il y a 1 an · 9b2910cd42
--- a/cas/src/main/java/org/springframework/security/cas/authentication/CasAuthenticationProvider.java
+++ b/cas/src/main/java/org/springframework/security/cas/authentication/CasAuthenticationProvider.java
@@ -56,6 +56,7 @@ import org.springframework.util.Assert;
 
				  *
			
 
				  * @author Ben Alex
			
 
				  * @author Scott Battaglia
			
 
				+ * @author Kim Youngwoong
			
 
				  */
			
 
				 public class CasAuthenticationProvider implements AuthenticationProvider, InitializingBean, MessageSourceAware {
			
 
				 
			
@@ -63,7 +64,7 @@ public class CasAuthenticationProvider implements AuthenticationProvider, Initia
 
				 
			
 
				 	private AuthenticationUserDetailsService<CasAssertionAuthenticationToken> authenticationUserDetailsService;
			
 
				 
			
 
				-	private final UserDetailsChecker userDetailsChecker = new AccountStatusUserDetailsChecker();
			
 
				+	private UserDetailsChecker userDetailsChecker = new AccountStatusUserDetailsChecker();
			
 
				 
			
 
				 	protected MessageSourceAccessor messages = SpringSecurityMessageSource.getAccessor();
			
 
				 
			
@@ -187,6 +188,17 @@ public class CasAuthenticationProvider implements AuthenticationProvider, Initia
 
				 		this.authenticationUserDetailsService = authenticationUserDetailsService;
			
 
				 	}
			
 
				 
			
 
				+	/**
			
 
				+	 * Sets the UserDetailsChecker to be used for checking the status of retrieved user
			
 
				+	 * details. This allows customization of the UserDetailsChecker implementation.
			
 
				+	 * @param userDetailsChecker the UserDetailsChecker to be set
			
 
				+	 * @since 6.4
			
 
				+	 */
			
 
				+	public void setUserDetailsChecker(final UserDetailsChecker userDetailsChecker) {
			
 
				+		Assert.notNull(userDetailsChecker, "userDetailsChecker cannot be null");
			
 
				+		this.userDetailsChecker = userDetailsChecker;
			
 
				+	}
			
 
				+
			
 
				 	public void setServiceProperties(final ServiceProperties serviceProperties) {
			
 
				 		this.serviceProperties = serviceProperties;
			
 
				 	}
			
--- a/cas/src/test/java/org/springframework/security/cas/authentication/CasAuthenticationProviderTests.java
+++ b/cas/src/test/java/org/springframework/security/cas/authentication/CasAuthenticationProviderTests.java
@@ -18,6 +18,7 @@ package org.springframework.security.cas.authentication;
 
				 
			
 
				 import java.util.HashMap;
			
 
				 import java.util.Map;
			
 
				+import java.util.concurrent.atomic.AtomicInteger;
			
 
				 
			
 
				 import org.apereo.cas.client.validation.Assertion;
			
 
				 import org.apereo.cas.client.validation.AssertionImpl;
			
@@ -31,11 +32,13 @@ import org.springframework.security.authentication.UsernamePasswordAuthenticatio
 
				 import org.springframework.security.cas.ServiceProperties;
			
 
				 import org.springframework.security.cas.web.authentication.ServiceAuthenticationDetails;
			
 
				 import org.springframework.security.core.Authentication;
			
 
				+import org.springframework.security.core.AuthenticationException;
			
 
				 import org.springframework.security.core.authority.AuthorityUtils;
			
 
				 import org.springframework.security.core.authority.SimpleGrantedAuthority;
			
 
				 import org.springframework.security.core.userdetails.AuthenticationUserDetailsService;
			
 
				 import org.springframework.security.core.userdetails.User;
			
 
				 import org.springframework.security.core.userdetails.UserDetails;
			
 
				+import org.springframework.security.core.userdetails.UserDetailsChecker;
			
 
				 import org.springframework.security.core.userdetails.UsernameNotFoundException;
			
 
				 import org.springframework.security.web.authentication.WebAuthenticationDetails;
			
 
				 
			
@@ -55,6 +58,7 @@ import static org.mockito.Mockito.verify;
 
				  *
			
 
				  * @author Ben Alex
			
 
				  * @author Scott Battaglia
			
 
				+ * @author Kim Youngwoong
			
 
				  */
			
 
				 @SuppressWarnings("unchecked")
			
 
				 public class CasAuthenticationProviderTests {
			
@@ -320,6 +324,29 @@ public class CasAuthenticationProviderTests {
 
				 		assertThat(cap.supports(CasAuthenticationToken.class)).isTrue();
			
 
				 	}
			
 
				 
			
 
				+	@Test
			
 
				+	public void testSetUserDetailsChecker() throws AuthenticationException {
			
 
				+		CasAuthenticationProvider cap = new CasAuthenticationProvider();
			
 
				+		cap.setAuthenticationUserDetailsService(new MockAuthoritiesPopulator());
			
 
				+		cap.setKey("qwerty");
			
 
				+		cap.setTicketValidator(new MockTicketValidator(true));
			
 
				+		cap.setServiceProperties(makeServiceProperties());
			
 
				+		cap.afterPropertiesSet();
			
 
				+		CasServiceTicketAuthenticationToken token = CasServiceTicketAuthenticationToken.stateful("ST-123");
			
 
				+
			
 
				+		AtomicInteger checkCount = new AtomicInteger(0);
			
 
				+		UserDetailsChecker userDetailsChecker = new UserDetailsChecker() {
			
 
				+			@Override
			
 
				+			public void check(UserDetails user) {
			
 
				+				checkCount.incrementAndGet();
			
 
				+			}
			
 
				+		};
			
 
				+		cap.setUserDetailsChecker(userDetailsChecker);
			
 
				+		cap.authenticate(token);
			
 
				+
			
 
				+		assertThat(checkCount.get()).isEqualTo(1);
			
 
				+	}
			
 
				+
			
 
				 	private class MockAuthoritiesPopulator implements AuthenticationUserDetailsService {
			
 
				 
			
 
				 		@Override