首页 发现 帮助
注册 登录
github
/
spring-security
镜像自地址 https://github.com/spring-projects/spring-security
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Merge branch '6.4.x'

Josh Cummings 6 月之前
父节点
67c1438282 4b5bacf71a
当前提交
5af4b9a2ad
共有 9 个文件被更改,包括 38 次插入5 次删除
分列视图 显示文件统计
  1. 17 0
      config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java
  2. 二进制
      config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.core.Saml2X509Credential.serialized
  3. 二进制
      config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2AuthenticationToken.serialized
  4. 二进制
      config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration$AssertingPartyDetails.serialized
  5. 二进制
      config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration.serialized
  6. 5 2
      saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/core/Saml2X509Credential.java
  7. 2 1
      saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/AssertingPartyMetadata.java
  8. 7 2
      saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistration.java
  9. 7 0
      saml2/saml2-service-provider/src/test/java/org/springframework/security/saml2/provider/service/authentication/TestSaml2AuthenticationTokens.java

+ 17 - 0
config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java
查看文件 

@@ -178,14 +178,21 @@ import org.springframework.security.oauth2.server.resource.introspection.OAuth2I
 
 import org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionException;
 
 import org.springframework.security.saml2.Saml2Exception;
 
 import org.springframework.security.saml2.core.Saml2Error;
 
+import org.springframework.security.saml2.core.Saml2X509Credential;
 
+import org.springframework.security.saml2.credentials.TestSaml2X509Credentials;
 
 import org.springframework.security.saml2.provider.service.authentication.DefaultSaml2AuthenticatedPrincipal;
 
 import org.springframework.security.saml2.provider.service.authentication.Saml2Authentication;
 
 import org.springframework.security.saml2.provider.service.authentication.Saml2AuthenticationException;
 
+import org.springframework.security.saml2.provider.service.authentication.Saml2AuthenticationToken;
 
 import org.springframework.security.saml2.provider.service.authentication.Saml2PostAuthenticationRequest;
 
 import org.springframework.security.saml2.provider.service.authentication.Saml2RedirectAuthenticationRequest;
 
+import org.springframework.security.saml2.provider.service.authentication.TestSaml2AuthenticationTokens;
 
 import org.springframework.security.saml2.provider.service.authentication.TestSaml2Authentications;
 
 import org.springframework.security.saml2.provider.service.authentication.TestSaml2PostAuthenticationRequests;
 
 import org.springframework.security.saml2.provider.service.authentication.TestSaml2RedirectAuthenticationRequests;
 
+import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration;
 
+import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration.AssertingPartyDetails;
 
+import org.springframework.security.saml2.provider.service.registration.TestRelyingPartyRegistrations;
 
 import org.springframework.security.web.PortResolverImpl;
 
 import org.springframework.security.web.authentication.WebAuthenticationDetails;
 
 import org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken;
 
@@ -507,6 +514,16 @@ class SpringSecurityCoreVersionSerializableTests {
 
 				(r) -> TestSaml2PostAuthenticationRequests.create());
 
 		generatorByClassName.put(Saml2RedirectAuthenticationRequest.class,
 
 				(r) -> TestSaml2RedirectAuthenticationRequests.create());
 
+		generatorByClassName.put(Saml2X509Credential.class,
 
+				(r) -> TestSaml2X509Credentials.relyingPartyVerifyingCredential());
 
+		generatorByClassName.put(AssertingPartyDetails.class,
 
+				(r) -> TestRelyingPartyRegistrations.full().build().getAssertingPartyMetadata());
 
+		generatorByClassName.put(RelyingPartyRegistration.class, (r) -> TestRelyingPartyRegistrations.full().build());
 
+		generatorByClassName.put(Saml2AuthenticationToken.class, (r) -> {
 
+			Saml2AuthenticationToken token = TestSaml2AuthenticationTokens.tokenRequested();
 
+			token.setDetails(details);
 
+			return token;
 
+		});
 
 
 		// web
 
 		generatorByClassName.put(AnonymousAuthenticationToken.class, (r) -> {

二进制
config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.core.Saml2X509Credential.serialized
查看文件


二进制
config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2AuthenticationToken.serialized
查看文件


二进制
config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration$AssertingPartyDetails.serialized
查看文件


二进制
config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration.serialized
查看文件


+ 5 - 2
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/core/Saml2X509Credential.java
查看文件 

@@ -1,5 +1,5 @@
 
 /*
 
- * Copyright 2002-2020 the original author or authors.
 
+ * Copyright 2002-2024 the original author or authors.
 
  *
 
  * Licensed under the Apache License, Version 2.0 (the "License");
 
  * you may not use this file except in compliance with the License.
 
@@ -16,6 +16,7 @@
 
 
 package org.springframework.security.saml2.core;
 
 
+import java.io.Serializable;
 
 import java.security.PrivateKey;
 
 import java.security.cert.X509Certificate;
 
 import java.util.Arrays;
 
@@ -35,7 +36,9 @@ import org.springframework.util.Assert;
 
  * @author Josh Cummings
 
  * @since 5.4
 
  */
 
-public final class Saml2X509Credential {
 
+public final class Saml2X509Credential implements Serializable {
 
+
 
+	private static final long serialVersionUID = -1015853414272603517L;
 
 
 	private final PrivateKey privateKey;

+ 2 - 1
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/AssertingPartyMetadata.java
查看文件 

@@ -16,6 +16,7 @@
 
 
 package org.springframework.security.saml2.provider.service.registration;
 
 
+import java.io.Serializable;
 
 import java.util.Collection;
 
 import java.util.List;
 
 import java.util.function.Consumer;
 
@@ -28,7 +29,7 @@ import org.springframework.security.saml2.core.Saml2X509Credential;
 
  * @author Josh Cummings
 
  * @since 6.4
 
  */
 
-public interface AssertingPartyMetadata {
 
+public interface AssertingPartyMetadata extends Serializable {
 
 
 	/**
 
 	 * Get the asserting party's <a href=

+ 7 - 2
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistration.java
查看文件 

@@ -1,5 +1,5 @@
 
 /*
 
- * Copyright 2002-2023 the original author or authors.
 
+ * Copyright 2002-2024 the original author or authors.
 
  *
 
  * Licensed under the Apache License, Version 2.0 (the "License");
 
  * you may not use this file except in compliance with the License.
 
@@ -16,6 +16,7 @@
 
 
 package org.springframework.security.saml2.provider.service.registration;
 
 
+import java.io.Serializable;
 
 import java.util.ArrayList;
 
 import java.util.Collection;
 
 import java.util.Collections;
 
@@ -66,7 +67,9 @@ import org.springframework.util.CollectionUtils;
 
  * @author Josh Cummings
 
  * @since 5.2
 
  */
 
-public class RelyingPartyRegistration {
 
+public class RelyingPartyRegistration implements Serializable {
 
+
 
+	private static final long serialVersionUID = -2718908121120942813L;
 
 
 	private final String registrationId;
 
 
@@ -456,6 +459,8 @@ public class RelyingPartyRegistration {
 
 	 */
 
 	public static class AssertingPartyDetails implements AssertingPartyMetadata {
 
 
+		private static final long serialVersionUID = 8728930758311995475L;
 
+
 
 		private final String entityId;
 
 
 		private final boolean wantAuthnRequestsSigned;

+ 7 - 0
saml2/saml2-service-provider/src/test/java/org/springframework/security/saml2/provider/service/authentication/TestSaml2AuthenticationTokens.java
查看文件 

@@ -35,4 +35,11 @@ public final class TestSaml2AuthenticationTokens {
 
 		return new Saml2AuthenticationToken(relyingPartyRegistration, "saml2-xml-response-object");
 
 	}
 
 
+	public static Saml2AuthenticationToken tokenRequested() {
 
+		RelyingPartyRegistration relyingPartyRegistration = TestRelyingPartyRegistrations.relyingPartyRegistration()
 
+			.build();
 
+		return new Saml2AuthenticationToken(relyingPartyRegistration, "saml2-xml-response-object",
 
+				TestSaml2PostAuthenticationRequests.create());
 
+	}
 
+
 
 }