Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Simplify Configuring RequestCache

Now the RequestCache is configured on any default success handler.

Fixes: gh-5582
Rob Winch 7 years ago
parent
6012bfdc6e
commit
8ce244f5d2
2 changed files with 81 additions and 1 deletions
Split View Show Diff Stats
  1. 9 1
      config/src/main/java/org/springframework/security/config/annotation/web/configurers/AbstractAuthenticationFilterConfigurer.java
  2. 72 0
      config/src/test/java/org/springframework/security/config/annotation/web/configurers/FormLoginConfigurerTests.java

+ 9 - 1
config/src/main/java/org/springframework/security/config/annotation/web/configurers/AbstractAuthenticationFilterConfigurer.java
View File 

@@ -32,6 +32,7 @@ import org.springframework.security.web.authentication.SavedRequestAwareAuthenti
 
 import org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler;
 
 import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
 
 import org.springframework.security.web.authentication.session.SessionAuthenticationStrategy;
 
+import org.springframework.security.web.savedrequest.RequestCache;
 
 import org.springframework.security.web.util.matcher.AndRequestMatcher;
 
 import org.springframework.security.web.util.matcher.MediaTypeRequestMatcher;
 
 import org.springframework.security.web.util.matcher.NegatedRequestMatcher;
 
@@ -65,7 +66,8 @@ public abstract class AbstractAuthenticationFilterConfigurer<B extends HttpSecur
 
 
 	private AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource;
 
 
-	private AuthenticationSuccessHandler successHandler = new SavedRequestAwareAuthenticationSuccessHandler();
 
+	private SavedRequestAwareAuthenticationSuccessHandler defaultSuccessHandler = new SavedRequestAwareAuthenticationSuccessHandler();
 
+	private AuthenticationSuccessHandler successHandler = this.defaultSuccessHandler;
 
 
 	private LoginUrlAuthenticationEntryPoint authenticationEntryPoint;
 
 
@@ -128,6 +130,7 @@ public abstract class AbstractAuthenticationFilterConfigurer<B extends HttpSecur
 
 		SavedRequestAwareAuthenticationSuccessHandler handler = new SavedRequestAwareAuthenticationSuccessHandler();
 
 		handler.setDefaultTargetUrl(defaultSuccessUrl);
 
 		handler.setAlwaysUseDefaultTargetUrl(alwaysUse);
 
+		this.defaultSuccessHandler = handler;
 
 		return successHandler(handler);
 
 	}
 
 
@@ -279,6 +282,11 @@ public abstract class AbstractAuthenticationFilterConfigurer<B extends HttpSecur
 
 			authenticationEntryPoint.setPortMapper(portMapper);
 
 		}
 
 
+		RequestCache requestCache = http.getSharedObject(RequestCache.class);
 
+		if (requestCache != null) {
 
+			this.defaultSuccessHandler.setRequestCache(requestCache);
 
+		}
 
+
 
 		authFilter.setAuthenticationManager(http
 
 				.getSharedObject(AuthenticationManager.class));
 
 		authFilter.setAuthenticationSuccessHandler(successHandler);

+ 72 - 0
config/src/test/java/org/springframework/security/config/annotation/web/configurers/FormLoginConfigurerTests.java
View File 

@@ -0,0 +1,72 @@
 
+/*
 
+ * Copyright 2002-2018 the original author or authors.
 
+ *
 
+ * Licensed under the Apache License, Version 2.0 (the "License");
 
+ * you may not use this file except in compliance with the License.
 
+ * You may obtain a copy of the License at
 
+ *
 
+ *      http://www.apache.org/licenses/LICENSE-2.0
 
+ *
 
+ * Unless required by applicable law or agreed to in writing, software
 
+ * distributed under the License is distributed on an "AS IS" BASIS,
 
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 
+ * See the License for the specific language governing permissions and
 
+ * limitations under the License.
 
+ */
 
+
 
+package org.springframework.security.config.annotation.web.configurers;
 
+
 
+import org.junit.Rule;
 
+import org.junit.Test;
 
+import org.springframework.beans.factory.annotation.Autowired;
 
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 
+import org.springframework.security.config.test.SpringTestRule;
 
+import org.springframework.security.config.users.AuthenticationTestConfiguration;
 
+import org.springframework.security.web.savedrequest.RequestCache;
 
+import org.springframework.test.web.servlet.MockMvc;
 
+
 
+import static org.mockito.ArgumentMatchers.any;
 
+import static org.mockito.Mockito.mock;
 
+import static org.mockito.Mockito.verify;
 
+import static org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.formLogin;
 
+import static org.springframework.security.test.web.servlet.response.SecurityMockMvcResultMatchers.authenticated;
 
+
 
+/**
 
+ * @author Rob Winch
 
+ * @since 5.1
 
+ */
 
+public class FormLoginConfigurerTests {
 
+	@Rule
 
+	public final SpringTestRule spring = new SpringTestRule();
 
+
 
+	@Autowired
 
+	private MockMvc mockMvc;
 
+
 
+	@Test
 
+	public void requestCache() throws Exception {
 
+		this.spring.register(RequestCacheConfig.class,
 
+				AuthenticationTestConfiguration.class).autowire();
 
+
 
+		RequestCacheConfig config = this.spring.getContext().getBean(RequestCacheConfig.class);
 
+
 
+		this.mockMvc.perform(formLogin())
 
+				.andExpect(authenticated());
 
+
 
+		verify(config.requestCache).getRequest(any(), any());
 
+	}
 
+
 
+	@EnableWebSecurity
 
+	static class RequestCacheConfig extends WebSecurityConfigurerAdapter {
 
+		private RequestCache requestCache = mock(RequestCache.class);
 
+
 
+		@Override
 
+		protected void configure(HttpSecurity http) throws Exception {
 
+			http
 
+				.formLogin().and()
 
+				.requestCache()
 
+					.requestCache(this.requestCache);
 
+		}
 
+	}
 
+}