Example 1 with ReactiveAuthenticationManagerResolver
use of org.springframework.security.authentication.ReactiveAuthenticationManagerResolver in project spring-security by spring-projects.
the class OAuth2ResourceServerSpecTests method getWhenUsingCustomAuthenticationManagerResolverThenUsesItAccordingly.
@Test
public void getWhenUsingCustomAuthenticationManagerResolverThenUsesItAccordingly() {
this.spring.register(CustomAuthenticationManagerResolverConfig.class).autowire();
ReactiveAuthenticationManagerResolver<ServerWebExchange> authenticationManagerResolver = this.spring.getContext().getBean(ReactiveAuthenticationManagerResolver.class);
ReactiveAuthenticationManager authenticationManager = this.spring.getContext().getBean(ReactiveAuthenticationManager.class);
given(authenticationManagerResolver.resolve(any(ServerWebExchange.class))).willReturn(Mono.just(authenticationManager));
given(authenticationManager.authenticate(any(Authentication.class))).willReturn(Mono.error(new OAuth2AuthenticationException(new OAuth2Error("mock-failure"))));
// @formatter:off
this.client.get().headers((headers) -> headers.setBearerAuth(this.messageReadToken)).exchange().expectStatus().isUnauthorized().expectHeader().value(HttpHeaders.WWW_AUTHENTICATE, startsWith("Bearer error=\"mock-failure\""));
// @formatter:on
}
Also used :
JwtAuthenticationConverter(org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationConverter)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
Autowired(org.springframework.beans.factory.annotation.Autowired)
CoreMatchers.startsWith(org.hamcrest.CoreMatchers.startsWith)
RSAPublicKey(java.security.interfaces.RSAPublicKey)
ExtendWith(org.junit.jupiter.api.extension.ExtendWith)
BDDMockito.given(org.mockito.BDDMockito.given)
RSAPublicKeySpec(java.security.spec.RSAPublicKeySpec)
MockWebServer(okhttp3.mockwebserver.MockWebServer)
ReactiveAuthenticationManager(org.springframework.security.authentication.ReactiveAuthenticationManager)
BigInteger(java.math.BigInteger)
ReactiveAuthenticationManagerResolver(org.springframework.security.authentication.ReactiveAuthenticationManagerResolver)
Jwt(org.springframework.security.oauth2.jwt.Jwt)
HttpHeaders(org.apache.http.HttpHeaders)
ReactiveJwtDecoder(org.springframework.security.oauth2.jwt.ReactiveJwtDecoder)
PostMapping(org.springframework.web.bind.annotation.PostMapping)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
MediaType(org.springframework.http.MediaType)
OAuth2AuthenticationException(org.springframework.security.oauth2.core.OAuth2AuthenticationException)
TestJwts(org.springframework.security.oauth2.jwt.TestJwts)
PreDestroy(jakarta.annotation.PreDestroy)
Collectors(java.util.stream.Collectors)
RestController(org.springframework.web.bind.annotation.RestController)
KeyFactory(java.security.KeyFactory)
Test(org.junit.jupiter.api.Test)
Base64(java.util.Base64)
Stream(java.util.stream.Stream)
AbstractAuthenticationToken(org.springframework.security.authentication.AbstractAuthenticationToken)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
Optional(java.util.Optional)
MockResponse(okhttp3.mockwebserver.MockResponse)
Authentication(org.springframework.security.core.Authentication)
Mockito.mock(org.mockito.Mockito.mock)
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
ReactiveJwtAuthenticationConverterAdapter(org.springframework.security.oauth2.server.resource.authentication.ReactiveJwtAuthenticationConverterAdapter)
InvalidKeySpecException(java.security.spec.InvalidKeySpecException)
ReactiveJwtAuthenticationConverter(org.springframework.security.oauth2.server.resource.authentication.ReactiveJwtAuthenticationConverter)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
DispatcherHandler(org.springframework.web.reactive.DispatcherHandler)
ServerWebExchange(org.springframework.web.server.ServerWebExchange)
Value(org.springframework.beans.factory.annotation.Value)
ServerAuthenticationConverter(org.springframework.security.web.server.authentication.ServerAuthenticationConverter)
WebTestClient(org.springframework.test.web.reactive.server.WebTestClient)
EnableWebFlux(org.springframework.web.reactive.config.EnableWebFlux)
Dispatcher(okhttp3.mockwebserver.Dispatcher)
BeanCreationException(org.springframework.beans.factory.BeanCreationException)
EnableWebFluxSecurity(org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
GetMapping(org.springframework.web.bind.annotation.GetMapping)
NoUniqueBeanDefinitionException(org.springframework.beans.factory.NoUniqueBeanDefinitionException)
Converter(org.springframework.core.convert.converter.Converter)
IOException(java.io.IOException)
Mono(reactor.core.publisher.Mono)
ApplicationContext(org.springframework.context.ApplicationContext)
Mockito.verify(org.mockito.Mockito.verify)
HttpStatus(org.springframework.http.HttpStatus)
SecurityWebFilterChain(org.springframework.security.web.server.SecurityWebFilterChain)
HttpStatusServerEntryPoint(org.springframework.security.web.server.authentication.HttpStatusServerEntryPoint)
SpringTestContext(org.springframework.security.config.test.SpringTestContext)
NoSuchBeanDefinitionException(org.springframework.beans.factory.NoSuchBeanDefinitionException)
HttpStatusServerAccessDeniedHandler(org.springframework.security.web.server.authorization.HttpStatusServerAccessDeniedHandler)
GenericWebApplicationContext(org.springframework.web.context.support.GenericWebApplicationContext)
SpringTestContextExtension(org.springframework.security.config.test.SpringTestContextExtension)
OAuth2Error(org.springframework.security.oauth2.core.OAuth2Error)
Bean(org.springframework.context.annotation.Bean)
BearerTokenAuthenticationToken(org.springframework.security.oauth2.server.resource.BearerTokenAuthenticationToken)
ArgumentMatchers.anyString(org.mockito.ArgumentMatchers.anyString)
ServerWebExchange(org.springframework.web.server.ServerWebExchange)
ReactiveAuthenticationManager(org.springframework.security.authentication.ReactiveAuthenticationManager)
Authentication(org.springframework.security.core.Authentication)
OAuth2Error(org.springframework.security.oauth2.core.OAuth2Error)
OAuth2AuthenticationException(org.springframework.security.oauth2.core.OAuth2AuthenticationException)
Test(org.junit.jupiter.api.Test)
Aggregations
PreDestroy (jakarta.annotation.PreDestroy)1
IOException (java.io.IOException)1
BigInteger (java.math.BigInteger)1
KeyFactory (java.security.KeyFactory)1
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)1
RSAPublicKey (java.security.interfaces.RSAPublicKey)1
InvalidKeySpecException (java.security.spec.InvalidKeySpecException)1
RSAPublicKeySpec (java.security.spec.RSAPublicKeySpec)1
Base64 (java.util.Base64)1
Optional (java.util.Optional)1
Collectors (java.util.stream.Collectors)1
Stream (java.util.stream.Stream)1
Dispatcher (okhttp3.mockwebserver.Dispatcher)1
MockResponse (okhttp3.mockwebserver.MockResponse)1
MockWebServer (okhttp3.mockwebserver.MockWebServer)1
RecordedRequest (okhttp3.mockwebserver.RecordedRequest)1
HttpHeaders (org.apache.http.HttpHeaders)1
Assertions.assertThat (org.assertj.core.api.Assertions.assertThat)1
Assertions.assertThatExceptionOfType (org.assertj.core.api.Assertions.assertThatExceptionOfType)1
CoreMatchers.startsWith (org.hamcrest.CoreMatchers.startsWith)1
