SEC-1084: Retain Authentication.details when authenticating in LdapAuthenticationProvider.
This commit is contained in:
Luke Taylor
parent
2ff089af62
commit
350f75f7f3
|
|
@ -234,7 +234,7 @@ public class LdapAuthenticationProvider implements AuthenticationProvider, Messa
|
||||||
messages.getMessage("AbstractUserDetailsAuthenticationProvider.onlySupports",
|
messages.getMessage("AbstractUserDetailsAuthenticationProvider.onlySupports",
|
||||||
"Only UsernamePasswordAuthenticationToken is supported"));
|
"Only UsernamePasswordAuthenticationToken is supported"));
|
||||||
|
|
||||||
UsernamePasswordAuthenticationToken userToken = (UsernamePasswordAuthenticationToken)authentication;
|
final UsernamePasswordAuthenticationToken userToken = (UsernamePasswordAuthenticationToken)authentication;
|
||||||
|
|
||||||
String username = userToken.getName();
|
String username = userToken.getName();
|
||||||
|
|
||||||
|
|
@ -287,7 +287,10 @@ public class LdapAuthenticationProvider implements AuthenticationProvider, Messa
|
||||||
UserDetails user) {
|
UserDetails user) {
|
||||||
Object password = useAuthenticationRequestCredentials ? authentication.getCredentials() : user.getPassword();
|
Object password = useAuthenticationRequestCredentials ? authentication.getCredentials() : user.getPassword();
|
||||||
|
|
||||||
return new UsernamePasswordAuthenticationToken(user, password, user.getAuthorities());
|
UsernamePasswordAuthenticationToken result = new UsernamePasswordAuthenticationToken(user, password, user.getAuthorities());
|
||||||
|
result.setDetails(authentication.getDetails());
|
||||||
|
|
||||||
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
public boolean supports(Class<? extends Object> authentication) {
|
public boolean supports(Class<? extends Object> authentication) {
|
||||||
|
|
|
||||||
|
|
@ -124,8 +124,11 @@ public class LdapAuthenticationProviderTests {
|
||||||
assertNotNull(ldapProvider.getAuthoritiesPopulator());
|
assertNotNull(ldapProvider.getAuthoritiesPopulator());
|
||||||
|
|
||||||
UsernamePasswordAuthenticationToken authRequest = new UsernamePasswordAuthenticationToken("ben", "benspassword");
|
UsernamePasswordAuthenticationToken authRequest = new UsernamePasswordAuthenticationToken("ben", "benspassword");
|
||||||
|
Object authDetails = new Object();
|
||||||
|
authRequest.setDetails(authDetails);
|
||||||
Authentication authResult = ldapProvider.authenticate(authRequest);
|
Authentication authResult = ldapProvider.authenticate(authRequest);
|
||||||
assertEquals("benspassword", authResult.getCredentials());
|
assertEquals("benspassword", authResult.getCredentials());
|
||||||
|
assertSame(authDetails, authResult.getDetails());
|
||||||
UserDetails user = (UserDetails) authResult.getPrincipal();
|
UserDetails user = (UserDetails) authResult.getPrincipal();
|
||||||
assertEquals(2, user.getAuthorities().size());
|
assertEquals(2, user.getAuthorities().size());
|
||||||
assertEquals("{SHA}nFCebWjxfaLbHHG1Qk5UU4trbvQ=", user.getPassword());
|
assertEquals("{SHA}nFCebWjxfaLbHHG1Qk5UU4trbvQ=", user.getPassword());
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue