|
|
|
|
@ -16,73 +16,101 @@
@@ -16,73 +16,101 @@
|
|
|
|
|
|
|
|
|
|
package org.springframework.security.oauth2.server.authorization.jackson2; |
|
|
|
|
|
|
|
|
|
import java.util.Arrays; |
|
|
|
|
import java.util.Collections; |
|
|
|
|
import java.util.HashMap; |
|
|
|
|
import java.util.HashSet; |
|
|
|
|
import java.util.LinkedHashSet; |
|
|
|
|
import java.security.Principal; |
|
|
|
|
import java.util.List; |
|
|
|
|
import java.util.Map; |
|
|
|
|
import java.util.Set; |
|
|
|
|
|
|
|
|
|
import com.fasterxml.jackson.core.type.TypeReference; |
|
|
|
|
import com.fasterxml.jackson.databind.Module; |
|
|
|
|
import com.fasterxml.jackson.databind.ObjectMapper; |
|
|
|
|
import org.junit.jupiter.api.BeforeEach; |
|
|
|
|
import org.junit.jupiter.api.Test; |
|
|
|
|
|
|
|
|
|
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; |
|
|
|
|
import org.springframework.security.core.Authentication; |
|
|
|
|
import org.springframework.security.jackson2.SecurityJackson2Modules; |
|
|
|
|
import org.springframework.security.oauth2.jose.jws.MacAlgorithm; |
|
|
|
|
import org.springframework.security.oauth2.jwt.JwtClaimNames; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.OAuth2Authorization; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.TestOAuth2Authorizations; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.authentication.OAuth2TokenExchangeActor; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.authentication.OAuth2TokenExchangeCompositeAuthenticationToken; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.settings.ClientSettings; |
|
|
|
|
import org.springframework.security.oauth2.server.authorization.settings.TokenSettings; |
|
|
|
|
|
|
|
|
|
import static org.assertj.core.api.Assertions.assertThat; |
|
|
|
|
|
|
|
|
|
/** |
|
|
|
|
* Tests for {@link OAuth2AuthorizationServerJackson2Module}. |
|
|
|
|
* |
|
|
|
|
* @author Steve Riesenberg |
|
|
|
|
* @author Joe Grandja |
|
|
|
|
*/ |
|
|
|
|
public class OAuth2AuthorizationServerJackson2ModuleTests { |
|
|
|
|
|
|
|
|
|
private static final TypeReference<Map<String, Object>> STRING_OBJECT_MAP = new TypeReference<>() { |
|
|
|
|
}; |
|
|
|
|
|
|
|
|
|
private static final TypeReference<Set<String>> STRING_SET = new TypeReference<>() { |
|
|
|
|
}; |
|
|
|
|
|
|
|
|
|
private static final TypeReference<String[]> STRING_ARRAY = new TypeReference<>() { |
|
|
|
|
}; |
|
|
|
|
|
|
|
|
|
private ObjectMapper objectMapper; |
|
|
|
|
|
|
|
|
|
@BeforeEach |
|
|
|
|
public void setup() { |
|
|
|
|
this.objectMapper = new ObjectMapper(); |
|
|
|
|
ClassLoader classLoader = OAuth2AuthorizationServerJackson2Module.class.getClassLoader(); |
|
|
|
|
List<Module> securityModules = SecurityJackson2Modules.getModules(classLoader); |
|
|
|
|
this.objectMapper.registerModules(securityModules); |
|
|
|
|
this.objectMapper.registerModule(new OAuth2AuthorizationServerJackson2Module()); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
@Test |
|
|
|
|
public void readValueWhenUnmodifiableMapThenSuccess() throws Exception { |
|
|
|
|
Map<String, Object> map = Collections.unmodifiableMap(new HashMap<>(Collections.singletonMap("key", "value"))); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(map); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_OBJECT_MAP)).isEqualTo(map); |
|
|
|
|
public void readValueWhenOAuth2AuthorizationAttributesThenSuccess() throws Exception { |
|
|
|
|
Authentication principal = new UsernamePasswordAuthenticationToken("principal", "credentials"); |
|
|
|
|
OAuth2Authorization authorization = TestOAuth2Authorizations.authorization() |
|
|
|
|
.attributes(attrs -> attrs.put(Principal.class.getName(), principal)) |
|
|
|
|
.build(); |
|
|
|
|
Map<String, Object> attributes = authorization.getAttributes(); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(attributes); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_OBJECT_MAP)).isEqualTo(attributes); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
@Test |
|
|
|
|
public void readValueWhenOAuth2AccessTokenMetadataThenSuccess() throws Exception { |
|
|
|
|
OAuth2Authorization authorization = TestOAuth2Authorizations.authorization().build(); |
|
|
|
|
Map<String, Object> metadata = authorization.getAccessToken().getMetadata(); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(metadata); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_OBJECT_MAP)).isEqualTo(metadata); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
@Test |
|
|
|
|
public void readValueWhenHashSetThenSuccess() throws Exception { |
|
|
|
|
Set<String> set = new HashSet<>(Arrays.asList("one", "two")); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(set); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_SET)).isEqualTo(set); |
|
|
|
|
public void readValueWhenClientSettingsThenSuccess() throws Exception { |
|
|
|
|
ClientSettings clientSettings = ClientSettings.builder() |
|
|
|
|
.tokenEndpointAuthenticationSigningAlgorithm(MacAlgorithm.HS256) |
|
|
|
|
.build(); |
|
|
|
|
Map<String, Object> clientSettingsMap = clientSettings.getSettings(); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(clientSettingsMap); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_OBJECT_MAP)).isEqualTo(clientSettingsMap); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
// gh-457
|
|
|
|
|
@Test |
|
|
|
|
public void readValueWhenLinkedHashSetThenSuccess() throws Exception { |
|
|
|
|
Set<String> set = new LinkedHashSet<>(Arrays.asList("one", "two")); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(set); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_SET)).isEqualTo(set); |
|
|
|
|
public void readValueWhenTokenSettingsThenSuccess() throws Exception { |
|
|
|
|
TokenSettings tokenSettings = TokenSettings.builder().build(); |
|
|
|
|
Map<String, Object> tokenSettingsMap = tokenSettings.getSettings(); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(tokenSettingsMap); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_OBJECT_MAP)).isEqualTo(tokenSettingsMap); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
// gh-1666
|
|
|
|
|
@Test |
|
|
|
|
public void readValueWhenStringArrayThenSuccess() throws Exception { |
|
|
|
|
String[] array = new String[] { "one", "two" }; |
|
|
|
|
String json = this.objectMapper.writeValueAsString(array); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, STRING_ARRAY)).isEqualTo(array); |
|
|
|
|
public void readValueWhenOAuth2TokenExchangeCompositeAuthenticationTokenThenSuccess() throws Exception { |
|
|
|
|
Authentication subject = new UsernamePasswordAuthenticationToken("principal", "credentials"); |
|
|
|
|
OAuth2TokenExchangeActor actor1 = new OAuth2TokenExchangeActor( |
|
|
|
|
Map.of(JwtClaimNames.ISS, "issuer-1", JwtClaimNames.SUB, "actor1")); |
|
|
|
|
OAuth2TokenExchangeActor actor2 = new OAuth2TokenExchangeActor( |
|
|
|
|
Map.of(JwtClaimNames.ISS, "issuer-2", JwtClaimNames.SUB, "actor2")); |
|
|
|
|
OAuth2TokenExchangeCompositeAuthenticationToken authentication = new OAuth2TokenExchangeCompositeAuthenticationToken( |
|
|
|
|
subject, List.of(actor1, actor2)); |
|
|
|
|
String json = this.objectMapper.writeValueAsString(authentication); |
|
|
|
|
assertThat(this.objectMapper.readValue(json, OAuth2TokenExchangeCompositeAuthenticationToken.class)) |
|
|
|
|
.isEqualTo(authentication); |
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
} |
|
|
|
|
|
Joe Grandja
2 months ago