Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-26 22:02:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add SpEL Bean reference test (#3815)

Browse Source 
Issue gh-3797
This commit is contained in:
Rob Winch 2016-04-14 12:11:40 -05:00
parent 63b2cfe1cf
commit 59db9413aa
1 changed files with 42 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

42
config/src/test/groovy/org/springframework/security/config/annotation/method/configuration/GlobalMethodSecurityConfigurationTests.groovy
View File

@ -21,6 +21,7 @@ import org.junit.After;
import org.springframework.beans.BeansException import org.springframework.beans.BeansException
import org.springframework.beans.factory.config.BeanPostProcessor import org.springframework.beans.factory.config.BeanPostProcessor
import org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter import org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter
import org.springframework.security.config.annotation.method.configuration.NamespaceGlobalMethodSecurityTests.BaseMethodConfig;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
import javax.sql.DataSource import javax.sql.DataSource
@ -428,4 +429,45 @@ public class GlobalMethodSecurityConfigurationTests extends BaseSpringSpec {
auth.inMemoryAuthentication() auth.inMemoryAuthentication()
} }
} }
// gh-3797
def preAuthorizeBeanSpel() {
setup:
SecurityContextHolder.getContext().setAuthentication(
new TestingAuthenticationToken("user", "password","ROLE_USER"))
context = new AnnotationConfigApplicationContext(PreAuthorizeBeanSpelConfig)
BeanSpelService service = context.getBean(BeanSpelService)
when:
service.run(true)
then:
noExceptionThrown()
when:
service.run(false)
then:
thrown(AccessDeniedException)
}
@EnableGlobalMethodSecurity(prePostEnabled = true)
@Configuration
public static class PreAuthorizeBeanSpelConfig extends BaseMethodConfig {
@Bean
BeanSpelService service() {
return new BeanSpelService();
}
@Bean
BeanSpelSecurity security() {
return new BeanSpelSecurity();
}
}
static class BeanSpelService {
@PreAuthorize("@security.check(#arg)")
void run(boolean arg) {}
}
static class BeanSpelSecurity {
public boolean check(boolean arg) {
return arg;
}
}
} }