterChain chain) throws IOException {
Subject subject = Subject.getSubject(AccessController.getContext());
Subject subject = SubjectUtils.getCurrentSubject();
String principalName = getPrincipalName(subject);
principalName = mapper.mapUserPrincipal(principalName);
JWT authCode;
Expand Down
3 changes: 1 addition & 2 deletions ...main/java/org/apache/knox/gateway/provider/federation/jwt/filter/JWTFederationFilter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -438,8 +438,7 @@ private void continueWithAnonymousSubject(final ServletRequest request,
* An exception indicating that cookies are present, but none of them contain a
* valid JWT.
*/
@SuppressWarnings("serial")
private class NoValidCookiesException extends Exception {
private static class NoValidCookiesException extends Exception {
NoValidCookiesException() {
super("None of the presented cookies are valid.");
}
Expand Down
6 changes: 2 additions & 4 deletions ...-jwt/src/test/java/org/apache/knox/gateway/provider/federation/AbstractJWTFilterTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,13 +26,13 @@
import com.nimbusds.jose.crypto.RSASSAVerifier;
import com.nimbusds.jwt.JWTClaimsSet;
import com.nimbusds.jwt.SignedJWT;
import de.thetaphi.forbiddenapis.SuppressForbidden;
import org.apache.commons.codec.binary.Base64;
import org.apache.knox.gateway.config.GatewayConfig;
import org.apache.knox.gateway.provider.federation.jwt.filter.AbstractJWTFilter;
import org.apache.knox.gateway.provider.federation.jwt.filter.SSOCookieFederationFilter;
import org.apache.knox.gateway.provider.federation.jwt.filter.SignatureVerificationCache;
import org.apache.knox.gateway.security.PrimaryPrincipal;
import org.apache.knox.gateway.security.SubjectUtils;
import org.apache.knox.gateway.services.security.token.JWTokenAttributes;
import org.apache.knox.gateway.services.security.token.JWTokenAuthority;
import org.apache.knox.gateway.services.security.token.TokenServiceException;
Expand Down Expand Up @@ -60,7 +60,6 @@
import java.net.InetAddress;
import java.net.URI;
import java.nio.charset.StandardCharsets;
import java.security.AccessController;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.Principal;
Expand Down Expand Up @@ -1477,12 +1476,11 @@ protected static class TestFilterChain implements FilterChain {
boolean doFilterCalled;
Subject subject;

@SuppressForbidden
@Override
public void doFilter(ServletRequest request, ServletResponse response) {
doFilterCalled = true;

subject = Subject.getSubject( AccessController.getContext() );
subject = SubjectUtils.getCurrentSubject();
}

public Subject getSubject() {
Expand Down
Loading
Loading