Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-28 14:52:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix indentation of CsrfConfigTests

Browse Source
This commit is contained in:
Rob Winch 2015-08-03 12:03:05 -05:00
parent 969f3a7d1b
commit 453e6332da
1 changed files with 28 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

56
config/src/test/groovy/org/springframework/security/config/http/CsrfConfigTests.groovy
View File

@ -310,36 +310,36 @@ class CsrfConfigTests extends AbstractHttpConfigTests {
verify(repo).saveToken(eq(null),any(HttpServletRequest), any(HttpServletResponse)) verify(repo).saveToken(eq(null),any(HttpServletRequest), any(HttpServletResponse))
} }
def "SEC-2495: csrf disables logout on GET"() { def "SEC-2495: csrf disables logout on GET"() {
setup: setup:
httpAutoConfig { httpAutoConfig {
'csrf'() 'csrf'()
} }
createAppContext() createAppContext()
login() login()
request.method = "GET" request.method = "GET"
request.requestURI = "/logout" request.requestURI = "/logout"
when: when:
springSecurityFilterChain.doFilter(request,response,chain) springSecurityFilterChain.doFilter(request,response,chain)
then: then:
getAuthentication(request) != null getAuthentication(request) != null
} }
def login(String username="user", String role="ROLE_USER") { def login(String username="user", String role="ROLE_USER") {
login(new UsernamePasswordAuthenticationToken(username, null, AuthorityUtils.createAuthorityList(role))) login(new UsernamePasswordAuthenticationToken(username, null, AuthorityUtils.createAuthorityList(role)))
} }
def login(Authentication auth) { def login(Authentication auth) {
HttpSessionSecurityContextRepository repo = new HttpSessionSecurityContextRepository() HttpSessionSecurityContextRepository repo = new HttpSessionSecurityContextRepository()
HttpRequestResponseHolder requestResponseHolder = new HttpRequestResponseHolder(request, response) HttpRequestResponseHolder requestResponseHolder = new HttpRequestResponseHolder(request, response)
repo.loadContext(requestResponseHolder) repo.loadContext(requestResponseHolder)
repo.saveContext(new SecurityContextImpl(authentication:auth), requestResponseHolder.request, requestResponseHolder.response) repo.saveContext(new SecurityContextImpl(authentication:auth), requestResponseHolder.request, requestResponseHolder.response)
} }
def getAuthentication(HttpServletRequest request) { def getAuthentication(HttpServletRequest request) {
HttpSessionSecurityContextRepository repo = new HttpSessionSecurityContextRepository() HttpSessionSecurityContextRepository repo = new HttpSessionSecurityContextRepository()
HttpRequestResponseHolder requestResponseHolder = new HttpRequestResponseHolder(request, response) HttpRequestResponseHolder requestResponseHolder = new HttpRequestResponseHolder(request, response)
repo.loadContext(requestResponseHolder)?.authentication repo.loadContext(requestResponseHolder)?.authentication
} }
} }