Package org.springframework.security.test.context.support

Source Code of org.springframework.security.test.context.support.WithSecurityContextTestExecutionListener

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
/*
* Copyright 2002-2014 the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*      http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.springframework.security.test.context.support;

import java.lang.annotation.Annotation;

import org.springframework.context.ApplicationContext;
import org.springframework.core.annotation.AnnotationUtils;
import org.springframework.core.annotation.Order;
import org.springframework.security.core.context.SecurityContext;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.test.context.TestSecurityContextHolder;
import org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors;
import org.springframework.test.context.TestContext;
import org.springframework.test.context.TestExecutionListener;
import org.springframework.test.context.support.AbstractTestExecutionListener;
import org.springframework.test.context.support.DependencyInjectionTestExecutionListener;
import org.springframework.test.web.servlet.MockMvc;

/**
* A {@link TestExecutionListener} that will find annotations that are annotated
* with {@link WithSecurityContext} on a test method or at the class level. If found, the
* {@link WithSecurityContext#factory()} is used to create a {@link SecurityContext} that
* will be used with this test. If using with {@link MockMvc} the
* {@link SecurityMockMvcRequestPostProcessors#testSecurityContext()} needs to be used
* too.
*
* @author Rob Winch
* @since 4.0
*/
@Order(1000)
public class WithSecurityContextTestExecutionListener extends
        AbstractTestExecutionListener {

    /**
     * Sets up the {@link SecurityContext} for each test method. First the
     * specific method is inspected for a {@link WithSecurityContext} or {@link Annotation}
     * that has {@link WithSecurityContext} on it. If that is not found, the class is
     * inspected. If still not found, then no {@link SecurityContext} is
     * populated.
     */
    @Override
    public void beforeTestMethod(TestContext testContext) throws Exception {
        Annotation[] methodAnnotations = AnnotationUtils
                .getAnnotations(testContext.getTestMethod());
        ApplicationContext context = testContext.getApplicationContext();
        SecurityContext securityContext = createSecurityContext(
                methodAnnotations, context);
        if (securityContext == null) {
            Annotation[] classAnnotations = testContext.getTestClass()
                    .getAnnotations();
            securityContext = createSecurityContext(classAnnotations, context);
        }
        if (securityContext != null) {
            TestSecurityContextHolder.setContext(securityContext);
        }
    }

    @SuppressWarnings({ "rawtypes", "unchecked" })
    private SecurityContext createSecurityContext(Annotation[] annotations,
            ApplicationContext context) {
        for (Annotation a : annotations) {
            WithSecurityContext withUser = AnnotationUtils.findAnnotation(
                    a.annotationType(), WithSecurityContext.class);
            if (withUser != null) {
                WithSecurityContextFactory factory = createFactory(
                        withUser, context);
                try {
                    return factory.createSecurityContext(a);
                } catch (RuntimeException e) {
                    throw new IllegalStateException("Unable to create SecurityContext using "+ a, e);
                }
            }
        }
        return null;
    }

    private WithSecurityContextFactory<? extends Annotation> createFactory(
            WithSecurityContext withUser, ApplicationContext context) {
        Class<? extends WithSecurityContextFactory<? extends Annotation>> clazz = withUser
                .factory();
        try {
            return context.getAutowireCapableBeanFactory().createBean(clazz);
        } catch (Exception e) {
            throw new RuntimeException(e);
        }
    }

    /**
     * Clears out the {@link TestSecurityContextHolder} and the
     * {@link SecurityContextHolder} after each test method.
     */
    @Override
    public void afterTestMethod(TestContext testContext) throws Exception {
        TestSecurityContextHolder.clearContext();
    }
}
TOP

Related Classes of org.springframework.security.test.context.support.WithSecurityContextTestExecutionListener

  • org.springframework.context.ApplicationContext
  • org.springframework.security.core.context.SecurityContext
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.