Add page for 403 error.

php-coder · php-coder · commit 839b33198d5e · 2015-06-02T20:52:05.000+03:00
Fix GH #87
diff --git a/src/main/config/checkstyle-suppressions.xml b/src/main/config/checkstyle-suppressions.xml
@@ -8,7 +8,7 @@
 	<suppress checks="LineLength" files="AbstractPage.java" lines="44,45" />
 	<suppress checks="LineLength" files="AbstractPageWithForm.java" lines="27,28,33" />
 	<suppress checks="LineLength" files="Form.java" lines="31,32,37" />
-	<suppress checks="LineLength" files="Url.java" lines="73" />
+	<suppress checks="LineLength" files="Url.java" lines="74" />
 	<suppress checks="LineLength" files="ErrorController.java" lines="73" />
 	<suppress checks="LineLength" files="SecurityConfig.java" lines="36,37,40,41" />
 	<suppress checks="LineLength" files="JdbcSeriesDaoImpl.java" lines="125" />
diff --git a/src/main/java/ru/mystamps/web/Url.java b/src/main/java/ru/mystamps/web/Url.java
@@ -63,6 +63,7 @@ public final class Url {
 	
 	// see also error-page definitions at src/main/webapp/WEB-INF/web.xml
 	public static final String UNAUTHORIZED_PAGE     = "/error/401";
+	public static final String FORBIDDEN_PAGE        = "/error/403";
 	public static final String NOT_FOUND_PAGE        = "/error/404";
 	public static final String INTERNAL_ERROR_PAGE   = "/error/500";
 	
diff --git a/src/main/java/ru/mystamps/web/config/MvcConfig.java b/src/main/java/ru/mystamps/web/config/MvcConfig.java
@@ -72,6 +72,7 @@ public void configureDefaultServletHandling(DefaultServletHandlerConfigurer conf
 	public void addViewControllers(ViewControllerRegistry registry) {
 		registry.addViewController(Url.AUTHENTICATION_PAGE);
 		registry.addViewController(Url.UNAUTHORIZED_PAGE);
+		registry.addViewController(Url.FORBIDDEN_PAGE);
 	}
 	
 	@Override
diff --git a/src/main/resources/ru/mystamps/i18n/Messages.properties b/src/main/resources/ru/mystamps/i18n/Messages.properties
@@ -58,6 +58,10 @@ t_register = Register
 t_401_title = 401: unauthorized
 t_401_description = Authorization required{0}to access page
 
+# error/403.html
+t_403_title = 403: forbidden
+t_403_description = Forbidden
+
 # error/404.html
 t_404_title = 404: page not found
 t_404_description = Requested page{0}not found
diff --git a/src/main/resources/ru/mystamps/i18n/Messages_ru.properties b/src/main/resources/ru/mystamps/i18n/Messages_ru.properties
@@ -58,6 +58,10 @@ t_register = Зарегистрироваться
 t_401_title = 401: не авторизован
 t_401_description = Необходима авторизация{0}для доступа к странице
 
+# error/403.html
+t_403_title = 403: доступ запрещён
+t_403_description = Доступ запрещён
+
 # error/404.html
 t_404_title = 404: страница не найдена
 t_404_description = Запрашиваемая страница{0}не найдена
diff --git a/src/main/webapp/WEB-INF/views/error/403.html b/src/main/webapp/WEB-INF/views/error/403.html
@@ -0,0 +1,73 @@
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml"
+	  xmlns:th="http://www.thymeleaf.org"
+	  xmlns:sec="http://www.thymeleaf.org/thymeleaf-extras-springsecurity3">
+	<head>
+		<meta charset="utf-8" />
+		<meta name="viewport" content="width=device-width, initial-scale=1.0" />
+		<meta name="robots" content="noindex" />
+		<title th:text="#{t_403_title}">403: forbidden</title>
+		<link rel="shortcut icon" type="image/x-icon" href="../../../favicon.ico" th:href="${FAVICON_ICO}" />
+		<link rel="stylesheet" href="http://yandex.st/bootstrap/2.3.1/css/bootstrap.min.css" th:href="${BOOTSTRAP_CSS}" />
+		<link rel="stylesheet" href="http://yandex.st/bootstrap/2.3.1/css/bootstrap-responsive.min.css" th:href="${BOOTSTRAP_RESPONSIVE_CSS}" />
+		<link rel="stylesheet" href="../../static/styles/main.css" th:href="${MAIN_CSS}" />
+	</head>
+	<body lang="en" th:lang="${#locale.language == 'ru' ? 'ru' : 'en'}">
+		<div class="row-fluid" id="header">
+			<div id="logo" class="span10">
+				<a href="../site/index.html" th:href="'/'" th:text="#{t_my_stamps}">My stamps</a>
+			</div>
+			
+			<div id="user_bar" class="span2">
+				<ul class="unstyled">
+					<!--/*/
+					<li sec:authorize="isAuthenticated()">
+						<i class="icon-user"></i>
+						<a sec:authentication="principal.user.name"
+							href="../collection/info.html"
+							title="Open my collection"
+							th:title="#{t_open_my_collection}"
+							th:href="@{${INFO_COLLECTION_PAGE}(id=${#authentication.principal.user.collection.id},slug=${#authentication.principal.user.collection.slug})}">
+							John Doe
+						</a>
+					</li>
+					/*/-->
+					<li sec:authorize="isAnonymous()">
+						<a href="../account/auth.html" th:href="@{${AUTHENTICATION_PAGE}}" th:text="#{t_enter}">Sign in</a>
+					</li>
+					<!--/*/
+					<li sec:authorize="isAuthenticated()">
+						<form id="LogoutForm" method="get" action="../site/index.html" class="no-margin" th:method="post" th:action="@{${LOGOUT_PAGE}}">
+							<i class="icon-share"></i>&nbsp;<input type="submit" value="Sign out" class="btn btn-link no-padding" th:value="#{t_logout}" />
+						</form>
+					</li>
+					/*/-->
+					<li sec:authorize="isAnonymous()">
+						<a href="../account/register.html" th:href="@{${REGISTRATION_PAGE}}" th:text="#{t_register}">Register</a>
+					</li>
+				</ul>
+			</div>
+		</div>
+		
+		<div class="row-fluid text-center">
+			<div id="content" class="span12">
+				<h1 id="error-code">
+					403
+				</h1>
+				<h4 id="error-msg" th:text="#{t_403_description}">
+					Forbidden
+				</h4>
+			</div>
+		</div>
+		
+		<div class="row-fluid">
+			<footer class="text-right">
+				<i class="icon-envelope"></i>
+				<a href="mailto:slava.semushin@gmail.com" title="Write e-mail" th:href="|mailto:#{t_site_author_email}|" th:title="#{t_write_email}" th:text="#{t_site_author_name}">Slava Semushin</a>, 2009-2015
+			</footer>
+		</div>
+		
+		<!-- Placed at the end of the document so the pages load faster -->
+		<script src="http://yandex.st/bootstrap/2.3.1/js/bootstrap.min.js" th:src="${BOOTSTRAP_JS}"></script>
+	</body>
+</html>
diff --git a/src/main/webapp/WEB-INF/web.xml b/src/main/webapp/WEB-INF/web.xml
@@ -74,6 +74,11 @@
 		<location>/error/401</location>
 	</error-page>
 	
+	<error-page>
+		<error-code>403</error-code>
+		<location>/error/403</location>
+	</error-page>
+	
 	<error-page>
 		<error-code>404</error-code>
 		<location>/error/404</location>
diff --git a/src/test/config/testng.xml b/src/test/config/testng.xml
@@ -139,6 +139,24 @@
 		</classes>
 	</test>
 	
+	<test name="When anonymous user at forbidden page">
+		<classes>
+			<class name="ru.mystamps.web.tests.cases.WhenAnonymousUserAtForbiddenPage" />
+		</classes>
+	</test>
+	
+	<test name="When anonymous user open Togglz console">
+		<classes>
+			<class name="ru.mystamps.web.tests.cases.WhenAnonymousUserOpenTogglzConsole" />
+		</classes>
+	</test>
+	
+	<test name="When user open Togglz console">
+		<classes>
+			<class name="ru.mystamps.web.tests.cases.WhenUserOpenTogglzConsole" />
+		</classes>
+	</test>
+	
 	<test name="When anonymous user register account">
 		<classes>
 			<class name="ru.mystamps.web.tests.cases.WhenAnonymousUserRegisterAccount" />
diff --git a/src/test/java/ru/mystamps/web/tests/cases/WhenAnonymousUserAtForbiddenPage.java b/src/test/java/ru/mystamps/web/tests/cases/WhenAnonymousUserAtForbiddenPage.java
@@ -0,0 +1,62 @@
+/*
+ * Copyright (C) 2009-2015 Slava Semushin <slava.semushin@gmail.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package ru.mystamps.web.tests.cases;
+
+import java.net.HttpURLConnection;
+
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+import static org.fest.assertions.api.Assertions.assertThat;
+
+import ru.mystamps.web.tests.page.ForbiddenErrorPage;
+
+import ru.mystamps.web.Url;
+
+import static ru.mystamps.web.tests.TranslationUtils.tr;
+
+public class WhenAnonymousUserAtForbiddenPage
+	extends WhenAnyUserAtAnyPage<ForbiddenErrorPage> {
+	
+	public WhenAnonymousUserAtForbiddenPage() {
+		super(ForbiddenErrorPage.class);
+		hasTitleWithoutStandardPrefix(tr("t_403_title"));
+		hasResponseServerCode(HttpURLConnection.HTTP_FORBIDDEN);
+	}
+	
+	@BeforeClass
+	public void setUp() {
+		page.open(Url.FORBIDDEN_PAGE);
+	}
+	
+	@Test(groups = "std")
+	public void shouldHaveStandardStructure() {
+		checkStandardStructure();
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorMessage() {
+		assertThat(page.getErrorMessage()).isEqualTo(tr("t_403_description"));
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorCode() {
+		assertThat(page.getErrorCode()).isEqualTo("403");
+	}
+	
+}
diff --git a/src/test/java/ru/mystamps/web/tests/cases/WhenAnonymousUserOpenTogglzConsole.java b/src/test/java/ru/mystamps/web/tests/cases/WhenAnonymousUserOpenTogglzConsole.java
@@ -0,0 +1,59 @@
+/*
+ * Copyright (C) 2009-2015 Slava Semushin <slava.semushin@gmail.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package ru.mystamps.web.tests.cases;
+
+import java.net.HttpURLConnection;
+
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+import ru.mystamps.web.tests.page.ForbiddenErrorPage;
+
+import static ru.mystamps.web.tests.TranslationUtils.tr;
+
+import static org.fest.assertions.api.Assertions.assertThat;
+
+public class WhenAnonymousUserOpenTogglzConsole extends WhenAnyUserAtAnyPage<ForbiddenErrorPage> {
+	
+	public WhenAnonymousUserOpenTogglzConsole() {
+		super(ForbiddenErrorPage.class);
+		hasTitleWithoutStandardPrefix(tr("t_403_title"));
+		hasResponseServerCode(HttpURLConnection.HTTP_FORBIDDEN);
+	}
+	
+	@BeforeClass
+	public void setUp() {
+		page.open("/togglz");
+	}
+	
+	@Test(groups = "std")
+	public void shouldHaveStandardStructure() {
+		checkStandardStructure();
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorMessage() {
+		assertThat(page.getErrorMessage()).isEqualTo(tr("t_403_description"));
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorCode() {
+		assertThat(page.getErrorCode()).isEqualTo("403");
+	}
+	
+}
diff --git a/src/test/java/ru/mystamps/web/tests/cases/WhenUserOpenTogglzConsole.java b/src/test/java/ru/mystamps/web/tests/cases/WhenUserOpenTogglzConsole.java
@@ -0,0 +1,79 @@
+/*
+ * Copyright (C) 2009-2015 Slava Semushin <slava.semushin@gmail.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package ru.mystamps.web.tests.cases;
+
+import java.net.HttpURLConnection;
+
+import org.testng.annotations.AfterClass;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+import org.springframework.beans.factory.annotation.Value;
+
+import ru.mystamps.web.tests.page.ForbiddenErrorPage;
+
+import static ru.mystamps.web.tests.TranslationUtils.tr;
+
+import static org.fest.assertions.api.Assertions.assertThat;
+
+public class WhenUserOpenTogglzConsole extends WhenAnyUserAtAnyPage<ForbiddenErrorPage> {
+	
+	@Value("${valid_user_login}")
+	private String validUserLogin;
+	
+	@Value("${valid_user_password}")
+	private String validUserPassword;
+	
+	public WhenUserOpenTogglzConsole() {
+		super(ForbiddenErrorPage.class);
+		hasTitleWithoutStandardPrefix(tr("t_403_title"));
+		hasResponseServerCode(HttpURLConnection.HTTP_FORBIDDEN);
+	}
+	
+	@BeforeClass
+	public void setUp() {
+		page.login(validUserLogin, validUserPassword);
+		page.open("/togglz");
+	}
+	
+	@AfterClass(alwaysRun = true)
+	public void tearDown() {
+		page.logout();
+	}
+	
+	@Test(groups = "std")
+	public void shouldHaveStandardStructure() {
+		checkStandardStructure();
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorMessage() {
+		assertThat(page.getErrorMessage()).isEqualTo(tr("t_403_description"));
+	}
+	
+	@Test(groups = "misc", dependsOnGroups = "std")
+	public void shouldExistsErrorCode() {
+		assertThat(page.getErrorCode()).isEqualTo("403");
+	}
+	
+	@Override
+	protected void shouldHaveUserBar() {
+		// Ignore this check because when user authenticated there is no links for login/register.
+	}
+	
+}
diff --git a/src/test/java/ru/mystamps/web/tests/page/ForbiddenErrorPage.java b/src/test/java/ru/mystamps/web/tests/page/ForbiddenErrorPage.java
@@ -0,0 +1,36 @@
+/*
+ * Copyright (C) 2009-2015 Slava Semushin <slava.semushin@gmail.com>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package ru.mystamps.web.tests.page;
+
+import org.openqa.selenium.WebDriver;
+
+public class ForbiddenErrorPage extends AbstractPage {
+	
+	public ForbiddenErrorPage(WebDriver driver) {
+		super(driver, "/togglz");
+	}
+	
+	public String getErrorMessage() {
+		return getTextOfElementById("error-msg");
+	}
+	
+	public String getErrorCode() {
+		return getTextOfElementById("error-code");
+	}
+	
+}

Original file line number	Diff line number	Diff line change
`@@ -72,6 +72,7 @@ public void configureDefaultServletHandling(DefaultServletHandlerConfigurer conf`
`72`	`72`	`public void addViewControllers(ViewControllerRegistry registry) {`
`73`	`73`	`registry.addViewController(Url.AUTHENTICATION_PAGE);`
`74`	`74`	`registry.addViewController(Url.UNAUTHORIZED_PAGE);`
	`75`	`+ registry.addViewController(Url.FORBIDDEN_PAGE);`
`75`	`76`	`}`
`76`	`77`
`77`	`78`	`@Override`