Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Handle missing authorization endpoint uri

Closes gh-9795
Steve Riesenberg 4 years ago
parent
839cc5e851
commit
9daf058a6e
2 changed files with 25 additions and 1 deletions
Unified View Show Diff Stats
  1. 1 1
      oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/registration/ClientRegistrations.java
  2. 24 0
      oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/registration/ClientRegistrationsTests.java

+ 1 - 1
oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/registration/ClientRegistrations.java
View File 

@@ -248,7 +248,7 @@ public final class ClientRegistrations {
 
 				.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
 
 				.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
 
 				.clientAuthenticationMethod(method)
 
 				.clientAuthenticationMethod(method)
 
 				.redirectUri("{baseUrl}/{action}/oauth2/code/{registrationId}")
 
 				.redirectUri("{baseUrl}/{action}/oauth2/code/{registrationId}")
 
-				.authorizationUri(metadata.getAuthorizationEndpointURI().toASCIIString())
 
+				.authorizationUri((metadata.getAuthorizationEndpointURI() != null) ? metadata.getAuthorizationEndpointURI().toASCIIString() : null)
 
 				.providerConfigurationMetadata(configurationMetadata)
 
 				.providerConfigurationMetadata(configurationMetadata)
 
 				.tokenUri(metadata.getTokenEndpointURI().toASCIIString())
 
 				.tokenUri(metadata.getTokenEndpointURI().toASCIIString())
 
 				.issuerUri(issuer)
 
 				.issuerUri(issuer)

+ 24 - 0
oauth2/oauth2-client/src/test/java/org/springframework/security/oauth2/client/registration/ClientRegistrationsTests.java
View File 

@@ -258,6 +258,30 @@ public class ClientRegistrationsTests {
 
 		assertThat(registration.getAuthorizationGrantType()).isEqualTo(AuthorizationGrantType.AUTHORIZATION_CODE);
 
 		assertThat(registration.getAuthorizationGrantType()).isEqualTo(AuthorizationGrantType.AUTHORIZATION_CODE);
 
 	}
 
 	}
 
 
 
+	// gh-9795
 
+	@Test
 
+	public void issuerWhenResponseAuthorizationEndpointIsNullThenSuccess() throws Exception {
 
+		this.response.put("grant_types_supported", Arrays.asList("urn:ietf:params:oauth:grant-type:jwt-bearer"));
 
+		this.response.remove("authorization_endpoint");
 
+		ClientRegistration registration = registration("").authorizationGrantType(AuthorizationGrantType.JWT_BEARER)
 
+				.build();
 
+		assertThat(registration.getAuthorizationGrantType()).isEqualTo(AuthorizationGrantType.JWT_BEARER);
 
+		ClientRegistration.ProviderDetails provider = registration.getProviderDetails();
 
+		assertThat(provider.getAuthorizationUri()).isNull();
 
+	}
 
+
 
+	// gh-9795
 
+	@Test
 
+	public void issuerWhenOAuth2ResponseAuthorizationEndpointIsNullThenSuccess() throws Exception {
 
+		this.response.put("grant_types_supported", Arrays.asList("urn:ietf:params:oauth:grant-type:jwt-bearer"));
 
+		this.response.remove("authorization_endpoint");
 
+		ClientRegistration registration = registrationOAuth2("", null)
 
+				.authorizationGrantType(AuthorizationGrantType.JWT_BEARER).build();
 
+		assertThat(registration.getAuthorizationGrantType()).isEqualTo(AuthorizationGrantType.JWT_BEARER);
 
+		ClientRegistration.ProviderDetails provider = registration.getProviderDetails();
 
+		assertThat(provider.getAuthorizationUri()).isNull();
 
+	}
 
+
 
 	@Test
 
 	@Test
 
 	public void issuerWhenTokenEndpointAuthMethodsNullThenDefaulted() throws Exception {
 
 	public void issuerWhenTokenEndpointAuthMethodsNullThenDefaulted() throws Exception {
 
 		this.response.remove("token_endpoint_auth_methods_supported");
 
 		this.response.remove("token_endpoint_auth_methods_supported");