GitHub-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Add RelyingPartyRegstration#mutate 

Closes gh-12841
pull/12882/head
Josh Cummings 3 years ago
parent
97d1a49daf
commit
538db29bfe
3 changed files with 57 additions and 18 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 59
      saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistration.java
  2. 4
      saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/web/DefaultRelyingPartyRegistrationResolver.java
  3. 12
      saml2/saml2-service-provider/src/test/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistrationTests.java

59
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistration.java
Unescape View File

@ -130,6 +130,35 @@ public final class RelyingPartyRegistration {
this.signingX509Credentials = Collections.unmodifiableList(new LinkedList<>(signingX509Credentials)); this.signingX509Credentials = Collections.unmodifiableList(new LinkedList<>(signingX509Credentials));
} }
/**
* Copy the properties in this {@link RelyingPartyRegistration} into a {@link Builder}
* @return a {@link Builder} based off of the properties in this
* {@link RelyingPartyRegistration}
* @since 6.1
*/
public Builder mutate() {
AssertingPartyDetails party = this.assertingPartyDetails;
return withRegistrationId(this.registrationId).entityId(this.entityId)
.signingX509Credentials((c) -> c.addAll(this.signingX509Credentials))
.decryptionX509Credentials((c) -> c.addAll(this.decryptionX509Credentials))
.assertionConsumerServiceLocation(this.assertionConsumerServiceLocation)
.assertionConsumerServiceBinding(this.assertionConsumerServiceBinding)
.singleLogoutServiceLocation(this.singleLogoutServiceLocation)
.singleLogoutServiceResponseLocation(this.singleLogoutServiceResponseLocation)
.singleLogoutServiceBindings((c) -> c.addAll(this.singleLogoutServiceBindings))
.nameIdFormat(this.nameIdFormat)
.assertingPartyDetails((assertingParty) -> assertingParty.entityId(party.getEntityId())
.wantAuthnRequestsSigned(party.getWantAuthnRequestsSigned())
.signingAlgorithms((algorithms) -> algorithms.addAll(party.getSigningAlgorithms()))
.verificationX509Credentials((c) -> c.addAll(party.getVerificationX509Credentials()))
.encryptionX509Credentials((c) -> c.addAll(party.getEncryptionX509Credentials()))
.singleSignOnServiceLocation(party.getSingleSignOnServiceLocation())
.singleSignOnServiceBinding(party.getSingleSignOnServiceBinding())
.singleLogoutServiceLocation(party.getSingleLogoutServiceLocation())
.singleLogoutServiceResponseLocation(party.getSingleLogoutServiceResponseLocation())
.singleLogoutServiceBinding(party.getSingleLogoutServiceBinding()));
}
/** /**
* Get the unique registration id for this RP/AP pair * Get the unique registration id for this RP/AP pair
* @return the unique registration id for this RP/AP pair * @return the unique registration id for this RP/AP pair
@ -292,7 +321,7 @@ public final class RelyingPartyRegistration {
*/ */
public static Builder withRegistrationId(String registrationId) { public static Builder withRegistrationId(String registrationId) {
Assert.hasText(registrationId, "registrationId cannot be empty"); Assert.hasText(registrationId, "registrationId cannot be empty");
return new Builder(registrationId); return new Builder(registrationId, new AssertingPartyDetails.Builder());
} }
public static Builder withAssertingPartyDetails(AssertingPartyDetails assertingPartyDetails) { public static Builder withAssertingPartyDetails(AssertingPartyDetails assertingPartyDetails) {
@ -315,7 +344,9 @@ public final class RelyingPartyRegistration {
* object * object
* @param registration the {@code RelyingPartyRegistration} * @param registration the {@code RelyingPartyRegistration}
* @return {@code Builder} to create a {@code RelyingPartyRegistration} object * @return {@code Builder} to create a {@code RelyingPartyRegistration} object
* @deprecated Use {@link #mutate()} instead
*/ */
@Deprecated(forRemoval = true, since = "6.1")
public static Builder withRelyingPartyRegistration(RelyingPartyRegistration registration) { public static Builder withRelyingPartyRegistration(RelyingPartyRegistration registration) {
Assert.notNull(registration, "registration cannot be null"); Assert.notNull(registration, "registration cannot be null");
return withRegistrationId(registration.getRegistrationId()).entityId(registration.getEntityId()) return withRegistrationId(registration.getRegistrationId()).entityId(registration.getEntityId())
@ -736,9 +767,9 @@ public final class RelyingPartyRegistration {
} }
public static final class Builder { public static class Builder {
private Converter<AssertingPartyDetails, String> registrationId = AssertingPartyDetails::getEntityId; private String registrationId;
private String entityId = "{baseUrl}/saml2/service-provider-metadata/{registrationId}"; private String entityId = "{baseUrl}/saml2/service-provider-metadata/{registrationId}";
@ -760,13 +791,9 @@ public final class RelyingPartyRegistration {
private AssertingPartyDetails.Builder assertingPartyDetailsBuilder; private AssertingPartyDetails.Builder assertingPartyDetailsBuilder;
private Builder(String registrationId) { protected Builder(String registrationId, AssertingPartyDetails.Builder assertingPartyDetailsBuilder) {
this.registrationId = (party) -> registrationId; this.registrationId = registrationId;
this.assertingPartyDetailsBuilder = new AssertingPartyDetails.Builder(); this.assertingPartyDetailsBuilder = assertingPartyDetailsBuilder;
}
Builder(AssertingPartyDetails.Builder builder) {
this.assertingPartyDetailsBuilder = builder;
} }
/** /**
@ -775,7 +802,7 @@ public final class RelyingPartyRegistration {
* @return this object * @return this object
*/ */
public Builder registrationId(String id) { public Builder registrationId(String id) {
this.registrationId = (party) -> id; this.registrationId = id;
return this; return this;
} }
@ -974,11 +1001,11 @@ public final class RelyingPartyRegistration {
} }
AssertingPartyDetails party = this.assertingPartyDetailsBuilder.build(); AssertingPartyDetails party = this.assertingPartyDetailsBuilder.build();
String registrationId = this.registrationId.convert(party); return new RelyingPartyRegistration(this.registrationId, this.entityId,
return new RelyingPartyRegistration(registrationId, this.entityId, this.assertionConsumerServiceLocation, this.assertionConsumerServiceLocation, this.assertionConsumerServiceBinding,
this.assertionConsumerServiceBinding, this.singleLogoutServiceLocation, this.singleLogoutServiceLocation, this.singleLogoutServiceResponseLocation,
this.singleLogoutServiceResponseLocation, this.singleLogoutServiceBindings, party, this.singleLogoutServiceBindings, party, this.nameIdFormat, this.decryptionX509Credentials,
this.nameIdFormat, this.decryptionX509Credentials, this.signingX509Credentials); this.signingX509Credentials);
} }
} }

4
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/web/DefaultRelyingPartyRegistrationResolver.java
Unescape View File

@ -101,8 +101,8 @@ public final class DefaultRelyingPartyRegistrationResolver
.apply(relyingPartyRegistration.getSingleLogoutServiceLocation()); .apply(relyingPartyRegistration.getSingleLogoutServiceLocation());
String singleLogoutServiceResponseLocation = templateResolver String singleLogoutServiceResponseLocation = templateResolver
.apply(relyingPartyRegistration.getSingleLogoutServiceResponseLocation()); .apply(relyingPartyRegistration.getSingleLogoutServiceResponseLocation());
return RelyingPartyRegistration.withRelyingPartyRegistration(relyingPartyRegistration) return relyingPartyRegistration.mutate().entityId(relyingPartyEntityId)
.entityId(relyingPartyEntityId).assertionConsumerServiceLocation(assertionConsumerServiceLocation) .assertionConsumerServiceLocation(assertionConsumerServiceLocation)
.singleLogoutServiceLocation(singleLogoutServiceLocation) .singleLogoutServiceLocation(singleLogoutServiceLocation)
.singleLogoutServiceResponseLocation(singleLogoutServiceResponseLocation).build(); .singleLogoutServiceResponseLocation(singleLogoutServiceResponseLocation).build();
} }

12
saml2/saml2-service-provider/src/test/java/org/springframework/security/saml2/provider/service/registration/RelyingPartyRegistrationTests.java
Unescape View File

@ -38,6 +38,18 @@ public class RelyingPartyRegistrationTests {
compareRegistrations(registration, copy); compareRegistrations(registration, copy);
} }
@Test
void mutateWhenInvokedThenCreatesCopy() {
RelyingPartyRegistration registration = TestRelyingPartyRegistrations.relyingPartyRegistration()
.nameIdFormat("format")
.assertingPartyDetails((a) -> a.singleSignOnServiceBinding(Saml2MessageBinding.POST))
.assertingPartyDetails((a) -> a.wantAuthnRequestsSigned(false))
.assertingPartyDetails((a) -> a.signingAlgorithms((algs) -> algs.add("alg")))
.assertionConsumerServiceBinding(Saml2MessageBinding.REDIRECT).build();
RelyingPartyRegistration copy = registration.mutate().build();
compareRegistrations(registration, copy);
}
private void compareRegistrations(RelyingPartyRegistration registration, RelyingPartyRegistration copy) { private void compareRegistrations(RelyingPartyRegistration registration, RelyingPartyRegistration copy) {
assertThat(copy.getRegistrationId()).isEqualTo(registration.getRegistrationId()).isEqualTo("simplesamlphp"); assertThat(copy.getRegistrationId()).isEqualTo(registration.getRegistrationId()).isEqualTo("simplesamlphp");
assertThat(copy.getAssertingPartyDetails().getEntityId()) assertThat(copy.getAssertingPartyDetails().getEntityId())

Write Preview
Loading…
Cancel
Save