Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Extra test to confirm http-method specific matching behaviour.

This commit is contained in:
Luke Taylor 2009-12-14 13:55:48 +00:00
parent cad32ffe39
commit 6805761d85
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
web/src/test/java/org/springframework/security/web/access/intercept/DefaultFilterInvocationSecurityMetadataSourceTests.java
View File

@ -180,6 +180,21 @@ public class DefaultFilterInvocationSecurityMetadataSourceTests {
assertEquals(userAttrs, attrs);
}
@Test
public void methodSpecificMatchTakesPrecdenceRegardlessOfOrdering() throws Exception {
// Unfortunate but unavoidable
LinkedHashMap requestMap = new LinkedHashMap();
Collection<ConfigAttribute> userAttrs = SecurityConfig.createList("A");
requestMap.put(new RequestKey("/secure/specific.html", null), SecurityConfig.createList("B"));
requestMap.put(new RequestKey("/secure/*.html", "GET"), userAttrs);
fids = new DefaultFilterInvocationSecurityMetadataSource(new AntUrlPathMatcher(), requestMap);
fids.setStripQueryStringFromUrls(true);
FilterInvocation fi = createFilterInvocation("/secure/specific.html", "GET");
Collection<ConfigAttribute> attrs = fids.getAttributes(fi);
assertEquals(userAttrs, attrs);
}
/**
* Check fixes for SEC-321
*/