Inicio Explorar Axuda
Rexistro Iniciar sesión
github
/
spring-security
réplica de https://github.com/spring-projects/spring-security
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

SEC-2450: WebSecurityConfigurerAdapter have default Order of 100

Rob Winch %!s(int64=11) %!d(string=hai) anos
pai
7838e3eeca
achega
053c890a69
Modificáronse 2 ficheiros con 19 adicións e 0 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 2 0
      config/src/main/java/org/springframework/security/config/annotation/web/configuration/WebSecurityConfigurerAdapter.java
  2. 17 0
      config/src/test/groovy/org/springframework/security/config/annotation/web/WebSecurityConfigurerAdapterTests.groovy

+ 2 - 0
config/src/main/java/org/springframework/security/config/annotation/web/configuration/WebSecurityConfigurerAdapter.java
Ver ficheiro 

@@ -24,6 +24,7 @@ import org.apache.commons.logging.LogFactory;
 
 import org.springframework.beans.factory.NoSuchBeanDefinitionException;
 
 import org.springframework.beans.factory.annotation.Autowired;
 
 import org.springframework.context.ApplicationContext;
 
+import org.springframework.core.annotation.Order;
 
 import org.springframework.security.authentication.AuthenticationManager;
 
 import org.springframework.security.authentication.AuthenticationTrustResolver;
 
 import org.springframework.security.authentication.AuthenticationTrustResolverImpl;
 
@@ -53,6 +54,7 @@ import org.springframework.web.accept.HeaderContentNegotiationStrategy;
 
  *
 
  * @author Rob Winch
 
  */
 
+@Order(100)
 
 public abstract class WebSecurityConfigurerAdapter implements WebSecurityConfigurer<WebSecurity> {
 
     private final Log logger = LogFactory.getLog(WebSecurityConfigurerAdapter.class);

+ 17 - 0
config/src/test/groovy/org/springframework/security/config/annotation/web/WebSecurityConfigurerAdapterTests.groovy
Ver ficheiro 

@@ -27,6 +27,9 @@ import org.springframework.context.ApplicationContext
 
 import org.springframework.context.ApplicationListener
 
 import org.springframework.context.annotation.Bean
 
 import org.springframework.context.annotation.Configuration
 
+import org.springframework.core.Ordered
 
+import org.springframework.core.annotation.AnnotationAwareOrderComparator
 
+import org.springframework.core.annotation.Order
 
 import org.springframework.security.authentication.AuthenticationManager
 
 import org.springframework.security.authentication.AuthenticationProvider
 
 import org.springframework.security.authentication.AuthenticationTrustResolver
 
@@ -283,4 +286,18 @@ class WebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 
             return TR
 
         }
 
     }
 
+
 
+    def "WebSecurityConfigurerAdapter has Ordered between 0 and lowest priority"() {
 
+        when:
 
+            def lowestConfig = new LowestPriorityWebSecurityConfig()
 
+            def defaultConfig = new DefaultOrderWebSecurityConfig()
 
+            def compare = new AnnotationAwareOrderComparator()
 
+        then: "the default ordering is between 0 and lowest priority (Boot adapters)"
 
+            compare.compare(lowestConfig, defaultConfig) > 0
 
+    }
 
+
 
+    class DefaultOrderWebSecurityConfig extends WebSecurityConfigurerAdapter {}
 
+
 
+    @Order(Ordered.LOWEST_PRECEDENCE)
 
+    class LowestPriorityWebSecurityConfig extends WebSecurityConfigurerAdapter {}
 
 }