fix: multiline service access policy handling

Author: ktor

README.adoc

@@ -1,6 +1,6 @@
 = Liferay Portal DB setup core
 :liferay-version: 7.3.6
-:current-db-setup-core-version: 7.3.604
+:current-db-setup-core-version: 7.3.605
 :TOC:
 
 image:https://maven-badges.herokuapp.com/maven-central/com.ableneo.liferay/com.ableneo.liferay.db.setup.core/badge.svg?color=blue[Maven Central,link=https://search.maven.org/search?q=g:com.ableneo.liferay%20AND%20a:com.ableneo.liferay.db.setup.core]
@@ -290,6 +290,10 @@ They are probably not perfect, please let me know if anything feels wrong or inc
 
 == Changelog
 
+=== Version 7.3.605
+==== Features & bug fixes
+* fixed bug when handling multiline link:https://learn.liferay.com/dxp/latest/en/installation-and-upgrades/securing-liferay/securing-web-services/setting-service-access-policies.html[service access policy]
+
 === Version 7.3.604
 ==== Features & bug fixes
 * added an ability to create/update/delete link:https://learn.liferay.com/dxp/latest/en/installation-and-upgrades/securing-liferay/securing-web-services/setting-service-access-policies.html[Service Access Policies]

src/main/java/com/ableneo/liferay/portal/setup/core/SetupServiceAccessPolicies.java

@@ -10,15 +10,19 @@
 import com.liferay.portal.security.service.access.policy.exception.NoSuchEntryException;
 import com.liferay.portal.security.service.access.policy.model.SAPEntry;
 import com.liferay.portal.security.service.access.policy.service.SAPEntryLocalServiceUtil;
+import java.io.BufferedReader;
+import java.io.StringReader;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Locale;
 import java.util.Map;
+import java.util.regex.Pattern;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 public class SetupServiceAccessPolicies {
 
+    protected static final Pattern ALL_WHITE_SPACE_CHARACTERS = Pattern.compile("\\W");
     private static final Logger LOG = LoggerFactory.getLogger(SetupCategorization.class);
 
     public static void setupServiceAccessPolicies(ServiceAccessPolicies serviceAccessPolicies) {
@@ -40,7 +44,11 @@ public static void setupServiceAccessPolicies(ServiceAccessPolicies serviceAcces
             } else {
                 sapEntry.setEnabled(serviceAccessPolicyConfiguration.isEnabled());
                 sapEntry.setDefaultSAPEntry(serviceAccessPolicyConfiguration.isUnauthenticated());
-                sapEntry.setAllowedServiceSignatures(serviceAccessPolicyConfiguration.getAllowedServiceSignatures());
+
+                final String allowedServiceSignatures = cleanUpAllowedServiceSignatures(
+                    serviceAccessPolicyConfiguration.getAllowedServiceSignatures()
+                );
+                sapEntry.setAllowedServiceSignatures(allowedServiceSignatures);
                 if (!titleMap.isEmpty()) {
                     sapEntry.setTitleMap(titleMap);
                 }
@@ -54,11 +62,29 @@ public static void setupServiceAccessPolicies(ServiceAccessPolicies serviceAcces
             if (sapEntry != null) {
                 deleteSAPEntry(sapEntry);
             } else {
-                LOG.warn("Tried to delete SAP Entry {} in company {} but the entry haven't been found.", deleteServiceAccessPolicy.getName(), runInCompanyId);
+                LOG.warn(
+                    "Tried to delete SAP Entry {} in company {} but the entry haven't been found.",
+                    deleteServiceAccessPolicy.getName(),
+                    runInCompanyId
+                );
             }
         });
     }
 
+    public static String cleanUpAllowedServiceSignatures(String allowedServiceSignatures) {
+        if (
+            allowedServiceSignatures == null ||
+            ALL_WHITE_SPACE_CHARACTERS.matcher(allowedServiceSignatures).replaceAll("").isEmpty()
+        ) {
+            return "";
+        }
+        final String normalizedMultilineConfiguration = new BufferedReader(new StringReader(allowedServiceSignatures))
+            .lines()
+            .filter(line -> !line.trim().isEmpty())
+            .reduce("", (result, element) -> result.concat(element.trim() + "\n"));
+        return normalizedMultilineConfiguration.substring(0, normalizedMultilineConfiguration.length() - 1);
+    }
+
     private static void deleteSAPEntry(SAPEntry sapEntry) {
         try {
             SAPEntryLocalServiceUtil.deleteSAPEntry(sapEntry);

src/test/java/com/ableneo/liferay/portal/setup/ValidSetupTestMocks.java

@@ -1,5 +1,10 @@
 package com.ableneo.liferay.portal.setup;
 
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyLong;
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.Mockito.when;
+
 import com.ableneo.liferay.portal.setup.core.SetupPermissions;
 import com.ableneo.liferay.portal.setup.core.SetupServiceAccessPolicies;
 import com.liferay.portal.kernel.exception.PortalException;
@@ -11,6 +16,8 @@
 import com.liferay.portal.kernel.service.RoleLocalServiceUtil;
 import com.liferay.portal.kernel.service.UserLocalServiceUtil;
 import com.liferay.portal.kernel.util.LocaleUtil;
+import java.io.File;
+import java.net.URISyntaxException;
 import org.junit.jupiter.api.AfterAll;
 import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.BeforeEach;
@@ -20,15 +27,6 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
-import java.io.File;
-import java.net.URISyntaxException;
-
-import static org.junit.jupiter.api.Assertions.assertTrue;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.anyLong;
-import static org.mockito.ArgumentMatchers.anyString;
-import static org.mockito.Mockito.when;
-
 public abstract class ValidSetupTestMocks {
 
     public static final Logger LOGGER = LoggerFactory.getLogger(BasicLiferaySetupTest.class);
@@ -38,23 +36,18 @@ public abstract class ValidSetupTestMocks {
     public static MockedStatic<UserLocalServiceUtil> userLocalServiceUtilMockedStatic;
     public static MockedStatic<LocaleUtil> localeUtilMockedStatic;
     public static MockedStatic<SetupServiceAccessPolicies> setupServiceAccessPoliciesMockedStatic;
-
+    public static MockedStatic<SetupConfigurationThreadLocal> setupConfigurationThreadLocalMockedStatic;
     @Mock
     public User liferayUser;
-
-    @Mock
+    @Mock(lenient = true)
     public Group liferayGroup;
-
     @Mock
     public PermissionChecker permissionChecker;
-
     @Mock
     public PermissionCheckerFactory permissionCheckerFactory;
-
     public File validConfiguration;
     public File invalidConfiguration;
     public File validConfigurationTwoCompanies;
-    public static MockedStatic<SetupConfigurationThreadLocal> setupConfigurationThreadLocalMockedStatic;
 
     @BeforeAll
     static void beforeAll() {
@@ -65,7 +58,12 @@ static void beforeAll() {
         userLocalServiceUtilMockedStatic = Mockito.mockStatic(UserLocalServiceUtil.class);
         localeUtilMockedStatic = Mockito.mockStatic(LocaleUtil.class);
         setupServiceAccessPoliciesMockedStatic = Mockito.mockStatic(SetupServiceAccessPolicies.class);
-        setupConfigurationThreadLocalMockedStatic.when(() -> SetupServiceAccessPolicies.setupServiceAccessPolicies(any())).thenCallRealMethod();
+        setupServiceAccessPoliciesMockedStatic
+            .when(() -> SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures(anyString()))
+            .thenCallRealMethod();
+        setupConfigurationThreadLocalMockedStatic
+            .when(() -> SetupServiceAccessPolicies.setupServiceAccessPolicies(any()))
+            .thenCallRealMethod();
     }
 
     @AfterAll
@@ -84,7 +82,8 @@ void setup() {
         try {
             validConfiguration = new File(MarshallUtilTest.class.getResource("/valid-configuration.xml").toURI());
             invalidConfiguration = new File(MarshallUtilTest.class.getResource("/invalid-configuration.xml").toURI());
-            validConfigurationTwoCompanies = new File(MarshallUtilTest.class.getResource("/valid-configuration-two-companies.xml").toURI());
+            validConfigurationTwoCompanies =
+                new File(MarshallUtilTest.class.getResource("/valid-configuration-two-companies.xml").toURI());
         } catch (URISyntaxException e) {
             LOGGER.error("Failed to parse configuration file", e);
         }
@@ -93,9 +92,8 @@ void setup() {
             when(UserLocalServiceUtil.getUserByEmailAddress(anyLong(), anyString())).thenReturn(liferayUser);
             when(GroupLocalServiceUtil.getGroup(anyLong(), anyString())).thenReturn(liferayGroup);
         } catch (PortalException e) {
-            LOGGER.error("",e);
+            LOGGER.error("", e);
         }
         when(liferayGroup.getGroupId()).thenReturn(20l);
     }
-
 }

src/test/java/com/ableneo/liferay/portal/setup/core/SetupServiceAccessPoliciesTest.java

@@ -1,27 +1,60 @@
 package com.ableneo.liferay.portal.setup.core;
 
-import com.ableneo.liferay.portal.setup.ValidSetupTestMocks;
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertNull;
+import static org.junit.jupiter.api.Assertions.assertTrue;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.Mockito.times;
+
 import com.ableneo.liferay.portal.setup.LiferaySetup;
+import com.ableneo.liferay.portal.setup.ValidSetupTestMocks;
 import com.liferay.portal.kernel.exception.PortalException;
+import java.io.FileNotFoundException;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.extension.ExtendWith;
 import org.mockito.junit.jupiter.MockitoExtension;
 
-import java.io.FileNotFoundException;
-
-import static org.junit.jupiter.api.Assertions.*;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.Mockito.times;
-
-
 @ExtendWith(MockitoExtension.class)
 class SetupServiceAccessPoliciesTest extends ValidSetupTestMocks {
 
     @Test
     void testServiceAccessPolicyIsProcessed() throws FileNotFoundException, PortalException {
         assertTrue(LiferaySetup.setup(validConfiguration));
-        setupServiceAccessPoliciesMockedStatic.verify(() -> SetupServiceAccessPolicies.addSAPEntry(any(), any()), times(1));
-        setupServiceAccessPoliciesMockedStatic.clearInvocations();
+        setupServiceAccessPoliciesMockedStatic.verify(
+            () -> SetupServiceAccessPolicies.addSAPEntry(any(), any()),
+            times(1)
+        );
         setupConfigurationThreadLocalMockedStatic.clearInvocations();
+        setupServiceAccessPoliciesMockedStatic.clearInvocations();
+    }
+
+    @Test
+    void cleanUpAllowedServiceSignatures_nullConfiguration() {
+        assertNull(SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures(null));
+        setupServiceAccessPoliciesMockedStatic.clearInvocations();
+    }
+
+    @Test
+    void cleanUpAllowedServiceSignatures_emptyConfiguration() {
+        assertEquals("", SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures(""));
+        assertEquals("", SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures("   \n \n"));
+        setupServiceAccessPoliciesMockedStatic.clearInvocations();
+    }
+
+    @Test
+    void cleanUpAllowedServiceSignatures_multiLineConfiguration() {
+        assertEquals(
+            "testClass\ntestClass2",
+            SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures("   testClass\n      testClass2")
+        );
+        assertEquals(
+            "testClass\ntestClass2",
+            SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures("testClass\n      testClass2\n")
+        );
+        assertEquals(
+            "testClass\ntestClass2",
+            SetupServiceAccessPolicies.cleanUpAllowedServiceSignatures("testClass\n      testClass2\n\n")
+        );
+        setupServiceAccessPoliciesMockedStatic.clearInvocations();
     }
 }