Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
github
/
spring-security
mirror de https://github.com/spring-projects/spring-security
2
0
Fork 0
Ficheiros Problemas 0 Wiki
Ver Fonte

Add OidcUserService.setOauth2UserService()

Fixes gh-5604
Joe Grandja há 7 anos atrás
pai
952743269d
commit
11984039c2
2 ficheiros alterados com 26 adições e 6 exclusões
Visão Dividida Mostrar Estatísticas Diff
  1. 16 5
      oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserService.java
  2. 10 1
      oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserServiceTests.java

+ 16 - 5
oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserService.java
Ver Ficheiro 

@@ -33,6 +33,7 @@ import org.springframework.util.CollectionUtils;
 
 import org.springframework.util.StringUtils;
 
 
 import java.util.Arrays;
 
+import java.util.Collections;
 
 import java.util.HashSet;
 
 import java.util.Set;
 
 
@@ -51,14 +52,14 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
 	private static final String INVALID_USER_INFO_RESPONSE_ERROR_CODE = "invalid_user_info_response";
 
 	private final Set<String> userInfoScopes = new HashSet<>(
 
 		Arrays.asList(OidcScopes.PROFILE, OidcScopes.EMAIL, OidcScopes.ADDRESS, OidcScopes.PHONE));
 
-	private final OAuth2UserService<OAuth2UserRequest, OAuth2User> defaultUserService = new DefaultOAuth2UserService();
 
+	private OAuth2UserService<OAuth2UserRequest, OAuth2User> oauth2UserService = new DefaultOAuth2UserService();
 
 
 	@Override
 
 	public OidcUser loadUser(OidcUserRequest userRequest) throws OAuth2AuthenticationException {
 
 		Assert.notNull(userRequest, "userRequest cannot be null");
 
 		OidcUserInfo userInfo = null;
 
 		if (this.shouldRetrieveUserInfo(userRequest)) {
 
-			OAuth2User oauth2User = this.defaultUserService.loadUser(userRequest);
 
+			OAuth2User oauth2User = this.oauth2UserService.loadUser(userRequest);
 
 			userInfo = new OidcUserInfo(oauth2User.getAttributes());
 
 
 			// http://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse
 
@@ -81,9 +82,8 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
 			}
 
 		}
 
 
-		GrantedAuthority authority = new OidcUserAuthority(userRequest.getIdToken(), userInfo);
 
-		Set<GrantedAuthority> authorities = new HashSet<>();
 
-		authorities.add(authority);
 
+		Set<GrantedAuthority> authorities = Collections.singleton(
 
+				new OidcUserAuthority(userRequest.getIdToken(), userInfo));
 
 
 		OidcUser user;
 
 
@@ -121,4 +121,15 @@ public class OidcUserService implements OAuth2UserService<OidcUserRequest, OidcU
 
 
 		return false;
 
 	}
 
+
 
+	/**
 
+	 * Sets the {@link OAuth2UserService} used when requesting the user info resource.
 
+	 *
 
+	 * @since 5.1
 
+	 * @param oauth2UserService the {@link OAuth2UserService} used when requesting the user info resource.
 
+	 */
 
+	public final void setOauth2UserService(OAuth2UserService<OAuth2UserRequest, OAuth2User> oauth2UserService) {
 
+		Assert.notNull(oauth2UserService, "oauth2UserService cannot be null");
 
+		this.oauth2UserService = oauth2UserService;
 
+	}
 
 }

+ 10 - 1
oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/oidc/userinfo/OidcUserServiceTests.java
Ver Ficheiro 

@@ -18,7 +18,6 @@ package org.springframework.security.oauth2.client.oidc.userinfo;
 
 import okhttp3.mockwebserver.MockResponse;
 
 import okhttp3.mockwebserver.MockWebServer;
 
 import okhttp3.mockwebserver.RecordedRequest;
 
-
 
 import org.junit.Before;
 
 import org.junit.Rule;
 
 import org.junit.Test;
 
@@ -32,6 +31,7 @@ import org.springframework.http.HttpMethod;
 
 import org.springframework.http.MediaType;
 
 import org.springframework.security.authentication.AuthenticationServiceException;
 
 import org.springframework.security.oauth2.client.registration.ClientRegistration;
 
+import org.springframework.security.oauth2.client.userinfo.DefaultOAuth2UserService;
 
 import org.springframework.security.oauth2.core.AuthenticationMethod;
 
 import org.springframework.security.oauth2.core.AuthorizationGrantType;
 
 import org.springframework.security.oauth2.core.OAuth2AccessToken;
 
@@ -51,6 +51,7 @@ import java.util.Set;
 
 import java.util.concurrent.TimeUnit;
 
 
 import static org.assertj.core.api.Assertions.assertThat;
 
+import static org.assertj.core.api.Assertions.assertThatThrownBy;
 
 import static org.hamcrest.CoreMatchers.containsString;
 
 import static org.mockito.Mockito.mock;
 
 import static org.mockito.Mockito.when;
 
@@ -96,6 +97,14 @@ public class OidcUserServiceTests {
 
 		idTokenClaims.put(IdTokenClaimNames.SUB, "subject1");
 
 		when(this.idToken.getClaims()).thenReturn(idTokenClaims);
 
 		when(this.idToken.getSubject()).thenReturn("subject1");
 
+
 
+		this.userService.setOauth2UserService(new DefaultOAuth2UserService());
 
+	}
 
+
 
+	@Test
 
+	public void setOauth2UserServiceWhenNullThenThrowIllegalArgumentException() {
 
+		assertThatThrownBy(() -> this.userService.setOauth2UserService(null))
 
+				.isInstanceOf(IllegalArgumentException.class);
 
 	}
 
 
 	@Test