首页 发现 帮助
注册 登录
github
/
spring-security
镜像自地址 https://github.com/spring-projects/spring-security
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Throw exception if URL does not include context path when context relative

Issue: gh-8399
Astushi Yoshikawa 5 年之前
父节点
dc514b369e
当前提交
f08ca4e688
共有 2 个文件被更改,包括 3 次插入5 次删除
分列视图 显示文件统计
  1. 1 1
      web/src/main/java/org/springframework/security/web/DefaultRedirectStrategy.java
  2. 2 4
      web/src/test/java/org/springframework/security/web/DefaultRedirectStrategyTests.java

+ 1 - 1
web/src/main/java/org/springframework/security/web/DefaultRedirectStrategy.java
查看文件 

@@ -74,7 +74,7 @@ public class DefaultRedirectStrategy implements RedirectStrategy {
 
 		}
 
 
 		if (!url.contains(contextPath)) {
 
-			return "";
 
+			throw new IllegalArgumentException("The fully qualified URL does not include context path.");
 
 		}
 
 
 		// Calculate the relative URL from the fully qualified URL, minus the last

+ 2 - 4
web/src/test/java/org/springframework/security/web/DefaultRedirectStrategyTests.java
查看文件 

@@ -57,8 +57,8 @@ public class DefaultRedirectStrategyTests {
 
 		assertThat(response.getRedirectedUrl()).isEqualTo("remainder");
 
 	}
 
 
-	@Test
 
-	public void contextRelativeShouldRedirectToRootIfURLDoesNotContainContextPath()
 
+	@Test(expected = IllegalArgumentException.class)
 
+	public void contextRelativeShouldThrowExceptionIfURLDoesNotContainContextPath()
 
 		throws Exception {
 
 		DefaultRedirectStrategy rds = new DefaultRedirectStrategy();
 
 		rds.setContextRelative(true);
 
@@ -68,7 +68,5 @@ public class DefaultRedirectStrategyTests {
 
 
 		rds.sendRedirect(request, response,
 
 			"https://redirectme.somewhere.else");
 
-
 
-		assertThat(response.getRedirectedUrl()).isEqualTo("");
 
 	}
 
 }