From d127a0aaa219e5000c0ac8f2e1c3f045d8129dd1 Mon Sep 17 00:00:00 2001
From: Sanjay Dalal <sanjay.dalal@berkeley.edu>
Date: Wed, 25 Nov 2009 22:55:43 +0000
Subject: [PATCH] CSPACE-259 CSpaceDBLoginModule now can obtain datasource.
 Requires #971. test: authentication service tested by enabling security on
 the service side

---
 .../client/AuthenticationServiceTest.java     | 706 +++++++++---------
 services/authentication/service/build.xml     |   1 -
 .../authentication/CSpaceDBLoginModule.java   | 185 ++---
 .../resources/config/jboss-login-config.xml   |   2 +-
 .../main/resources/db/mysql/test_authn.sql    |   3 +-
 5 files changed, 439 insertions(+), 458 deletions(-)

diff --git a/services/authentication/client/src/test/java/org/collectionspace/services/authentication/client/AuthenticationServiceTest.java b/services/authentication/client/src/test/java/org/collectionspace/services/authentication/client/AuthenticationServiceTest.java
index 460b6af62..2ca1edb11 100644
--- a/services/authentication/client/src/test/java/org/collectionspace/services/authentication/client/AuthenticationServiceTest.java
+++ b/services/authentication/client/src/test/java/org/collectionspace/services/authentication/client/AuthenticationServiceTest.java
@@ -46,416 +46,390 @@ import org.slf4j.LoggerFactory;
  */
 public class AuthenticationServiceTest extends AbstractServiceTest {
 
-	/** The known resource id. */
-	private String knownResourceId = null;
-	
-	/** The logger. */
-	final Logger logger = LoggerFactory
-			.getLogger(AuthenticationServiceTest.class);
+    /** The known resource id. */
+    private String knownResourceId = null;
+    /** The logger. */
+    final Logger logger = LoggerFactory.getLogger(AuthenticationServiceTest.class);
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#getServicePathComponent()
-	 */
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#getServicePathComponent()
+     */
     @Override
-	protected String getServicePathComponent() {
-		// no need to return anything but null since no auth resources are
-		// accessed
-		return null;
-	}
+    protected String getServicePathComponent() {
+        // no need to return anything but null since no auth resources are
+        // accessed
+        return null;
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#create()
-	 */
-	@Test(dataProvider="testName", dataProviderClass=AbstractServiceTest.class)
-	@Override
-	public void create(String testName) {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#create()
+     */
+    @Test(dataProvider = "testName", dataProviderClass = AbstractServiceTest.class)
+    @Override
+    public void create(String testName) {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
 
-		if (!collectionObjectClient.isServerSecure()) {
-			logger.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
-				"test");
-		collectionObjectClient.setProperty(
-				CollectionSpaceClient.PASSWORD_PROPERTY, "test");
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("create: caught " + e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
+                "test");
+        collectionObjectClient.setProperty(
+                CollectionSpaceClient.PASSWORD_PROPERTY, "test");
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("create: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("create: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.CREATED
-				.getStatusCode(), "expected "
-				+ Response.Status.CREATED.getStatusCode());
+        Assert.assertEquals(res.getStatus(), Response.Status.CREATED.getStatusCode(), "expected " + Response.Status.CREATED.getStatusCode());
 
-		// Store the ID returned from this create operation for additional tests
-		// below.
-		knownResourceId = extractId(res);
-	}
+        // Store the ID returned from this create operation for additional tests
+        // below.
+        knownResourceId = extractId(res);
+    }
 
-	/**
-	 * Creates the collection object instance without user.
-	 */
-	@Test(dependsOnMethods = { "create" })
-	public void createWithoutUser() {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
-		if (!collectionObjectClient.isServerSecure()) {
-			logger
-					.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient
-				.removeProperty(CollectionSpaceClient.USER_PROPERTY);
-		collectionObjectClient.setProperty(
-				CollectionSpaceClient.PASSWORD_PROPERTY, "test");
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("createWithoutUser: caught " + e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+    /**
+     * Creates the collection object instance without user.
+     */
+    @Test(dependsOnMethods = {"create"})
+    public void createWithoutUser() {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.removeProperty(CollectionSpaceClient.USER_PROPERTY);
+        collectionObjectClient.setProperty(
+                CollectionSpaceClient.PASSWORD_PROPERTY, "test");
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("createWithoutUser: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("createWithoutUser: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED
-				.getStatusCode(), "expected "
-				+ Response.Status.UNAUTHORIZED.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED.getStatusCode(), "expected " + Response.Status.UNAUTHORIZED.getStatusCode());
+    }
 
-	/**
-	 * Creates the collection object instance without password.
-	 */
-	@Test(dependsOnMethods = { "createWithoutUser" })
-	public void createWithoutPassword() {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
-		if (!collectionObjectClient.isServerSecure()) {
-			logger
-					.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
-				"test");
-		collectionObjectClient
-				.removeProperty(CollectionSpaceClient.PASSWORD_PROPERTY);
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("createWithoutPassword: caught " + e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+    /**
+     * Creates the collection object instance without password.
+     */
+    @Test(dependsOnMethods = {"createWithoutUser"})
+    public void createWithoutPassword() {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
+                "test");
+        collectionObjectClient.removeProperty(CollectionSpaceClient.PASSWORD_PROPERTY);
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("createWithoutPassword: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("createWithoutPassword: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED
-				.getStatusCode(), "expected "
-				+ Response.Status.UNAUTHORIZED.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED.getStatusCode(), "expected " + Response.Status.UNAUTHORIZED.getStatusCode());
+    }
 
-	/**
-	 * Creates the collection object instance with incorrect password.
-	 */
-	@Test(dependsOnMethods = { "createWithoutPassword" })
-	public void createWithIncorrectPassword() {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
-		if (!collectionObjectClient.isServerSecure()) {
-			logger
-					.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
-				"test");
-		collectionObjectClient.setProperty(
-				CollectionSpaceClient.PASSWORD_PROPERTY, "bar");
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("createWithIncorrectPassword: caught "
-					+ e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+    /**
+     * Creates the collection object instance with incorrect password.
+     */
+    @Test(dependsOnMethods = {"createWithoutPassword"})
+    public void createWithIncorrectPassword() {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
+                "test");
+        collectionObjectClient.setProperty(
+                CollectionSpaceClient.PASSWORD_PROPERTY, "bar");
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("createWithIncorrectPassword: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("createWithIncorrectPassword: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED
-				.getStatusCode(), "expected "
-				+ Response.Status.UNAUTHORIZED.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED.getStatusCode(), "expected " + Response.Status.UNAUTHORIZED.getStatusCode());
+    }
 
-	/**
-	 * Creates the collection object instance without user password.
-	 */
-	@Test(dependsOnMethods = { "createWithoutPassword" })
-	public void createWithoutUserPassword() {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
-		if (!collectionObjectClient.isServerSecure()) {
-			logger.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient
-				.removeProperty(CollectionSpaceClient.USER_PROPERTY);
-		collectionObjectClient
-				.removeProperty(CollectionSpaceClient.PASSWORD_PROPERTY);
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("createWithoutUserPassword: caught " + e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+    /**
+     * Creates the collection object instance without user password.
+     */
+    @Test(dependsOnMethods = {"createWithoutPassword"})
+    public void createWithoutUserPassword() {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.removeProperty(CollectionSpaceClient.USER_PROPERTY);
+        collectionObjectClient.removeProperty(CollectionSpaceClient.PASSWORD_PROPERTY);
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("createWithoutUserPassword: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("createWithoutUserPassword: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.FORBIDDEN
-				.getStatusCode(), "expected "
-				+ Response.Status.FORBIDDEN.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(), Response.Status.FORBIDDEN.getStatusCode(), "expected " + Response.Status.FORBIDDEN.getStatusCode());
+    }
 
-	/**
-	 * Creates the collection object instance with incorrect user password.
-	 */
-	@Test(dependsOnMethods = { "createWithoutPassword" })
-	public void createWithIncorrectUserPassword() {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		String identifier = this.createIdentifier();
-		MultipartOutput multipart = createCollectionObjectInstance(
-				collectionObjectClient.getCommonPartName(), identifier);
-		if (!collectionObjectClient.isServerSecure()) {
-			logger.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
-				"foo");
-		collectionObjectClient.setProperty(
-				CollectionSpaceClient.PASSWORD_PROPERTY, "bar");
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("createWithIncorrectUserPassword: caught "
-					+ e.getMessage());
-			return;
-		}
-		ClientResponse<Response> res = collectionObjectClient.create(multipart);
-		if(logger.isDebugEnabled()){
+    /**
+     * Creates the collection object instance with incorrect user password.
+     */
+    @Test(dependsOnMethods = {"createWithoutPassword"})
+    public void createWithIncorrectUserPassword() {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        String identifier = this.createIdentifier();
+        MultipartOutput multipart = createCollectionObjectInstance(
+                collectionObjectClient.getCommonPartName(), identifier);
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
+                "foo");
+        collectionObjectClient.setProperty(
+                CollectionSpaceClient.PASSWORD_PROPERTY, "bar");
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("createWithIncorrectUserPassword: caught " + e.getMessage());
+            return;
+        }
+        ClientResponse<Response> res = collectionObjectClient.create(multipart);
+        if (logger.isDebugEnabled()) {
             logger.debug("createWithIncorrectUserPassword: status = " +
-                res.getStatus());
+                    res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED
-				.getStatusCode(), "expected "
-				+ Response.Status.UNAUTHORIZED.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(), Response.Status.UNAUTHORIZED.getStatusCode(), "expected " + Response.Status.UNAUTHORIZED.getStatusCode());
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#delete()
-	 */
-	@Override
-	@Test(dataProvider="testName", dataProviderClass=AbstractServiceTest.class,
-        dependsOnMethods = { "createWithIncorrectUserPassword" })
-	public void delete(String testName) {
-		CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
-		collectionObjectClient = new CollectionObjectClient();
-		if (!collectionObjectClient.isServerSecure()) {
-			logger.warn("set -Dcspace.server.secure=true to run security tests");
-			return;
-		}
-		collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
-				"true");
-		collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
-				"test");
-		collectionObjectClient.setProperty(
-				CollectionSpaceClient.PASSWORD_PROPERTY, "test");
-		try {
-			collectionObjectClient.setupHttpClient();
-			collectionObjectClient.setProxy();
-		} catch (Exception e) {
-			logger.error("deleteCollectionObject: caught " + e.getMessage());
-			return;
-		}
-		if(logger.isDebugEnabled()){
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#delete()
+     */
+    @Override
+    @Test(dataProvider = "testName", dataProviderClass = AbstractServiceTest.class,
+    dependsOnMethods = {"createWithIncorrectUserPassword"})
+    public void delete(String testName) {
+        CollectionObjectClient collectionObjectClient = new CollectionObjectClient();
+        collectionObjectClient = new CollectionObjectClient();
+        if (!collectionObjectClient.isServerSecure()) {
+            logger.warn("set -Dcspace.server.secure=true to run security tests");
+            return;
+        }
+        collectionObjectClient.setProperty(CollectionSpaceClient.AUTH_PROPERTY,
+                "true");
+        collectionObjectClient.setProperty(CollectionSpaceClient.USER_PROPERTY,
+                "test");
+        collectionObjectClient.setProperty(
+                CollectionSpaceClient.PASSWORD_PROPERTY, "test");
+        try {
+            collectionObjectClient.setupHttpClient();
+            collectionObjectClient.setProxy();
+        } catch (Exception e) {
+            logger.error("deleteCollectionObject: caught " + e.getMessage());
+            return;
+        }
+        if (logger.isDebugEnabled()) {
             logger.debug("Calling deleteCollectionObject:" + knownResourceId);
         }
-		ClientResponse<Response> res = collectionObjectClient
-				.delete(knownResourceId);
-		if(logger.isDebugEnabled()){
+        ClientResponse<Response> res = collectionObjectClient.delete(knownResourceId);
+        if (logger.isDebugEnabled()) {
             logger.debug("deleteCollectionObject: status = " + res.getStatus());
         }
-		Assert.assertEquals(res.getStatus(),
-				Response.Status.OK.getStatusCode(), "expected "
-						+ Response.Status.OK.getStatusCode());
-	}
+        Assert.assertEquals(res.getStatus(),
+                Response.Status.OK.getStatusCode(), "expected " + Response.Status.OK.getStatusCode());
+    }
 
-	// ---------------------------------------------------------------
-	// Utility methods used by tests above
-	// ---------------------------------------------------------------
-	/**
-	 * Creates the collection object instance.
-	 * 
-	 * @param commonPartName the common part name
-	 * @param identifier the identifier
-	 * 
-	 * @return the multipart output
-	 */
-	private MultipartOutput createCollectionObjectInstance(
-			String commonPartName, String identifier) {
-		return createCollectionObjectInstance(commonPartName, "objectNumber-"
-				+ identifier, "objectName-" + identifier);
-	}
+    // ---------------------------------------------------------------
+    // Utility methods used by tests above
+    // ---------------------------------------------------------------
+    /**
+     * Creates the collection object instance.
+     *
+     * @param commonPartName the common part name
+     * @param identifier the identifier
+     *
+     * @return the multipart output
+     */
+    private MultipartOutput createCollectionObjectInstance(
+            String commonPartName, String identifier) {
+        return createCollectionObjectInstance(commonPartName, "objectNumber-" + identifier, "objectName-" + identifier);
+    }
 
-	/**
-	 * Creates the collection object instance.
-	 * 
-	 * @param commonPartName the common part name
-	 * @param objectNumber the object number
-	 * @param objectName the object name
-	 * 
-	 * @return the multipart output
-	 */
-	private MultipartOutput createCollectionObjectInstance(
-			String commonPartName, String objectNumber, String objectName) {
-		CollectionobjectsCommon collectionObject = new CollectionobjectsCommon();
+    /**
+     * Creates the collection object instance.
+     *
+     * @param commonPartName the common part name
+     * @param objectNumber the object number
+     * @param objectName the object name
+     *
+     * @return the multipart output
+     */
+    private MultipartOutput createCollectionObjectInstance(
+            String commonPartName, String objectNumber, String objectName) {
+        CollectionobjectsCommon collectionObject = new CollectionobjectsCommon();
 
-		collectionObject.setObjectNumber(objectNumber);
-		collectionObject.setObjectName(objectName);
-		MultipartOutput multipart = new MultipartOutput();
-		OutputPart commonPart = multipart.addPart(collectionObject,
-				MediaType.APPLICATION_XML_TYPE);
-		commonPart.getHeaders().add("label", commonPartName);
+        collectionObject.setObjectNumber(objectNumber);
+        collectionObject.setObjectName(objectName);
+        MultipartOutput multipart = new MultipartOutput();
+        OutputPart commonPart = multipart.addPart(collectionObject,
+                MediaType.APPLICATION_XML_TYPE);
+        commonPart.getHeaders().add("label", commonPartName);
 
-		if(logger.isDebugEnabled()){
+        if (logger.isDebugEnabled()) {
             logger.debug("to be created, collectionobject common ",
-                collectionObject, CollectionobjectsCommon.class);
+                    collectionObject, CollectionobjectsCommon.class);
         }
-		return multipart;
-	}
+        return multipart;
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#createList()
-	 */
-	@Override
-	public void createList(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#createList()
+     */
+    @Override
+    public void createList(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithEmptyEntityBody()
-	 */
-	@Override
-	public void createWithEmptyEntityBody(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithEmptyEntityBody()
+     */
+    @Override
+    public void createWithEmptyEntityBody(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithMalformedXml()
-	 */
-	@Override
-	public void createWithMalformedXml(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithMalformedXml()
+     */
+    @Override
+    public void createWithMalformedXml(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithWrongXmlSchema()
-	 */
-	@Override
-	public void createWithWrongXmlSchema(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#createWithWrongXmlSchema()
+     */
+    @Override
+    public void createWithWrongXmlSchema(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#read()
-	 */
-	@Override
-	public void read(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#read()
+     */
+    @Override
+    public void read(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#readNonExistent()
-	 */
-	@Override
-	public void readNonExistent(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#readNonExistent()
+     */
+    @Override
+    public void readNonExistent(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#readList()
-	 */
-	@Override
-	public void readList(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#readList()
+     */
+    @Override
+    public void readList(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#update()
-	 */
-	@Override
-	public void update(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#update()
+     */
+    @Override
+    public void update(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithEmptyEntityBody()
-	 */
-	@Override
-	public void updateWithEmptyEntityBody(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithEmptyEntityBody()
+     */
+    @Override
+    public void updateWithEmptyEntityBody(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithMalformedXml()
-	 */
-	@Override
-	public void updateWithMalformedXml(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithMalformedXml()
+     */
+    @Override
+    public void updateWithMalformedXml(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithWrongXmlSchema()
-	 */
-	@Override
-	public void updateWithWrongXmlSchema(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#updateWithWrongXmlSchema()
+     */
+    @Override
+    public void updateWithWrongXmlSchema(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#updateNonExistent()
-	 */
-	@Override
-	public void updateNonExistent(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#updateNonExistent()
+     */
+    @Override
+    public void updateNonExistent(String testName) throws Exception {
+    }
 
-	/* (non-Javadoc)
-	 * @see org.collectionspace.services.client.test.AbstractServiceTest#deleteNonExistent()
-	 */
-	@Override
-	public void deleteNonExistent(String testName) throws Exception {
-	}
+    /* (non-Javadoc)
+     * @see org.collectionspace.services.client.test.AbstractServiceTest#deleteNonExistent()
+     */
+    @Override
+    public void deleteNonExistent(String testName) throws Exception {
+    }
 }
diff --git a/services/authentication/service/build.xml b/services/authentication/service/build.xml
index 374b8c71f..5bbd99dd8 100644
--- a/services/authentication/service/build.xml
+++ b/services/authentication/service/build.xml
@@ -138,7 +138,6 @@
             <fileset dir="${src}/main/resources/"/>
         </copy>
         <echo message="Add authentication-policy to ${jboss.server.cspace}/conf/login-config.xml"/>
-        <echo message="Make sure cspace-ds.xml exists in ${jboss.server.cspace}/deploy"/>
     </target>
 
     <target name="undeploy"
diff --git a/services/authentication/service/src/main/java/org/collectionspace/authentication/CSpaceDBLoginModule.java b/services/authentication/service/src/main/java/org/collectionspace/authentication/CSpaceDBLoginModule.java
index 404236030..1d2a7d3dd 100644
--- a/services/authentication/service/src/main/java/org/collectionspace/authentication/CSpaceDBLoginModule.java
+++ b/services/authentication/service/src/main/java/org/collectionspace/authentication/CSpaceDBLoginModule.java
@@ -1,5 +1,25 @@
 /**
- * Copyright 2009 University of California at Berkeley
+ *  This document is a part of the source code and related artifacts
+ *  for CollectionSpace, an open source collections management system
+ *  for museums and related institutions:
+
+ *  http://www.collectionspace.org
+ *  http://wiki.collectionspace.org
+
+ *  Copyright 2009 University of California at Berkeley
+
+ *  Licensed under the Educational Community License (ECL), Version 2.0.
+ *  You may not use this file except in compliance with this License.
+
+ *  You may obtain a copy of the ECL 2.0 License at
+
+ *  https://source.collectionspace.org/collection-space/LICENSE.txt
+
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
  */
 package org.collectionspace.authentication;
 
@@ -7,63 +27,57 @@ import java.lang.reflect.Constructor;
 import java.security.Principal;
 import java.security.acl.Group;
 import java.sql.Connection;
-import java.sql.DriverManager;
 import java.sql.PreparedStatement;
 import java.sql.ResultSet;
 import java.sql.SQLException;
 
 import java.util.HashMap;
 import javax.naming.InitialContext;
+import javax.naming.NamingException;
 import javax.security.auth.login.FailedLoginException;
 import javax.security.auth.login.LoginException;
+import javax.sql.DataSource;
 import org.jboss.security.SimpleGroup;
 import org.jboss.security.SimplePrincipal;
 import org.jboss.security.auth.spi.DatabaseServerLoginModule;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
+//import org.slf4j.Logger;
+//import org.slf4j.LoggerFactory;
 
 public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
 
     //disabled due to classloading problem
-    //private Logger logger = LoggerFactory.getLogger(CSpaceDBLoginModule.class);
-    private boolean log = true;
+//    private Logger logger = LoggerFactory.getLogger(CSpaceDBLoginModule.class);
+    private boolean log = true; //logger.isDebugEnabled();
 
     private void log(String str) {
         System.out.println(str);
     }
 
     protected String getUsersPassword() throws LoginException {
-        
+
         String username = getUsername();
         String password = null;
         Connection conn = null;
         PreparedStatement ps = null;
         ResultSet rs = null;
         InitialContext ctx = null;
-        try{
-//            Properties env = new Properties();
-//            env.setProperty(Context.INITIAL_CONTEXT_FACTORY, "org.jnp.interfaces.NamingContextFactory");
-//            env.setProperty(Context.PROVIDER_URL, "jnp://localhost:1199/");
-//            env.setProperty(Context.URL_PKG_PREFIXES, "org.jboss.naming:org.jnp.interfaces");
-//            ctx = new InitialContext(env);
-////            ctx = new InitialContext();
-//            DataSource ds = (DataSource) ctx.lookup(dsJndiName);
-//            if(ds == null){
-//                throw new IllegalArgumentException("datasource not found: " + dsJndiName);
-//            }
-//            conn = ds.getConnection();
-            Class.forName("com.mysql.jdbc.Driver");
-            conn = DriverManager.getConnection("jdbc:mysql://localhost:3306/cspace", "test", "test");
+        try {
 
+            ctx = new InitialContext();
+            DataSource ds = (DataSource) ctx.lookup(dsJndiName);
+            if (ds == null) {
+                throw new IllegalArgumentException("datasource not found: " + dsJndiName);
+            }
+            conn = ds.getConnection();
             // Get the password
-            if(log){
-                log("Excuting query: " + principalsQuery + ", with username: " + username);
+            if (log) {
+                log("Executing query: " + principalsQuery + ", with username: " + username);
             }
             ps = conn.prepareStatement(principalsQuery);
             ps.setString(1, username);
             rs = ps.executeQuery();
-            if(rs.next() == false){
-                if(log){
+            if (rs.next() == false) {
+                if (log) {
                     log("Query returned no matches from db");
                 }
                 throw new FailedLoginException("No matching username found");
@@ -71,44 +85,44 @@ public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
 
             password = rs.getString(1);
             password = convertRawPassword(password);
-            if(log){
+            if (log) {
                 log("Obtained user password");
             }
-//        }catch(NamingException ex){
-//            LoginException le = new LoginException("Error looking up DataSource from: " + dsJndiName);
-//            le.initCause(ex);
-//            throw le;
-        }catch(SQLException ex){
+        } catch (NamingException ex) {
+            LoginException le = new LoginException("Error looking up DataSource from: " + dsJndiName);
+            le.initCause(ex);
+            throw le;
+        } catch (SQLException ex) {
             LoginException le = new LoginException("Query failed");
             le.initCause(ex);
             throw le;
-        }catch(Exception ex){
+        } catch (Exception ex) {
             LoginException le = new LoginException("Unknown Exception");
             le.initCause(ex);
             throw le;
-        }finally{
-            if(rs != null){
-                try{
+        } finally {
+            if (rs != null) {
+                try {
                     rs.close();
-                }catch(SQLException e){
+                } catch (SQLException e) {
                 }
             }
-            if(ps != null){
-                try{
+            if (ps != null) {
+                try {
                     ps.close();
-                }catch(SQLException e){
+                } catch (SQLException e) {
                 }
             }
-            if(conn != null){
-                try{
+            if (conn != null) {
+                try {
                     conn.close();
-                }catch(SQLException ex){
+                } catch (SQLException ex) {
                 }
             }
-            if(ctx != null){
-                try{
+            if (ctx != null) {
+                try {
                     ctx.close();
-                }catch(Exception e){
+                } catch (Exception e) {
                 }
             }
         }
@@ -122,7 +136,7 @@ public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
      */
     protected Group[] getRoleSets() throws LoginException {
         String username = getUsername();
-        if(log){
+        if (log) {
             log("getRoleSets using rolesQuery: " + rolesQuery + ", username: " + username);
         }
 
@@ -131,26 +145,24 @@ public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
         PreparedStatement ps = null;
         ResultSet rs = null;
 
-        try{
-//         InitialContext ctx = new InitialContext();
-//         DataSource ds = (DataSource) ctx.lookup(dsJndiName);
-//         conn = ds.getConnection();
-            conn = DriverManager.getConnection("jdbc:mysql://localhost:3306/cspace", "test", "test");
+        try {
+            InitialContext ctx = new InitialContext();
+            DataSource ds = (DataSource) ctx.lookup(dsJndiName);
+            conn = ds.getConnection();
             // Get the user role names
-            if(log){
-                log("Excuting query: " + rolesQuery + ", with username: " + username);
+            if (log) {
+                log("Executing query: " + rolesQuery + ", with username: " + username);
             }
 
-            ps =
-                    conn.prepareStatement(rolesQuery);
-            try{
+            ps = conn.prepareStatement(rolesQuery);
+            try {
                 ps.setString(1, username);
-            }catch(ArrayIndexOutOfBoundsException ignore){
+            } catch (ArrayIndexOutOfBoundsException ignore) {
                 // The query may not have any parameters so just try it
             }
             rs = ps.executeQuery();
-            if(rs.next() == false){
-                if(log){
+            if (rs.next() == false) {
+                if (log) {
                     log("No roles found");
                 }
 //                if(aslm.getUnauthenticatedIdentity() == null){
@@ -164,59 +176,57 @@ public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
                 return roleSets;
             }
 
-            do{
+            do {
                 String name = rs.getString(1);
                 String groupName = rs.getString(2);
-                if(groupName == null || groupName.length() == 0){
+                if (groupName == null || groupName.length() == 0) {
                     groupName = "Roles";
                 }
 
                 Group group = (Group) setsMap.get(groupName);
-                if(group == null){
+                if (group == null) {
                     group = new SimpleGroup(groupName);
                     setsMap.put(groupName, group);
                 }
 
-                try{
+                try {
 //                    Principal p = aslm.createIdentity(name);
                     Principal p = createIdentity(name);
-                    if(log){
+                    if (log) {
                         log("Assign user to role " + name);
                     }
 
                     group.addMember(p);
-                }catch(Exception e){
+                } catch (Exception e) {
                     log("Failed to create principal: " + name + " " + e.toString());
                 }
 
-            }while(rs.next());
-        } //      catch(NamingException ex)
-        //      {
-        //         LoginException le = new LoginException("Error looking up DataSource from: "+dsJndiName);
-        //         le.initCause(ex);
-        //         throw le;
-        //      }
-        catch(SQLException ex){
+            } while (rs.next());
+        } catch (NamingException ex) {
+            LoginException le = new LoginException("Error looking up DataSource from: " + dsJndiName);
+            le.initCause(ex);
+            throw le;
+        } catch (SQLException ex) {
             LoginException le = new LoginException("Query failed");
             le.initCause(ex);
             throw le;
-        }finally{
-            if(rs != null){
-                try{
+        } finally {
+            if (rs != null) {
+                try {
                     rs.close();
-                }catch(SQLException e){
+                } catch (SQLException e) {
                 }
             }
-            if(ps != null){
-                try{
+            if (ps != null) {
+                try {
                     ps.close();
-                }catch(SQLException e){
+                } catch (SQLException e) {
                 }
             }
-            if(conn != null){
-                try{
+            if (conn != null) {
+                try {
                     conn.close();
-                }catch(Exception ex){
+                } catch (Exception ex) {
                 }
             }
 
@@ -239,18 +249,17 @@ public class CSpaceDBLoginModule extends DatabaseServerLoginModule {
     protected Principal createIdentity(String username)
             throws Exception {
         Principal p = null;
-        if(principalClassName == null){
+        if (principalClassName == null) {
             p = new SimplePrincipal(username);
-        }else{
+        } else {
             ClassLoader loader = Thread.currentThread().getContextClassLoader();
             Class clazz = loader.loadClass(principalClassName);
             Class[] ctorSig = {String.class};
             Constructor ctor = clazz.getConstructor(ctorSig);
             Object[] ctorArgs = {username};
-            p =
-                    (Principal) ctor.newInstance(ctorArgs);
+            p = (Principal) ctor.newInstance(ctorArgs);
         }
 
         return p;
     }
-}
\ No newline at end of file
+}
diff --git a/services/authentication/service/src/main/resources/config/jboss-login-config.xml b/services/authentication/service/src/main/resources/config/jboss-login-config.xml
index 945f643d6..4efd48078 100644
--- a/services/authentication/service/src/main/resources/config/jboss-login-config.xml
+++ b/services/authentication/service/src/main/resources/config/jboss-login-config.xml
@@ -20,7 +20,7 @@ copy before the "other" application-policy
         <authentication>
             <login-module code="org.collectionspace.authentication.CSpaceDBLoginModule"
                              flag="required">
-                <module-option name="dsJndiName">java:/CspaceDS</module-option>
+                <module-option name="dsJndiName">CspaceDS</module-option>
                 <module-option name="hashAlgorithm">SHA-256</module-option>
                 <module-option name="ignorePasswordCase">false</module-option>
                 <module-option name="principalsQuery">
diff --git a/services/authentication/service/src/main/resources/db/mysql/test_authn.sql b/services/authentication/service/src/main/resources/db/mysql/test_authn.sql
index 9ee6e3fd6..ccdf60982 100644
--- a/services/authentication/service/src/main/resources/db/mysql/test_authn.sql
+++ b/services/authentication/service/src/main/resources/db/mysql/test_authn.sql
@@ -5,8 +5,7 @@
 --
 use cspace;
 
-insert into users (username, passwd) values ('test', 'test');
-insert into users (username, passwd) values ('admin', 'admin');
+INSERT INTO `users` (`username`,`passwd`) VALUES ('test','n4bQgYhMfWWaL+qgxVrQFaO/TxsrC4Is0V1sFbDwCgg=');
 
 insert into roles (rolename, rolegroup) values ('collections_manager', 'collections');
 insert into roles (rolename, rolegroup) values ('collections_registrar', 'collections');
-- 
2.47.3