7 years ago · b81c1ce2c0
--- a/config/spring-security-config.gradle
+++ b/config/spring-security-config.gradle
@@ -15,12 +15,13 @@ dependencies {
 
				 	optional project(':spring-security-jwt-jose')
			
 
				 	optional project(':spring-security-openid')
			
 
				 	optional project(':spring-security-web')
			
 
				-	optional project(':spring-security-webflux')
			
 
				+	optional 'io.projectreactor:reactor-core'
			
 
				 	optional 'org.aspectj:aspectjweaver'
			
 
				 	optional 'org.springframework:spring-jdbc'
			
 
				 	optional 'org.springframework:spring-tx'
			
 
				 	optional 'org.springframework:spring-webmvc'
			
 
				 	optional'org.springframework:spring-web'
			
 
				+	optional'org.springframework:spring-webflux'
			
 
				 	optional'org.springframework:spring-websocket'
			
 
				 
			
 
				 	provided 'javax.servlet:javax.servlet-api'
			
@@ -28,7 +29,7 @@ dependencies {
 
				 	testCompile project(':spring-security-aspects')
			
 
				 	testCompile project(':spring-security-cas')
			
 
				 	testCompile project(path : ':spring-security-core', configuration : 'tests')
			
 
				-	testCompile project(path : ':spring-security-webflux', configuration : 'tests')
			
 
				+	testCompile project(path : ':spring-security-web', configuration : 'tests')
			
 
				 	testCompile apachedsDependencies
			
 
				 	testCompile powerMock2Dependencies
			
 
				 	testCompile spockDependencies
			
--- a/samples/javaconfig/hellowebflux-method/spring-security-samples-javaconfig-hellowebflux-method.gradle
+++ b/samples/javaconfig/hellowebflux-method/spring-security-samples-javaconfig-hellowebflux-method.gradle
@@ -3,7 +3,7 @@ apply plugin: 'io.spring.convention.spring-sample'
 
				 dependencies {
			
 
				 	compile project(':spring-security-core')
			
 
				 	compile project(':spring-security-config')
			
 
				-	compile project(':spring-security-webflux')
			
 
				+	compile project(':spring-security-web')
			
 
				 	compile 'com.fasterxml.jackson.core:jackson-databind'
			
 
				 	compile 'io.netty:netty-buffer'
			
 
				 	compile 'io.projectreactor.ipc:reactor-netty'
			
--- a/samples/javaconfig/hellowebflux/spring-security-samples-javaconfig-hellowebflux.gradle
+++ b/samples/javaconfig/hellowebflux/spring-security-samples-javaconfig-hellowebflux.gradle
@@ -3,7 +3,7 @@ apply plugin: 'io.spring.convention.spring-sample'
 
				 dependencies {
			
 
				 	compile project(':spring-security-core')
			
 
				 	compile project(':spring-security-config')
			
 
				-	compile project(':spring-security-webflux')
			
 
				+	compile project(':spring-security-web')
			
 
				 	compile 'com.fasterxml.jackson.core:jackson-databind'
			
 
				 	compile 'io.netty:netty-buffer'
			
 
				 	compile 'io.projectreactor.ipc:reactor-netty'
			
--- a/samples/javaconfig/hellowebfluxfn/spring-security-samples-javaconfig-hellowebfluxfn.gradle
+++ b/samples/javaconfig/hellowebfluxfn/spring-security-samples-javaconfig-hellowebfluxfn.gradle
@@ -3,7 +3,7 @@ apply plugin: 'io.spring.convention.spring-sample'
 
				 dependencies {
			
 
				 	compile project(':spring-security-core')
			
 
				 	compile project(':spring-security-config')
			
 
				-	compile project(':spring-security-webflux')
			
 
				+	compile project(':spring-security-web')
			
 
				 	compile 'com.fasterxml.jackson.core:jackson-databind'
			
 
				 	compile 'io.netty:netty-buffer'
			
 
				 	compile 'io.projectreactor.ipc:reactor-netty'
			
--- a/web/spring-security-web.gradle
+++ b/web/spring-security-web.gradle
@@ -10,16 +10,20 @@ dependencies {
 
				 	compile 'org.springframework:spring-web'
			
 
				 
			
 
				 	optional 'com.fasterxml.jackson.core:jackson-databind'
			
 
				+	optional 'io.projectreactor:reactor-core'
			
 
				 	optional 'org.springframework:spring-jdbc'
			
 
				 	optional 'org.springframework:spring-tx'
			
 
				+	optional 'org.springframework:spring-webflux'
			
 
				 	optional 'org.springframework:spring-webmvc'
			
 
				 
			
 
				 	provided 'javax.servlet:javax.servlet-api'
			
 
				 
			
 
				 	testCompile project(path: ':spring-security-core', configuration: 'tests')
			
 
				 	testCompile 'commons-codec:commons-codec'
			
 
				+	testCompile 'io.projectreactor:reactor-test'
			
 
				 	testCompile 'org.codehaus.groovy:groovy-all'
			
 
				 	testCompile 'org.skyscreamer:jsonassert'
			
 
				+	testCompile 'org.springframework:spring-webflux'
			
 
				 	testCompile powerMock2Dependencies
			
 
				 	testCompile spockDependencies
			
 
				 	testCompile slf4jDependencies
			
--- a/webflux/src/main/java/org/springframework/security/web/reactive/result/method/annotation/AuthenticationPrincipalArgumentResolver.java
+++ b/webflux/src/main/java/org/springframework/security/web/reactive/result/method/annotation/AuthenticationPrincipalArgumentResolver.java
--- a/webflux/src/main/java/org/springframework/security/web/server/DefaultServerRedirectStrategy.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/DefaultServerRedirectStrategy.java
--- a/webflux/src/main/java/org/springframework/security/web/server/DelegatingServerAuthenticationEntryPoint.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/DelegatingServerAuthenticationEntryPoint.java
--- a/webflux/src/main/java/org/springframework/security/web/server/MatcherSecurityWebFilterChain.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/MatcherSecurityWebFilterChain.java
--- a/webflux/src/main/java/org/springframework/security/web/server/SecurityWebFilterChain.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/SecurityWebFilterChain.java
--- a/webflux/src/main/java/org/springframework/security/web/server/ServerAuthenticationEntryPoint.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/ServerAuthenticationEntryPoint.java
--- a/webflux/src/main/java/org/springframework/security/web/server/ServerFormLoginAuthenticationConverter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/ServerFormLoginAuthenticationConverter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/ServerHttpBasicAuthenticationConverter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/ServerHttpBasicAuthenticationConverter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/ServerRedirectStrategy.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/ServerRedirectStrategy.java
--- a/webflux/src/main/java/org/springframework/security/web/server/WebFilterChainProxy.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/WebFilterChainProxy.java
--- a/webflux/src/main/java/org/springframework/security/web/server/WebFilterExchange.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/WebFilterExchange.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/AuthenticationWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/AuthenticationWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/HttpBasicServerAuthenticationEntryPoint.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/HttpBasicServerAuthenticationEntryPoint.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationEntryPoint.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationEntryPoint.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationSuccessHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationSuccessHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationEntryPointFailureHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationEntryPointFailureHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationFailureHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationFailureHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationSuccessHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/ServerAuthenticationSuccessHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/WebFilterChainServerAuthenticationSuccessHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/WebFilterChainServerAuthenticationSuccessHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/LogoutWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/LogoutWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/RedirectServerLogoutSuccessHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/RedirectServerLogoutSuccessHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/SecurityContextServerLogoutHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/SecurityContextServerLogoutHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/ServerLogoutHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/ServerLogoutHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/ServerLogoutSuccessHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authentication/logout/ServerLogoutSuccessHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/AuthorizationContext.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/AuthorizationContext.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/AuthorizationWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/AuthorizationWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/DelegatingReactiveAuthorizationManager.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/DelegatingReactiveAuthorizationManager.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/ExceptionTranslationWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/ExceptionTranslationWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/HttpStatusServerAccessDeniedHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/HttpStatusServerAccessDeniedHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/authorization/ServerAccessDeniedHandler.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/authorization/ServerAccessDeniedHandler.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/AuthenticationReactorContextWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/AuthenticationReactorContextWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/SecurityContextRepositoryServerWebExchange.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/SecurityContextRepositoryServerWebExchange.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/SecurityContextRepositoryWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/SecurityContextRepositoryWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/ServerSecurityContextRepository.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/ServerSecurityContextRepository.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/ServerWebExchangeAttributeServerSecurityContextRepository.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/ServerWebExchangeAttributeServerSecurityContextRepository.java
--- a/webflux/src/main/java/org/springframework/security/web/server/context/WebSessionServerSecurityContextRepository.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/context/WebSessionServerSecurityContextRepository.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/CacheControlServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/CacheControlServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/CompositeServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/CompositeServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/ContentTypeOptionsServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/ContentTypeOptionsServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/HttpHeaderWriterWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/HttpHeaderWriterWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/ServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/ServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/StaticServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/StaticServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/StrictTransportSecurityServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/StrictTransportSecurityServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/XContentTypeOptionsServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/XContentTypeOptionsServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/XFrameOptionsServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/XFrameOptionsServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/header/XXssProtectionServerHttpHeadersWriter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/header/XXssProtectionServerHttpHeadersWriter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/ui/LoginPageGeneratingWebFilter.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/ui/LoginPageGeneratingWebFilter.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/AndServerWebExchangeMatcher.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/AndServerWebExchangeMatcher.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/MediaTypeServerWebExchangeMatcher.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/MediaTypeServerWebExchangeMatcher.java
@@ -24,13 +24,12 @@ import java.util.Set;
 
				 
			
 
				 import org.apache.commons.logging.Log;
			
 
				 import org.apache.commons.logging.LogFactory;
			
 
				+import org.springframework.http.InvalidMediaTypeException;
			
 
				 import reactor.core.publisher.Mono;
			
 
				 
			
 
				 import org.springframework.http.MediaType;
			
 
				 import org.springframework.util.Assert;
			
 
				 import org.springframework.web.accept.ContentNegotiationStrategy;
			
 
				-import org.springframework.web.reactive.accept.HeaderContentTypeResolver;
			
 
				-import org.springframework.web.reactive.accept.RequestedContentTypeResolver;
			
 
				 import org.springframework.web.server.NotAcceptableStatusException;
			
 
				 import org.springframework.web.server.ServerWebExchange;
			
 
				 
			
@@ -40,7 +39,6 @@ import org.springframework.web.server.ServerWebExchange;
 
				  */
			
 
				 public class MediaTypeServerWebExchangeMatcher implements ServerWebExchangeMatcher {
			
 
				 	private final Log logger = LogFactory.getLog(getClass());
			
 
				-	private RequestedContentTypeResolver requestedContentTypeResolver = new HeaderContentTypeResolver();
			
 
				 
			
 
				 	private final Collection<MediaType> matchingMediaTypes;
			
 
				 	private boolean useEquals;
			
@@ -62,7 +60,7 @@ public class MediaTypeServerWebExchangeMatcher implements ServerWebExchangeMatch
 
				 	public Mono<MatchResult> matches(ServerWebExchange exchange) {
			
 
				 		List<MediaType> httpRequestMediaTypes;
			
 
				 		try {
			
 
				-			httpRequestMediaTypes = this.requestedContentTypeResolver.resolveMediaTypes(exchange);
			
 
				+			httpRequestMediaTypes = resolveMediaTypes(exchange);
			
 
				 		}
			
 
				 		catch (NotAcceptableStatusException e) {
			
 
				 			this.logger.debug("Failed to parse MediaTypes, returning false", e);
			
@@ -121,16 +119,6 @@ public class MediaTypeServerWebExchangeMatcher implements ServerWebExchangeMatch
 
				 		this.useEquals = useEquals;
			
 
				 	}
			
 
				 
			
 
				-	/**
			
 
				-	 * Sets the {@link RequestedContentTypeResolver} to be used
			
 
				-	 * @param requestedContentTypeResolver the resolver to use. Default is {@link HeaderContentTypeResolver}
			
 
				-	 */
			
 
				-	public void setRequestedContentTypeResolver(
			
 
				-		RequestedContentTypeResolver requestedContentTypeResolver) {
			
 
				-		Assert.notNull(requestedContentTypeResolver, "requestedContentTypeResolver cannot be null");
			
 
				-		this.requestedContentTypeResolver = requestedContentTypeResolver;
			
 
				-	}
			
 
				-
			
 
				 	/**
			
 
				 	 * Set the {@link MediaType} to ignore from the {@link ContentNegotiationStrategy}.
			
 
				 	 * This is useful if for example, you want to match on
			
@@ -143,10 +131,22 @@ public class MediaTypeServerWebExchangeMatcher implements ServerWebExchangeMatch
 
				 		this.ignoredMediaTypes = ignoredMediaTypes;
			
 
				 	}
			
 
				 
			
 
				+	private List<MediaType> resolveMediaTypes(ServerWebExchange exchange) throws NotAcceptableStatusException {
			
 
				+		try {
			
 
				+			List<MediaType> mediaTypes = exchange.getRequest().getHeaders().getAccept();
			
 
				+			MediaType.sortBySpecificityAndQuality(mediaTypes);
			
 
				+			return mediaTypes;
			
 
				+		}
			
 
				+		catch (InvalidMediaTypeException ex) {
			
 
				+			String value = exchange.getRequest().getHeaders().getFirst("Accept");
			
 
				+			throw new NotAcceptableStatusException(
			
 
				+				"Could not parse 'Accept' header [" + value + "]: " + ex.getMessage());
			
 
				+		}
			
 
				+	}
			
 
				+
			
 
				 	@Override
			
 
				 	public String toString() {
			
 
				-		return "MediaTypeRequestMatcher [requestedContentTypeResolver="
			
 
				-			+ this.requestedContentTypeResolver + ", matchingMediaTypes="
			
 
				+		return "MediaTypeRequestMatcher [matchingMediaTypes="
			
 
				 			+ this.matchingMediaTypes + ", useEquals=" + this.useEquals
			
 
				 			+ ", ignoredMediaTypes=" + this.ignoredMediaTypes + "]";
			
 
				 	}
			
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/OrServerWebExchangeMatcher.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/OrServerWebExchangeMatcher.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/PathPatternParserServerWebExchangeMatcher.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/PathPatternParserServerWebExchangeMatcher.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatcher.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatcher.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatcherEntry.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatcherEntry.java
--- a/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatchers.java
+++ b/webflux/src/main/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatchers.java
--- a/webflux/src/test/java/org/springframework/security/test/web/reactive/server/WebTestClientBuilder.java
+++ b/webflux/src/test/java/org/springframework/security/test/web/reactive/server/WebTestClientBuilder.java
--- a/webflux/src/test/java/org/springframework/security/test/web/reactive/server/WebTestHandler.java
+++ b/webflux/src/test/java/org/springframework/security/test/web/reactive/server/WebTestHandler.java
--- a/webflux/src/test/java/org/springframework/security/web/method/ResolvableMethod.java
+++ b/webflux/src/test/java/org/springframework/security/web/method/ResolvableMethod.java
--- a/webflux/src/test/java/org/springframework/security/web/reactive/result/method/annotation/AuthenticationPrincipalArgumentResolverTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/reactive/result/method/annotation/AuthenticationPrincipalArgumentResolverTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/DefaultServerRedirectStrategyTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/DefaultServerRedirectStrategyTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/DelegatingServerAuthenticationEntryPointTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/DelegatingServerAuthenticationEntryPointTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/ServerFormLoginAuthenticationConverterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/ServerFormLoginAuthenticationConverterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/ServerHttpBasicAuthenticationConverterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/ServerHttpBasicAuthenticationConverterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/WebFilterExchangeTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/WebFilterExchangeTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authentication/AuthenticationWebFilterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authentication/AuthenticationWebFilterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authentication/HttpBasicServerAuthenticationEntryPointTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authentication/HttpBasicServerAuthenticationEntryPointTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationEntryPointTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationEntryPointTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationSuccessHandlerTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authentication/RedirectServerAuthenticationSuccessHandlerTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authentication/ServerAuthenticationEntryPointFailureHandlerTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authentication/ServerAuthenticationEntryPointFailureHandlerTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authorization/DelegatingReactiveAuthorizationManagerTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authorization/DelegatingReactiveAuthorizationManagerTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authorization/ExceptionTranslationWebFilterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authorization/ExceptionTranslationWebFilterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/authorization/HttpStatusServerAccessDeniedHandlerTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/authorization/HttpStatusServerAccessDeniedHandlerTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/context/AuthenticationReactorContextWebFilterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/context/AuthenticationReactorContextWebFilterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/context/ServerSecurityContextRepositoryWebFilterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/context/ServerSecurityContextRepositoryWebFilterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/context/ServerWebExchangeAttributeServerSecurityContextRepositoryTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/context/ServerWebExchangeAttributeServerSecurityContextRepositoryTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/CacheControlServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/CacheControlServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/CompositeServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/CompositeServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/HttpHeaderWriterWebFilterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/HttpHeaderWriterWebFilterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/StaticServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/StaticServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/StrictTransportSecurityServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/StrictTransportSecurityServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/XContentTypeOptionsServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/XContentTypeOptionsServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/XFrameOptionsServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/XFrameOptionsServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/header/XXssProtectionServerHttpHeadersWriterTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/header/XXssProtectionServerHttpHeadersWriterTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/util/matcher/AndServerWebExchangeMatcherTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/util/matcher/AndServerWebExchangeMatcherTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/util/matcher/MediaTypeServerWebExchangeMatcherTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/util/matcher/MediaTypeServerWebExchangeMatcherTests.java
@@ -16,34 +16,23 @@
 
				 
			
 
				 package org.springframework.security.web.server.util.matcher;
			
 
				 
			
 
				-import java.util.Arrays;
			
 
				 import java.util.Collections;
			
 
				 import java.util.List;
			
 
				 
			
 
				 import org.junit.Test;
			
 
				-import org.junit.runner.RunWith;
			
 
				-import org.mockito.Mock;
			
 
				-import org.mockito.junit.MockitoJUnitRunner;
			
 
				 
			
 
				 import org.springframework.http.MediaType;
			
 
				 import org.springframework.mock.http.server.reactive.MockServerHttpRequest;
			
 
				 import org.springframework.mock.web.server.MockServerWebExchange;
			
 
				-import org.springframework.web.reactive.accept.RequestedContentTypeResolver;
			
 
				 import org.springframework.web.server.ServerWebExchange;
			
 
				 
			
 
				 import static org.assertj.core.api.Assertions.assertThat;
			
 
				-import static org.mockito.Matchers.any;
			
 
				-import static org.mockito.Mockito.when;
			
 
				 
			
 
				 /**
			
 
				  * @author Rob Winch
			
 
				  * @since 5.0
			
 
				  */
			
 
				-@RunWith(MockitoJUnitRunner.class)
			
 
				 public class MediaTypeServerWebExchangeMatcherTests {
			
 
				-	@Mock
			
 
				-	private RequestedContentTypeResolver resolver;
			
 
				-
			
 
				 	private MediaTypeServerWebExchangeMatcher matcher;
			
 
				 
			
 
				 	@Test(expected = IllegalArgumentException.class)
			
@@ -111,26 +100,6 @@ public class MediaTypeServerWebExchangeMatcherTests {
 
				 		assertThat(matcher.matches(exchange(MediaType.TEXT_HTML)).block().isMatch()).isFalse();
			
 
				 	}
			
 
				 
			
 
				-	@Test
			
 
				-	public void matchWhenCustomResolverAndAcceptEqualThenMatch() {
			
 
				-		MediaType acceptType = MediaType.TEXT_HTML;
			
 
				-		when(this.resolver.resolveMediaTypes(any())).thenReturn(Arrays.asList(acceptType));
			
 
				-		MediaTypeServerWebExchangeMatcher matcher = new MediaTypeServerWebExchangeMatcher(acceptType);
			
 
				-		matcher.setRequestedContentTypeResolver(this.resolver);
			
 
				-
			
 
				-		assertThat(matcher.matches(exchange(acceptType)).block().isMatch()).isTrue();
			
 
				-	}
			
 
				-
			
 
				-	@Test
			
 
				-	public void matchWhenCustomResolverAndDifferentAcceptThenNotMatch() {
			
 
				-		MediaType acceptType = MediaType.TEXT_HTML;
			
 
				-		when(this.resolver.resolveMediaTypes(any())).thenReturn(Arrays.asList(acceptType));
			
 
				-		MediaTypeServerWebExchangeMatcher matcher = new MediaTypeServerWebExchangeMatcher(MediaType.APPLICATION_JSON);
			
 
				-		matcher.setRequestedContentTypeResolver(this.resolver);
			
 
				-
			
 
				-		assertThat(matcher.matches(exchange(acceptType)).block().isMatch()).isFalse();
			
 
				-	}
			
 
				-
			
 
				 	private static ServerWebExchange exchange(MediaType... accept) {
			
 
				 		return MockServerWebExchange.from(MockServerHttpRequest.get("/").accept(accept).build());
			
 
				 	}
			
--- a/webflux/src/test/java/org/springframework/security/web/server/util/matcher/OrServerWebExchangeMatcherTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/util/matcher/OrServerWebExchangeMatcherTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/util/matcher/PathMatcherServerWebExchangeMatcherTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/util/matcher/PathMatcherServerWebExchangeMatcherTests.java
--- a/webflux/src/test/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatchersTests.java
+++ b/webflux/src/test/java/org/springframework/security/web/server/util/matcher/ServerWebExchangeMatchersTests.java
--- a/webflux/spring-security-webflux.gradle
+++ b/webflux/spring-security-webflux.gradle
@@ -1,13 +0,0 @@
 
				-apply plugin: 'io.spring.convention.spring-module'
			
 
				-
			
 
				-dependencies {
			
 
				-	compile project(':spring-security-core')
			
 
				-	compile project(':spring-security-web')
			
 
				-	compile 'org.springframework:spring-webflux'
			
 
				-
			
 
				-	testCompile 'io.projectreactor:reactor-test'
			
 
				-	testCompile 'org.springframework:spring-test'
			
 
				-
			
 
				-	integrationTestCompile 'com.squareup.okhttp3:mockwebserver'
			
 
				-	integrationTestCompile 'io.projectreactor.ipc:reactor-netty'
			
 
				-}
			
--- a/webflux/src/integration-test/java/webclient/oauth2/poc/WebClientOAuth2PocTests.java
+++ b/webflux/src/integration-test/java/webclient/oauth2/poc/WebClientOAuth2PocTests.java
@@ -1,105 +0,0 @@
 
				-/*
			
 
				- * Copyright 2002-2017 the original author or authors.
			
 
				- *
			
 
				- * Licensed under the Apache License, Version 2.0 (the "License");
			
 
				- * you may not use this file except in compliance with the License.
			
 
				- * You may obtain a copy of the License at
			
 
				- *
			
 
				- *      http://www.apache.org/licenses/LICENSE-2.0
			
 
				- *
			
 
				- * Unless required by applicable law or agreed to in writing, software
			
 
				- * distributed under the License is distributed on an "AS IS" BASIS,
			
 
				- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
			
 
				- * See the License for the specific language governing permissions and
			
 
				- * limitations under the License.
			
 
				- */
			
 
				-
			
 
				-package webclient.oauth2.poc;
			
 
				-
			
 
				-import okhttp3.mockwebserver.MockResponse;
			
 
				-import okhttp3.mockwebserver.MockWebServer;
			
 
				-import org.junit.After;
			
 
				-import org.junit.Before;
			
 
				-import org.junit.Test;
			
 
				-import org.springframework.http.HttpStatus;
			
 
				-import org.springframework.web.reactive.function.client.ClientRequest;
			
 
				-import org.springframework.web.reactive.function.client.ClientResponse;
			
 
				-import org.springframework.web.reactive.function.client.ExchangeFilterFunction;
			
 
				-import org.springframework.web.reactive.function.client.WebClient;
			
 
				-import reactor.core.publisher.Mono;
			
 
				-
			
 
				-import static org.assertj.core.api.Assertions.assertThat;
			
 
				-import static org.springframework.web.reactive.function.client.ExchangeFilterFunctions.basicAuthentication;
			
 
				-
			
 
				-/**
			
 
				- * @author Rob Winch
			
 
				- * @since 5.0
			
 
				- */
			
 
				-public class WebClientOAuth2PocTests {
			
 
				-
			
 
				-	private MockWebServer server;
			
 
				-
			
 
				-	private WebClient webClient;
			
 
				-
			
 
				-
			
 
				-	@Before
			
 
				-	public void setup() {
			
 
				-		this.server = new MockWebServer();
			
 
				-		String baseUrl = this.server.url("/").toString();
			
 
				-		this.webClient = WebClient.create(baseUrl);
			
 
				-	}
			
 
				-
			
 
				-	@After
			
 
				-	public void shutdown() throws Exception {
			
 
				-		this.server.shutdown();
			
 
				-	}
			
 
				-
			
 
				-	@Test
			
 
				-	public void httpBasicWhenNeeded() throws Exception {
			
 
				-		this.server.enqueue(new MockResponse().setResponseCode(401).setHeader("WWW-Authenticate", "Basic realm=\"Test\""));
			
 
				-		this.server.enqueue(new MockResponse().setResponseCode(200).setBody("OK"));
			
 
				-
			
 
				-		ClientResponse response = this.webClient
			
 
				-			.mutate()
			
 
				-			.filter(basicIfNeeded("rob", "rob"))
			
 
				-			.build()
			
 
				-			.get()
			
 
				-			.uri("/")
			
 
				-			.exchange()
			
 
				-			.block();
			
 
				-
			
 
				-		assertThat(response.statusCode()).isEqualTo(HttpStatus.OK);
			
 
				-
			
 
				-		assertThat(this.server.takeRequest().getHeader("Authorization")).isNull();
			
 
				-		assertThat(this.server.takeRequest().getHeader("Authorization")).isEqualTo("Basic cm9iOnJvYg==");
			
 
				-	}
			
 
				-
			
 
				-
			
 
				-	@Test
			
 
				-	public void httpBasicWhenNotNeeded() throws Exception {
			
 
				-		this.server.enqueue(new MockResponse().setResponseCode(200).setBody("OK"));
			
 
				-
			
 
				-		ClientResponse response = this.webClient
			
 
				-			.mutate()
			
 
				-			.filter(basicIfNeeded("rob", "rob"))
			
 
				-			.build()
			
 
				-			.get()
			
 
				-			.uri("/")
			
 
				-			.exchange()
			
 
				-			.block();
			
 
				-
			
 
				-		assertThat(response.statusCode()).isEqualTo(HttpStatus.OK);
			
 
				-
			
 
				-		assertThat(this.server.getRequestCount()).isEqualTo(1);
			
 
				-		assertThat(this.server.takeRequest().getHeader("Authorization")).isNull();
			
 
				-	}
			
 
				-
			
 
				-	private ExchangeFilterFunction basicIfNeeded(String username, String password) {
			
 
				-		return (request, next) ->
			
 
				-			next.exchange(request)
			
 
				-				.filter( r -> !HttpStatus.UNAUTHORIZED.equals(r.statusCode()))
			
 
				-				.switchIfEmpty( Mono.defer(() -> {
			
 
				-					return basicAuthentication(username, password).filter(request, next);
			
 
				-				}));
			
 
				-	}
			
 
				-}
			
--- a/webflux/src/test/resources/logback-test.xml
+++ b/webflux/src/test/resources/logback-test.xml
@@ -1,15 +0,0 @@
 
				-<configuration>
			
 
				-	<appender name="STDOUT" class="ch.qos.logback.core.ConsoleAppender">
			
 
				-	<encoder>
			
 
				-		<pattern>%d{HH:mm:ss.SSS} [%thread] %-5level %logger{36} - %msg%n</pattern>
			
 
				-	</encoder>
			
 
				-	</appender>
			
 
				-
			
 
				-	<logger name="org.springframework.security" level="${sec.log.level:-WARN}"/>
			
 
				-
			
 
				-
			
 
				-	<root level="${root.level:-WARN}">
			
 
				-	<appender-ref ref="STDOUT" />
			
 
				-	</root>
			
 
				-
			
 
				-</configuration>