Example 61 with MockMethodInvocation
use of org.springframework.security.access.intercept.method.MockMethodInvocation in project spring-security by spring-projects.
the class Jsr250AuthorizationManagerTests method checkDeniedWhenClassAnnotationsThenMethodAnnotationsTakePrecedence.
@Test
public void checkDeniedWhenClassAnnotationsThenMethodAnnotationsTakePrecedence() throws Exception {
Supplier<Authentication> authentication = () -> new TestingAuthenticationToken("user", "password", "ROLE_USER");
MockMethodInvocation methodInvocation = new MockMethodInvocation(new ClassLevelAnnotations(), ClassLevelAnnotations.class, "denyAll");
Jsr250AuthorizationManager manager = new Jsr250AuthorizationManager();
AuthorizationDecision decision = manager.check(authentication, methodInvocation);
assertThat(decision.isGranted()).isFalse();
}
Also used :
AuthorizationDecision(org.springframework.security.authorization.AuthorizationDecision)
TestAuthentication(org.springframework.security.authentication.TestAuthentication)
Authentication(org.springframework.security.core.Authentication)
MockMethodInvocation(org.springframework.security.access.intercept.method.MockMethodInvocation)
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
Test(org.junit.jupiter.api.Test)
Example 62 with MockMethodInvocation
use of org.springframework.security.access.intercept.method.MockMethodInvocation in project spring-security by spring-projects.
the class Jsr250AuthorizationManagerTests method checkPermitAllWhenRoleUserThenGrantedDecision.
@Test
public void checkPermitAllWhenRoleUserThenGrantedDecision() throws Exception {
MockMethodInvocation methodInvocation = new MockMethodInvocation(new TestClass(), TestClass.class, "permitAll");
Jsr250AuthorizationManager manager = new Jsr250AuthorizationManager();
AuthorizationDecision decision = manager.check(TestAuthentication::authenticatedUser, methodInvocation);
assertThat(decision).isNotNull();
assertThat(decision.isGranted()).isTrue();
}
Also used :
AuthorizationDecision(org.springframework.security.authorization.AuthorizationDecision)
MockMethodInvocation(org.springframework.security.access.intercept.method.MockMethodInvocation)
TestAuthentication(org.springframework.security.authentication.TestAuthentication)
Test(org.junit.jupiter.api.Test)
Example 63 with MockMethodInvocation
use of org.springframework.security.access.intercept.method.MockMethodInvocation in project spring-security by spring-projects.
the class PostFilterAuthorizationMethodInterceptorTests method checkInheritedAnnotationsWhenDuplicatedThenAnnotationConfigurationException.
@Test
public void checkInheritedAnnotationsWhenDuplicatedThenAnnotationConfigurationException() throws Exception {
MockMethodInvocation methodInvocation = new MockMethodInvocation(new TestClass(), TestClass.class, "inheritedAnnotations");
PostFilterAuthorizationMethodInterceptor advice = new PostFilterAuthorizationMethodInterceptor();
assertThatExceptionOfType(AnnotationConfigurationException.class).isThrownBy(() -> advice.invoke(methodInvocation));
}
Also used :
AnnotationConfigurationException(org.springframework.core.annotation.AnnotationConfigurationException)
MockMethodInvocation(org.springframework.security.access.intercept.method.MockMethodInvocation)
Test(org.junit.jupiter.api.Test)
Example 64 with MockMethodInvocation
use of org.springframework.security.access.intercept.method.MockMethodInvocation in project spring-security by spring-projects.
the class PostFilterAuthorizationMethodInterceptorTests method afterWhenArrayNotNullThenFilteredArray.
@Test
public void afterWhenArrayNotNullThenFilteredArray() throws Throwable {
String[] array = { "john", "bob" };
MockMethodInvocation methodInvocation = new MockMethodInvocation(new TestClass(), TestClass.class, "doSomethingArrayClassLevel", new Class[] { String[].class }, new Object[] { array }) {
@Override
public Object proceed() {
return array;
}
};
PostFilterAuthorizationMethodInterceptor advice = new PostFilterAuthorizationMethodInterceptor();
Object result = advice.invoke(methodInvocation);
assertThat(result).asInstanceOf(InstanceOfAssertFactories.array(String[].class)).containsOnly("john");
}
Also used :
MockMethodInvocation(org.springframework.security.access.intercept.method.MockMethodInvocation)
Test(org.junit.jupiter.api.Test)
Example 65 with MockMethodInvocation
use of org.springframework.security.access.intercept.method.MockMethodInvocation in project spring-security by spring-projects.
the class PreFilterAuthorizationMethodInterceptorTests method checkInheritedAnnotationsWhenConflictingThenAnnotationConfigurationException.
@Test
public void checkInheritedAnnotationsWhenConflictingThenAnnotationConfigurationException() throws Exception {
MockMethodInvocation methodInvocation = new MockMethodInvocation(new ConflictingAnnotations(), ConflictingAnnotations.class, "inheritedAnnotations");
PreFilterAuthorizationMethodInterceptor advice = new PreFilterAuthorizationMethodInterceptor();
assertThatExceptionOfType(AnnotationConfigurationException.class).isThrownBy(() -> advice.invoke(methodInvocation));
}
Also used :
AnnotationConfigurationException(org.springframework.core.annotation.AnnotationConfigurationException)
MockMethodInvocation(org.springframework.security.access.intercept.method.MockMethodInvocation)
Test(org.junit.jupiter.api.Test)
Aggregations
MockMethodInvocation (org.springframework.security.access.intercept.method.MockMethodInvocation)72
Test (org.junit.jupiter.api.Test)70
TestAuthentication (org.springframework.security.authentication.TestAuthentication)36
AuthorizationDecision (org.springframework.security.authorization.AuthorizationDecision)27
TestingAuthenticationToken (org.springframework.security.authentication.TestingAuthenticationToken)23
Authentication (org.springframework.security.core.Authentication)20
AnnotationConfigurationException (org.springframework.core.annotation.AnnotationConfigurationException)13
ConfigAttribute (org.springframework.security.access.ConfigAttribute)12
PreInvocationAttribute (org.springframework.security.access.prepost.PreInvocationAttribute)7
EvaluationContext (org.springframework.expression.EvaluationContext)3
SecurityExpressionRoot (org.springframework.security.access.expression.SecurityExpressionRoot)3
ArrayList (java.util.ArrayList)2
List (java.util.List)1
BeforeEach (org.junit.jupiter.api.BeforeEach)1
ProxyFactory (org.springframework.aop.framework.ProxyFactory)1
Expression (org.springframework.expression.Expression)1
