Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

ProviderManager Uses CollectionUtils#contains

Closes gh-8689
yukihane 5 years ago
parent
27e1c582b9
commit
5302fb776c
2 changed files with 27 additions and 1 deletions
Unified View Show Diff Stats
  1. 2 1
      core/src/main/java/org/springframework/security/authentication/ProviderManager.java
  2. 25 0
      core/src/test/java/org/springframework/security/authentication/ProviderManagerTests.java

+ 2 - 1
core/src/main/java/org/springframework/security/authentication/ProviderManager.java
View File 

@@ -30,6 +30,7 @@ import org.springframework.security.core.AuthenticationException;
 
 import org.springframework.security.core.CredentialsContainer;
 
 import org.springframework.security.core.CredentialsContainer;
 
 import org.springframework.security.core.SpringSecurityMessageSource;
 
 import org.springframework.security.core.SpringSecurityMessageSource;
 
 import org.springframework.util.Assert;
 
 import org.springframework.util.Assert;
 
+import org.springframework.util.CollectionUtils;
 
 
 
 /**
 
 /**
 
  * Iterates an {@link Authentication} request through a list of
 
  * Iterates an {@link Authentication} request through a list of
 
@@ -145,7 +146,7 @@ public class ProviderManager implements AuthenticationManager, MessageSourceAwar
 
 			throw new IllegalArgumentException(
 
 			throw new IllegalArgumentException(
 
 					"A parent AuthenticationManager or a list "
 
 					"A parent AuthenticationManager or a list "
 
 							+ "of AuthenticationProviders is required");
 
 							+ "of AuthenticationProviders is required");
 
-		} else if (providers.contains(null)) {
 
+		} else if (CollectionUtils.contains(providers.iterator(), null)) {
 
 			throw new IllegalArgumentException(
 
 			throw new IllegalArgumentException(
 
 					"providers list cannot contain null values");
 
 					"providers list cannot contain null values");
 
 		}
 
 		}

+ 25 - 0
core/src/test/java/org/springframework/security/authentication/ProviderManagerTests.java
View File 

@@ -102,6 +102,31 @@ public class ProviderManagerTests {
 
 		new ProviderManager((AuthenticationProvider) null);
 
 		new ProviderManager((AuthenticationProvider) null);
 
 	}
 
 	}
 
 
 
+	@Test(expected = IllegalArgumentException.class)
 
+	public void testStartupFailsIfProvidersContainNullElement() {
 
+		new ProviderManager(Arrays.asList(mock(AuthenticationProvider.class), null));
 
+	}
 
+
 
+	@Test
 
+	public void testUsingNullNotPermittedList() {
 
+		// imitated Java9 List.of(e) object, which disallows null elements and
 
+		// throws NPE when contains(null) called
 
+		List<AuthenticationProvider> providers = new ArrayList<AuthenticationProvider>() {
 
+			private static final long serialVersionUID = 1L;
 
+
 
+			@Override
 
+			public boolean contains(Object o) {
 
+				if (o == null) {
 
+					throw new NullPointerException();
 
+				}
 
+				return super.contains(o);
 
+			}
 
+		};
 
+
 
+		providers.add(mock(AuthenticationProvider.class));
 
+		new ProviderManager(providers);
 
+	}
 
+
 
 	@Test
 
 	@Test
 
 	public void detailsAreNotSetOnAuthenticationTokenIfAlreadySetByProvider() {
 
 	public void detailsAreNotSetOnAuthenticationTokenIfAlreadySetByProvider() {
 
 		Object requestDetails = "(Request Details)";
 
 		Object requestDetails = "(Request Details)";