首页 发现 帮助
注册 登录
github
/
spring-security
镜像自地址 https://github.com/spring-projects/spring-security
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Add Both Config names to duplicate WebSecurityConfigurer order

Previously the error message when multiple WebSecurityConfigurer with the
same Order did not include both WebSecurityConfigurer classes that were
involved in the duplicate Order. This made resolving errors difficult.

This commit ensures both WebSecurityConfigurers are include in the error
message.

Fixes gh-3380
Rob Winch 9 年之前
父节点
e33e21fe6b
当前提交
35eff94e3d
共有 2 个文件被更改,包括 6 次插入1 次删除
分列视图 显示文件统计
  1. 3 1
      config/src/main/java/org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.java
  2. 3 0
      config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/WebSecurityConfigurationTests.groovy

+ 3 - 1
config/src/main/java/org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.java
查看文件 

@@ -142,15 +142,17 @@ public class WebSecurityConfiguration implements ImportAware, BeanClassLoaderAwa
 
 		Collections.sort(webSecurityConfigurers, AnnotationAwareOrderComparator.INSTANCE);
 
 
 		Integer previousOrder = null;
 
+		Object previousConfig = null;
 
 		for (SecurityConfigurer<Filter, WebSecurity> config : webSecurityConfigurers) {
 
 			Integer order = AnnotationAwareOrderComparator.lookupOrder(config);
 
 			if (previousOrder != null && previousOrder.equals(order)) {
 
 				throw new IllegalStateException(
 
 						"@Order on WebSecurityConfigurers must be unique. Order of "
 
-								+ order + " was already used, so it cannot be used on "
 
+								+ order + " was already used on " + previousConfig + ", so it cannot be used on "
 
 								+ config + " too.");
 
 			}
 
 			previousOrder = order;
 
+			previousConfig = config;
 
 		}
 
 		for (SecurityConfigurer<Filter, WebSecurity> webSecurityConfigurer : webSecurityConfigurers) {
 
 			webSecurity.apply(webSecurityConfigurer);

+ 3 - 0
config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/WebSecurityConfigurationTests.groovy
查看文件 

@@ -33,6 +33,7 @@ import org.springframework.security.config.annotation.BaseSpringSpec
 
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
 
 import org.springframework.security.config.annotation.web.builders.HttpSecurity
 
 import org.springframework.security.config.annotation.web.builders.WebSecurity
 
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurationTests.DuplicateOrderConfig;
 
 import org.springframework.security.web.FilterChainProxy
 
 import org.springframework.security.web.SecurityFilterChain
 
 import org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
 
@@ -136,6 +137,8 @@ class WebSecurityConfigurationTests extends BaseSpringSpec {
 
 		then:
 
 			BeanCreationException e = thrown()
 
 			e.message.contains "@Order on WebSecurityConfigurers must be unique"
 
+			e.message.contains DuplicateOrderConfig.WebConfigurer1.class.name
 
+			e.message.contains DuplicateOrderConfig.WebConfigurer2.class.name
 
 	}