7 年之前 · 11984039c2
--- a/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserService.java
+++ b/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserService.java
@@ -33,6 +33,7 @@ import org.springframework.util.CollectionUtils;
 
				 import org.springframework.util.StringUtils;
			
 
				 
			
 
				 import java.util.Arrays;
			
 
				+import java.util.Collections;
			
 
				 import java.util.HashSet;
			
 
				 import java.util.Set;
			
 
				 
			
@@ -51,14 +52,14 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
				 	private static final String INVALID_USER_INFO_RESPONSE_ERROR_CODE = "invalid_user_info_response";
			
 
				 	private final Set<String> userInfoScopes = new HashSet<>(
			
 
				 		Arrays.asList(OidcScopes.PROFILE, OidcScopes.EMAIL, OidcScopes.ADDRESS, OidcScopes.PHONE));
			
 
				-	private final OAuth2UserService<OAuth2UserRequest, OAuth2User> defaultUserService = new DefaultOAuth2UserService();
			
 
				+	private OAuth2UserService<OAuth2UserRequest, OAuth2User> oauth2UserService = new DefaultOAuth2UserService();
			
 
				 
			
 
				 	@Override
			
 
				 	public OidcUser loadUser(OidcUserRequest userRequest) throws OAuth2AuthenticationException {
			
 
				 		Assert.notNull(userRequest, "userRequest cannot be null");
			
 
				 		OidcUserInfo userInfo = null;
			
 
				 		if (this.shouldRetrieveUserInfo(userRequest)) {
			
 
				-			OAuth2User oauth2User = this.defaultUserService.loadUser(userRequest);
			
 
				+			OAuth2User oauth2User = this.oauth2UserService.loadUser(userRequest);
			
 
				 			userInfo = new OidcUserInfo(oauth2User.getAttributes());
			
 
				 
			
 
				 			// http://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse
			
@@ -81,9 +82,8 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
				 			}
			
 
				 		}
			
 
				 
			
 
				-		GrantedAuthority authority = new OidcUserAuthority(userRequest.getIdToken(), userInfo);
			
 
				-		Set<GrantedAuthority> authorities = new HashSet<>();
			
 
				-		authorities.add(authority);
			
 
				+		Set<GrantedAuthority> authorities = Collections.singleton(
			
 
				+				new OidcUserAuthority(userRequest.getIdToken(), userInfo));
			
 
				 
			
 
				 		OidcUser user;
			
 
				 
			
@@ -121,4 +121,15 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
				 
			
 
				 		return false;
			
 
				 	}
			
 
				+
			
 
				+	/**
			
 
				+	 * Sets the {@link OAuth2UserService} used when requesting the user info resource.
			
 
				+	 *
			
 
				+	 * @since 5.1
			
 
				+	 * @param oauth2UserService the {@link OAuth2UserService} used when requesting the user info resource.
			
 
				+	 */
			
 
				+	public final void setOauth2UserService(OAuth2UserService<OAuth2UserRequest, OAuth2User> oauth2UserService) {
			
 
				+		Assert.notNull(oauth2UserService, "oauth2UserService cannot be null");
			
 
				+		this.oauth2UserService = oauth2UserService;
			
 
				+	}
			
 
				 }
			
--- a/oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserServiceTests.java
+++ b/oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserServiceTests.java
@@ -18,7 +18,6 @@ package org.springframework.security.oauth2.client.oidc.userinfo;
 
				 import okhttp3.mockwebserver.MockResponse;
			
 
				 import okhttp3.mockwebserver.MockWebServer;
			
 
				 import okhttp3.mockwebserver.RecordedRequest;
			
 
				-
			
 
				 import org.junit.Before;
			
 
				 import org.junit.Rule;
			
 
				 import org.junit.Test;
			
@@ -32,6 +31,7 @@ import org.springframework.http.HttpMethod;
 
				 import org.springframework.http.MediaType;
			
 
				 import org.springframework.security.authentication.AuthenticationServiceException;
			
 
				 import org.springframework.security.oauth2.client.registration.ClientRegistration;
			
 
				+import org.springframework.security.oauth2.client.userinfo.DefaultOAuth2UserService;
			
 
				 import org.springframework.security.oauth2.core.AuthenticationMethod;
			
 
				 import org.springframework.security.oauth2.core.AuthorizationGrantType;
			
 
				 import org.springframework.security.oauth2.core.OAuth2AccessToken;
			
@@ -51,6 +51,7 @@ import java.util.Set;
 
				 import java.util.concurrent.TimeUnit;
			
 
				 
			
 
				 import static org.assertj.core.api.Assertions.assertThat;
			
 
				+import static org.assertj.core.api.Assertions.assertThatThrownBy;
			
 
				 import static org.hamcrest.CoreMatchers.containsString;
			
 
				 import static org.mockito.Mockito.mock;
			
 
				 import static org.mockito.Mockito.when;
			
@@ -96,6 +97,14 @@ public class OidcUserServiceTests {
 
				 		idTokenClaims.put(IdTokenClaimNames.SUB, "subject1");
			
 
				 		when(this.idToken.getClaims()).thenReturn(idTokenClaims);
			
 
				 		when(this.idToken.getSubject()).thenReturn("subject1");
			
 
				+
			
 
				+		this.userService.setOauth2UserService(new DefaultOAuth2UserService());
			
 
				+	}
			
 
				+
			
 
				+	@Test
			
 
				+	public void setOauth2UserServiceWhenNullThenThrowIllegalArgumentException() {
			
 
				+		assertThatThrownBy(() -> this.userService.setOauth2UserService(null))
			
 
				+				.isInstanceOf(IllegalArgumentException.class);
			
 
				 	}
			
 
				 
			
 
				 	@Test