Home Esplora Aiuto
Registrati Accedi
github
/
spring-security
mirror da https://github.com/spring-projects/spring-security
2
0
Forka 0
File Problemi 0 Wiki
Sfoglia il codice sorgente

Register NullRequestCache When Disabled

Fixes: gh-6102
Josh Cummings 6 anni fa
parent
42b8b794a8
commit
db145fa03f
2 ha cambiato i file con 29 aggiunte e 0 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 7 0
      config/src/main/java/org/springframework/security/config/annotation/web/configurers/RequestCacheConfigurer.java
  2. 22 0
      config/src/test/java/org/springframework/security/config/annotation/web/configurers/RequestCacheConfigurerTests.java

+ 7 - 0
config/src/main/java/org/springframework/security/config/annotation/web/configurers/RequestCacheConfigurer.java
Vedi File 

@@ -25,6 +25,7 @@ import org.springframework.http.MediaType;
 
 import org.springframework.security.config.annotation.web.HttpSecurityBuilder;
 
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 
 import org.springframework.security.web.savedrequest.HttpSessionRequestCache;
 
+import org.springframework.security.web.savedrequest.NullRequestCache;
 
 import org.springframework.security.web.savedrequest.RequestCache;
 
 import org.springframework.security.web.savedrequest.RequestCacheAwareFilter;
 
 import org.springframework.security.web.util.matcher.AndRequestMatcher;
 
@@ -87,6 +88,12 @@ public final class RequestCacheConfigurer<H extends HttpSecurityBuilder<H>> exte
 
 		return this;
 
 	}
 
 
+	@Override
 
+	public H disable() {
 
+		getBuilder().setSharedObject(RequestCache.class, new NullRequestCache());
 
+		return super.disable();
 
+	}
 
+
 
 	@Override
 
 	public void init(H http) throws Exception {
 
 		http.setSharedObject(RequestCache.class, getRequestCache(http));

+ 22 - 0
config/src/test/java/org/springframework/security/config/annotation/web/configurers/RequestCacheConfigurerTests.java
Vedi File 

@@ -249,6 +249,28 @@ public class RequestCacheConfigurerTests {
 
 		}
 
 	}
 
 
+	// gh-6102
 
+	@Test
 
+	public void getWhenRequestCacheIsDisabledThenExceptionTranslationFilterDoesNotStoreRequest() throws Exception {
 
+		this.spring.register(RequestCacheDisabledConfig.class, DefaultSecurityConfig.class).autowire();
 
+
 
+		MockHttpSession session = (MockHttpSession)
 
+				this.mvc.perform(get("/bob"))
 
+						.andReturn().getRequest().getSession();
 
+
 
+		this.mvc.perform(formLogin(session))
 
+				.andExpect(redirectedUrl("/"));
 
+	}
 
+
 
+	@EnableWebSecurity
 
+	static class RequestCacheDisabledConfig extends WebSecurityConfigurerAdapter {
 
+		@Override
 
+		protected void configure(HttpSecurity http) throws Exception {
 
+			super.configure(http);
 
+			http.requestCache().disable();
 
+		}
 
+	}
 
+
 
 	@EnableWebSecurity
 
 	static class DefaultSecurityConfig {