Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

DefaultReactiveOAuth2AuthorizedClientManager requires non-null serverWebExchange

Issue gh-7544
Joe Grandja 5 years ago
parent
b7cb93f671
commit
07b8aa0b1f
2 changed files with 21 additions and 31 deletions
Split View Show Diff Stats
  1. 3 2
      oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/DefaultReactiveOAuth2AuthorizedClientManager.java
  2. 18 29
      oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/web/DefaultReactiveOAuth2AuthorizedClientManagerTests.java

+ 3 - 2
oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/DefaultReactiveOAuth2AuthorizedClientManager.java
View File 

@@ -99,15 +99,16 @@ public final class DefaultReactiveOAuth2AuthorizedClientManager implements React
 
 	private Mono<OAuth2AuthorizedClient> loadAuthorizedClient(String clientRegistrationId, Authentication principal, ServerWebExchange serverWebExchange) {
 
 		return Mono.justOrEmpty(serverWebExchange)
 
 				.switchIfEmpty(Mono.defer(() -> currentServerWebExchange()))
 
+				.switchIfEmpty(Mono.error(() -> new IllegalArgumentException("serverWebExchange cannot be null")))
 
 				.flatMap(exchange -> this.authorizedClientRepository.loadAuthorizedClient(clientRegistrationId, principal, exchange));
 
 	}
 
 
 	private Mono<OAuth2AuthorizedClient> saveAuthorizedClient(OAuth2AuthorizedClient authorizedClient, Authentication principal, ServerWebExchange serverWebExchange) {
 
 		return Mono.justOrEmpty(serverWebExchange)
 
 				.switchIfEmpty(Mono.defer(() -> currentServerWebExchange()))
 
+				.switchIfEmpty(Mono.error(() -> new IllegalArgumentException("serverWebExchange cannot be null")))
 
 				.flatMap(exchange -> this.authorizedClientRepository.saveAuthorizedClient(authorizedClient, principal, exchange)
 
-						.thenReturn(authorizedClient))
 
-				.defaultIfEmpty(authorizedClient);
 
+						.thenReturn(authorizedClient));
 
 	}
 
 
 	private static Mono<ServerWebExchange> currentServerWebExchange() {

+ 18 - 29
oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/web/DefaultReactiveOAuth2AuthorizedClientManagerTests.java
View File 

@@ -65,6 +65,7 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 	private MockServerWebExchange serverWebExchange;
 
 	private Context context;
 
 	private ArgumentCaptor<OAuth2AuthorizationContext> authorizationContextCaptor;
 
+	private PublisherProbe<OAuth2AuthorizedClient> loadAuthorizedClientProbe;
 
 	private PublisherProbe<Void> saveAuthorizedClientProbe;
 
 
 	@SuppressWarnings("unchecked")
 
@@ -74,8 +75,9 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 		when(this.clientRegistrationRepository.findByRegistrationId(
 
 				anyString())).thenReturn(Mono.empty());
 
 		this.authorizedClientRepository = mock(ServerOAuth2AuthorizedClientRepository.class);
 
+		this.loadAuthorizedClientProbe = PublisherProbe.empty();
 
 		when(this.authorizedClientRepository.loadAuthorizedClient(
 
-				anyString(), any(Authentication.class), any(ServerWebExchange.class))).thenReturn(Mono.empty());
 
+				anyString(), any(Authentication.class), any(ServerWebExchange.class))).thenReturn(this.loadAuthorizedClientProbe.mono());
 
 		this.saveAuthorizedClientProbe = PublisherProbe.empty();
 
 		when(this.authorizedClientRepository.saveAuthorizedClient(
 
 				any(OAuth2AuthorizedClient.class), any(Authentication.class), any(ServerWebExchange.class))).thenReturn(this.saveAuthorizedClientProbe.mono());
 
@@ -131,6 +133,16 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 				.hasMessage("authorizeRequest cannot be null");
 
 	}
 
 
+	@Test
 
+	public void authorizeWhenExchangeIsNullThenThrowIllegalArgumentException() {
 
+		OAuth2AuthorizeRequest authorizeRequest = OAuth2AuthorizeRequest.withClientRegistrationId(this.clientRegistration.getRegistrationId())
 
+				.principal(this.principal)
 
+				.build();
 
+		assertThatThrownBy(() -> this.authorizedClientManager.authorize(authorizeRequest).block())
 
+				.isInstanceOf(IllegalArgumentException.class)
 
+				.hasMessage("serverWebExchange cannot be null");
 
+	}
 
+
 
 	@Test
 
 	public void authorizeWhenClientRegistrationNotFoundThenThrowIllegalArgumentException() {
 
 		OAuth2AuthorizeRequest authorizeRequest = OAuth2AuthorizeRequest.withClientRegistrationId("invalid-registration-id")
 
@@ -162,7 +174,8 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 		assertThat(authorizationContext.getPrincipal()).isEqualTo(this.principal);
 
 
 		assertThat(authorizedClient).isNull();
 
-		verify(this.authorizedClientRepository, never()).saveAuthorizedClient(any(), any(), any());
 
+		this.loadAuthorizedClientProbe.assertWasSubscribed();
 
+		this.saveAuthorizedClientProbe.assertWasNotSubscribed();
 
 	}
 
 
 	@SuppressWarnings("unchecked")
 
@@ -193,38 +206,14 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 		this.saveAuthorizedClientProbe.assertWasSubscribed();
 
 	}
 
 
-	@Test
 
-	public void authorizeWhenNotAuthorizedAndSupportedProviderAndExchangeUnavailableThenAuthorizedButNotSaved() {
 
-		when(this.clientRegistrationRepository.findByRegistrationId(
 
-				eq(this.clientRegistration.getRegistrationId()))).thenReturn(Mono.just(this.clientRegistration));
 
-
 
-		when(this.authorizedClientProvider.authorize(
 
-				any(OAuth2AuthorizationContext.class))).thenReturn(Mono.just(this.authorizedClient));
 
-
 
-		OAuth2AuthorizeRequest authorizeRequest = OAuth2AuthorizeRequest.withClientRegistrationId(this.clientRegistration.getRegistrationId())
 
-				.principal(this.principal)
 
-				.build();
 
-		OAuth2AuthorizedClient authorizedClient = this.authorizedClientManager.authorize(authorizeRequest).block();
 
-
 
-		verify(this.authorizedClientProvider).authorize(this.authorizationContextCaptor.capture());
 
-		verify(this.contextAttributesMapper).apply(eq(authorizeRequest));
 
-
 
-		OAuth2AuthorizationContext authorizationContext = this.authorizationContextCaptor.getValue();
 
-		assertThat(authorizationContext.getClientRegistration()).isEqualTo(this.clientRegistration);
 
-		assertThat(authorizationContext.getAuthorizedClient()).isNull();
 
-		assertThat(authorizationContext.getPrincipal()).isEqualTo(this.principal);
 
-
 
-		assertThat(authorizedClient).isSameAs(this.authorizedClient);
 
-		verify(this.authorizedClientRepository, never()).saveAuthorizedClient(any(), any(), any());
 
-	}
 
-
 
 	@SuppressWarnings("unchecked")
 
 	@Test
 
 	public void authorizeWhenAuthorizedAndSupportedProviderThenReauthorized() {
 
 		when(this.clientRegistrationRepository.findByRegistrationId(
 
 				eq(this.clientRegistration.getRegistrationId()))).thenReturn(Mono.just(this.clientRegistration));
 
+		this.loadAuthorizedClientProbe = PublisherProbe.of(Mono.just(this.authorizedClient));
 
 		when(this.authorizedClientRepository.loadAuthorizedClient(
 
-				eq(this.clientRegistration.getRegistrationId()), eq(this.principal), eq(this.serverWebExchange))).thenReturn(Mono.just(this.authorizedClient));
 
+				eq(this.clientRegistration.getRegistrationId()), eq(this.principal), eq(this.serverWebExchange))).thenReturn(this.loadAuthorizedClientProbe.mono());
 
 
 		OAuth2AuthorizedClient reauthorizedClient = new OAuth2AuthorizedClient(
 
 				this.clientRegistration, this.principal.getName(),
 
@@ -313,7 +302,7 @@ public class DefaultReactiveOAuth2AuthorizedClientManagerTests {
 
 		assertThat(authorizationContext.getPrincipal()).isEqualTo(this.principal);
 
 
 		assertThat(authorizedClient).isSameAs(this.authorizedClient);
 
-		verify(this.authorizedClientRepository, never()).saveAuthorizedClient(any(), any(), any());
 
+		this.saveAuthorizedClientProbe.assertWasNotSubscribed();
 
 	}
 
 
 	@SuppressWarnings("unchecked")