├── .gitignore
├── README.adoc
├── build.gradle
├── gradle.properties
├── gradle
    ├── asciidoc.gradle
    └── wrapper
    │   ├── gradle-wrapper.jar
    │   └── gradle-wrapper.properties
├── gradlew
├── gradlew.bat
├── jc
    ├── build.gradle
    ├── spring-security-3-jc
    │   ├── .gitignore
    │   ├── build.gradle
    │   ├── gradle
    │   │   └── wrapper
    │   │   │   ├── gradle-wrapper.jar
    │   │   │   └── gradle-wrapper.properties
    │   ├── pom.xml
    │   └── src
    │   │   ├── main
    │   │       ├── java
    │   │       │   └── sample
    │   │       │   │   ├── AppInitializer.java
    │   │       │   │   ├── HelloWorldMessageService.java
    │   │       │   │   ├── MessageService.java
    │   │       │   │   ├── SecurityConfig.java
    │   │       │   │   ├── SecurityInitializer.java
    │   │       │   │   └── mvc
    │   │       │   │       ├── AuthenticationPrincipalController.java
    │   │       │   │       ├── HomeController.java
    │   │       │   │       ├── LoginController.java
    │   │       │   │       └── MvcConfig.java
    │   │       ├── resources
    │   │       │   └── log4j.xml
    │   │       └── webapp
    │   │       │   └── WEB-INF
    │   │       │       └── views
    │   │       │           ├── home.jsp
    │   │       │           └── login.jsp
    │   │   └── test
    │   │       └── java
    │   │           └── sample
    │   │               ├── acl
    │   │                   ├── AclImplTests.java
    │   │                   └── EhCacheBasedAclCacheTests.java
    │   │               ├── cas
    │   │                   ├── CasAuthenticationFilterDefaultUrlsTests.java
    │   │                   └── ServiceAuthenticationDetailsSourceTests.java
    │   │               ├── config
    │   │                   └── HeadersTests.java
    │   │               ├── core
    │   │                   ├── AbstractAccessDecisionManagerTests.java
    │   │                   ├── AnonymousAuthenticationProviderTests.java
    │   │                   ├── AuthenticationDetailsSourceImplTests.java
    │   │                   ├── AuthenticationExceptionTests.java
    │   │                   ├── CustomWebAuthenticationDetails.java
    │   │                   ├── GrantedAuthorityImplTests.java
    │   │                   ├── InMemoryDaoImplTests.java
    │   │                   ├── ProviderManagerTests.java
    │   │                   ├── RememberMeAuthenticationProviderTests.java
    │   │                   ├── SecurityConfigTests.java
    │   │                   ├── UserDetailsServiceWrapperTests.java
    │   │                   └── UserDetailsWrapperTests.java
    │   │               ├── openid
    │   │                   └── OpenID4JavaConsumerTests.java
    │   │               ├── role_
    │   │                   ├── HelloWorldMessageService.java
    │   │                   ├── MessageService.java
    │   │                   └── RolePrefixTests.java
    │   │               └── web
    │   │                   ├── AbstractAuthenticationProcessingFilterTests.java
    │   │                   ├── AbstractRememberMeServicesTests.java
    │   │                   ├── AnonymousAuthenticationFilterTests.java
    │   │                   ├── AuthenticationPrincipalTests.java
    │   │                   ├── BasicAuthenticationFilterTests.java
    │   │                   ├── ConcurrentSessionControlStrategyTests.java
    │   │                   ├── ConcurrentSessionFilterTests.java
    │   │                   ├── ExceptionTranslationFilterTests.java
    │   │                   ├── FilterChainProxyTests.java
    │   │                   ├── LoginUrlAuthenticationEntryPointTests.java
    │   │                   ├── LogoutFilterTests.java
    │   │                   ├── PreAuthenticatedGrantedAuthoritiesUserDetailsServiceTests.java
    │   │                   ├── RememberMeAuthenticationFilterTests.java
    │   │                   ├── RequestCacheAwareFilterTests.java
    │   │                   ├── RequestMatcherTests.java
    │   │                   ├── SecurityContextPersistenceFilterTests.java
    │   │                   ├── SessionFixationProtectionStrategyTests.java
    │   │                   ├── SessionManagementFilterTests.java
    │   │                   ├── SwitchUserFilterTests.java
    │   │                   └── WebSecurityExpressionHandlerTests.java
    ├── spring-security-4-jc
    │   ├── .gitignore
    │   ├── build.gradle
    │   ├── gradle
    │   │   └── wrapper
    │   │   │   ├── gradle-wrapper.jar
    │   │   │   └── gradle-wrapper.properties
    │   ├── pom.xml
    │   └── src
    │   │   ├── main
    │   │       ├── java
    │   │       │   └── sample
    │   │       │   │   ├── AppInitializer.java
    │   │       │   │   ├── HelloWorldMessageService.java
    │   │       │   │   ├── MessageService.java
    │   │       │   │   ├── SecurityConfig.java
    │   │       │   │   ├── SecurityInitializer.java
    │   │       │   │   └── mvc
    │   │       │   │       ├── AuthenticationPrincipalController.java
    │   │       │   │       ├── HomeController.java
    │   │       │   │       ├── LoginController.java
    │   │       │   │       └── MvcConfig.java
    │   │       ├── resources
    │   │       │   └── log4j.xml
    │   │       └── webapp
    │   │       │   └── WEB-INF
    │   │       │       └── views
    │   │       │           ├── home.jsp
    │   │       │           └── login.jsp
    │   │   └── test
    │   │       └── java
    │   │           └── sample
    │   │               ├── acl
    │   │                   ├── AclImplTests.java
    │   │                   └── EhCacheBasedAclCacheTests.java
    │   │               ├── cas
    │   │                   ├── CasAuthenticationFilterDefaultUrlsTests.java
    │   │                   └── ServiceAuthenticationDetailsSourceTests.java
    │   │               ├── config
    │   │                   └── HeadersTests.java
    │   │               ├── core
    │   │                   ├── AbstractAccessDecisionManagerTests.java
    │   │                   ├── AnonymousAuthenticationProviderTests.java
    │   │                   ├── AuthenticationDetailsSourceImplTests.java
    │   │                   ├── AuthenticationExceptionTests.java
    │   │                   ├── CustomWebAuthenticationDetails.java
    │   │                   ├── GrantedAuthorityImplTests.java
    │   │                   ├── InMemoryDaoImplTests.java
    │   │                   ├── ProviderManagerTests.java
    │   │                   ├── RememberMeAuthenticationProviderTests.java
    │   │                   ├── SecurityConfigTests.java
    │   │                   ├── UserDetailsServiceWrapperTests.java
    │   │                   └── UserDetailsWrapperTests.java
    │   │               ├── openid
    │   │                   └── OpenID4JavaConsumerTests.java
    │   │               ├── role_
    │   │                   ├── DefaultRolesPrefixPostProcessor.java
    │   │                   ├── HelloWorldMessageService.java
    │   │                   ├── MessageService.java
    │   │                   └── RolePrefixTests.java
    │   │               └── web
    │   │                   ├── AbstractAuthenticationProcessingFilterTests.java
    │   │                   ├── AbstractRememberMeServicesTests.java
    │   │                   ├── AnonymousAuthenticationFilterTests.java
    │   │                   ├── AuthenticationPrincipalTests.java
    │   │                   ├── BasicAuthenticationFilterTests.java
    │   │                   ├── ConcurrentSessionControlStrategyTests.java
    │   │                   ├── ConcurrentSessionFilterTests.java
    │   │                   ├── ExceptionTranslationFilterTests.java
    │   │                   ├── FilterChainProxyTests.java
    │   │                   ├── LoginUrlAuthenticationEntryPointTests.java
    │   │                   ├── LogoutFilterTests.java
    │   │                   ├── PreAuthenticatedGrantedAuthoritiesUserDetailsServiceTests.java
    │   │                   ├── RememberMeAuthenticationFilterTests.java
    │   │                   ├── RequestCacheAwareFilterTests.java
    │   │                   ├── RequestMatcherTests.java
    │   │                   ├── SecurityContextPersistenceFilterTests.java
    │   │                   ├── SessionFixationProtectionStrategyTests.java
    │   │                   ├── SessionManagementFilterTests.java
    │   │                   ├── SwitchUserFilterTests.java
    │   │                   └── WebSecurityExpressionHandlerTests.java
    └── src
    │   └── docs
    │       └── asciidoc
    │           └── migrate-3-to-4-jc.adoc
├── push-changes.sh
├── settings.gradle
└── xml
    ├── build.gradle
    ├── spring-security-3-xml
        ├── .gitignore
        ├── build.gradle
        ├── gradle
        │   └── wrapper
        │   │   ├── gradle-wrapper.jar
        │   │   └── gradle-wrapper.properties
        ├── pom.xml
        └── src
        │   ├── main
        │       ├── java
        │       │   └── sample
        │       │   │   ├── AuthenticationPrincipalController.java
        │       │   │   ├── HelloWorldMessageService.java
        │       │   │   ├── HomeController.java
        │       │   │   ├── LoginController.java
        │       │   │   └── MessageService.java
        │       ├── resources
        │       │   └── log4j.xml
        │       └── webapp
        │       │   └── WEB-INF
        │       │       ├── spring
        │       │           ├── mvc
        │       │           │   └── servlet-context.xml
        │       │           ├── root-context.xml
        │       │           └── security.xml
        │       │       ├── views
        │       │           ├── home.jsp
        │       │           └── login.jsp
        │       │       └── web.xml
        │   └── test
        │       ├── java
        │           └── sample
        │           │   ├── SampleTests.java
        │           │   ├── acl
        │           │       ├── AclImplTests.java
        │           │       └── EhCacheBasedAclCacheTests.java
        │           │   ├── cas
        │           │       ├── CasAuthenticationFilterDefaultUrlsTests.java
        │           │       └── ServiceAuthenticationDetailsSourceTests.java
        │           │   ├── config
        │           │       ├── FilterChainMapPathTypeTests.java
        │           │       ├── FilterInvocationDefinitionSourceTests.java
        │           │       ├── FilterSecurityMetadataSourcePathTypeTests.java
        │           │       ├── HeadersTests.java
        │           │       ├── HttpAccessDeniedPageTests.java
        │           │       └── HttpPathTypeTests.java
        │           │   ├── core
        │           │       ├── AbstractAccessDecisionManagerTests.java
        │           │       ├── AnonymousAuthenticationProviderTests.java
        │           │       ├── AuthenticationDetailsSourceImplTests.java
        │           │       ├── AuthenticationExceptionTests.java
        │           │       ├── CustomWebAuthenticationDetails.java
        │           │       ├── GrantedAuthorityImplTests.java
        │           │       ├── InMemoryDaoImplTests.java
        │           │       ├── ProviderManagerTests.java
        │           │       ├── RememberMeAuthenticationProviderTests.java
        │           │       ├── SecurityConfigTests.java
        │           │       ├── UserDetailsServiceWrapperTests.java
        │           │       └── UserDetailsWrapperTests.java
        │           │   ├── openid
        │           │       ├── OpenID4JavaConsumerTests.java
        │           │       └── OpenIDTests.java
        │           │   ├── role_
        │           │       ├── HelloWorldMessageService.java
        │           │       ├── MessageService.java
        │           │       └── RolePrefixTests.java
        │           │   └── web
        │           │       ├── AbstractAuthenticationProcessingFilterTests.java
        │           │       ├── AbstractRememberMeServicesTests.java
        │           │       ├── AnonymousAuthenticationFilterTests.java
        │           │       ├── AuthenticationPrincipalTests.java
        │           │       ├── BasicAuthenticationFilterTests.java
        │           │       ├── ConcurrentSessionControlStrategyTests.java
        │           │       ├── ConcurrentSessionFilterTests.java
        │           │       ├── ExceptionTranslationFilterTests.java
        │           │       ├── FilterChainProxyTests.java
        │           │       ├── LoginUrlAuthenticationEntryPointTests.java
        │           │       ├── LogoutFilterTests.java
        │           │       ├── PreAuthenticatedGrantedAuthoritiesUserDetailsServiceTests.java
        │           │       ├── RememberMeAuthenticationFilterTests.java
        │           │       ├── RequestCacheAwareFilterTests.java
        │           │       ├── RequestMatcherTests.java
        │           │       ├── SecurityContextPersistenceFilterTests.java
        │           │       ├── SessionFixationProtectionStrategyTests.java
        │           │       ├── SessionManagementFilterTests.java
        │           │       ├── SwitchUserFilterTests.java
        │           │       └── WebSecurityExpressionHandlerTests.java
        │       └── resources
        │           ├── log4j.xml
        │           └── sample
        │               ├── cas
        │                   ├── CasAuthenticationFilterDefaultUrlsTests-context.xml
        │                   └── ServiceAuthenticationDetailsSourceTests-context.xml
        │               ├── config
        │                   ├── FilterChainMapPathTypeTests-context.xml
        │                   ├── FilterInvocationDefinitionSourceTests-context.xml
        │                   ├── FilterSecurityMetadataSourcePathTypeTests-context.xml
        │                   ├── HeadersTests-context.xml
        │                   ├── HttpAccessDeniedPageTests-context.xml
        │                   └── HttpPathTypeTests-context.xml
        │               ├── core
        │                   ├── AbstractAccessDecisionManagerTests-context.xml
        │                   ├── InMemoryDaoImplTests-context.xml
        │                   ├── ProviderManagerTests-context.xml
        │                   ├── RememberMeAuthenticationProviderTests-context.xml
        │                   └── UserDetailsServiceWrapperTests-context.xml
        │               ├── openid
        │                   ├── OpenID4JavaConsumerTests-context.xml
        │                   └── OpenIDTests-context.xml
        │               ├── role_
        │                   └── RolePrefixTests-context.xml
        │               └── web
        │                   ├── AbstractRememberMeServicesTests-context.xml
        │                   ├── AnonymousAuthenticationFilterTests-context.xml
        │                   ├── AuthenticationPrincipalTests-context.xml
        │                   ├── BasicAuthenticationFilterTests-context.xml
        │                   ├── ConcurrentSessionControlStrategyTests-context.xml
        │                   ├── ConcurrentSessionFilterTests-context.xml
        │                   ├── ExceptionTranslationFilterTests-context.xml
        │                   ├── FilterChainProxyTests-context.xml
        │                   ├── LoginUrlAuthenticationEntryPointTests-context.xml
        │                   ├── LogoutFilterTests-context.xml
        │                   ├── RememberMeAuthenticationFilterTests-context.xml
        │                   ├── RequestCacheAwareFilterTests-context.xml
        │                   ├── RequestMatcherTests-context.xml
        │                   ├── SecurityContextPersistenceFilterTests-context.xml
        │                   ├── SessionManagementFilterTests-context.xml
        │                   ├── SwitchUserFilterTests-context.xml
        │                   └── WebSecurityExpressionHandlerTests-context.xml
    ├── spring-security-4-xml
        ├── .gitignore
        ├── build.gradle
        ├── pom.xml
        └── src
        │   ├── main
        │       ├── java
        │       │   └── sample
        │       │   │   ├── AuthenticationPrincipalController.java
        │       │   │   ├── HelloWorldMessageService.java
        │       │   │   ├── HomeController.java
        │       │   │   ├── LoginController.java
        │       │   │   ├── MessageService.java
        │       │   │   └── Sec2919PostProcessor.java
        │       ├── resources
        │       │   └── log4j.xml
        │       └── webapp
        │       │   └── WEB-INF
        │       │       ├── spring
        │       │           ├── mvc
        │       │           │   └── servlet-context.xml
        │       │           ├── root-context.xml
        │       │           └── security.xml
        │       │       ├── views
        │       │           ├── home.jsp
        │       │           └── login.jsp
        │       │       └── web.xml
        │   └── test
        │       ├── java
        │           └── sample
        │           │   ├── SampleTests.java
        │           │   ├── acl
        │           │       ├── AclImplTests.java
        │           │       └── EhCacheBasedAclCacheTests.java
        │           │   ├── cas
        │           │       ├── CasAuthenticationFilterDefaultUrlsTests.java
        │           │       └── ServiceAuthenticationDetailsSourceTests.java
        │           │   ├── config
        │           │       ├── FilterChainMapPathTypeTests.java
        │           │       ├── FilterInvocationDefinitionSourceTests.java
        │           │       ├── FilterSecurityMetadataSourcePathTypeTests.java
        │           │       ├── HeadersTests.java
        │           │       ├── HttpAccessDeniedPageTests.java
        │           │       └── HttpPathTypeTests.java
        │           │   ├── core
        │           │       ├── AbstractAccessDecisionManagerTests.java
        │           │       ├── AnonymousAuthenticationProviderTests.java
        │           │       ├── AuthenticationDetailsSourceImplTests.java
        │           │       ├── AuthenticationExceptionTests.java
        │           │       ├── CustomWebAuthenticationDetails.java
        │           │       ├── GrantedAuthorityImplTests.java
        │           │       ├── InMemoryDaoImplTests.java
        │           │       ├── ProviderManagerTests.java
        │           │       ├── RememberMeAuthenticationProviderTests.java
        │           │       ├── SecurityConfigTests.java
        │           │       ├── UserDetailsServiceWrapperTests.java
        │           │       └── UserDetailsWrapperTests.java
        │           │   ├── openid
        │           │       ├── OpenID4JavaConsumerTests.java
        │           │       └── OpenIDTests.java
        │           │   ├── role_
        │           │       ├── DefaultRolesPrefixPostProcessor.java
        │           │       ├── HelloWorldMessageService.java
        │           │       ├── MessageService.java
        │           │       └── RolePrefixTests.java
        │           │   └── web
        │           │       ├── AbstractAuthenticationProcessingFilterTests.java
        │           │       ├── AbstractRememberMeServicesTests.java
        │           │       ├── AnonymousAuthenticationFilterTests.java
        │           │       ├── AuthenticationPrincipalTests.java
        │           │       ├── BasicAuthenticationFilterTests.java
        │           │       ├── ConcurrentSessionControlStrategyTests.java
        │           │       ├── ConcurrentSessionFilterTests.java
        │           │       ├── ExceptionTranslationFilterTests.java
        │           │       ├── FilterChainProxyTests.java
        │           │       ├── LoginUrlAuthenticationEntryPointTests.java
        │           │       ├── LogoutFilterTests.java
        │           │       ├── PreAuthenticatedGrantedAuthoritiesUserDetailsServiceTests.java
        │           │       ├── RememberMeAuthenticationFilterTests.java
        │           │       ├── RequestCacheAwareFilterTests.java
        │           │       ├── RequestMatcherTests.java
        │           │       ├── SecurityContextPersistenceFilterTests.java
        │           │       ├── SessionFixationProtectionStrategyTests.java
        │           │       ├── SessionManagementFilterTests.java
        │           │       ├── SwitchUserFilterTests.java
        │           │       └── WebSecurityExpressionHandlerTests.java
        │       └── resources
        │           ├── log4j.xml
        │           └── sample
        │               ├── cas
        │                   ├── CasAuthenticationFilterDefaultUrlsTests-context.xml
        │                   └── ServiceAuthenticationDetailsSourceTests-context.xml
        │               ├── config
        │                   ├── FilterChainMapPathTypeTests-context.xml
        │                   ├── FilterInvocationDefinitionSourceTests-context.xml
        │                   ├── FilterSecurityMetadataSourcePathTypeTests-context.xml
        │                   ├── HeadersTests-context.xml
        │                   ├── HttpAccessDeniedPageTests-context.xml
        │                   └── HttpPathTypeTests-context.xml
        │               ├── core
        │                   ├── AbstractAccessDecisionManagerTests-context.xml
        │                   ├── InMemoryDaoImplTests-context.xml
        │                   ├── ProviderManagerTests-context.xml
        │                   ├── RememberMeAuthenticationProviderTests-context.xml
        │                   └── UserDetailsServiceWrapperTests-context.xml
        │               ├── openid
        │                   ├── OpenID4JavaConsumerTests-context.xml
        │                   └── OpenIDTests-context.xml
        │               ├── role_
        │                   └── RolePrefixTests-context.xml
        │               └── web
        │                   ├── AbstractRememberMeServicesTests-context.xml
        │                   ├── AnonymousAuthenticationFilterTests-context.xml
        │                   ├── AuthenticationPrincipalTests-context.xml
        │                   ├── BasicAuthenticationFilterTests-context.xml
        │                   ├── ConcurrentSessionControlStrategyTests-context.xml
        │                   ├── ConcurrentSessionFilterTests-context.xml
        │                   ├── ExceptionTranslationFilterTests-context.xml
        │                   ├── FilterChainProxyTests-context.xml
        │                   ├── LoginUrlAuthenticationEntryPointTests-context.xml
        │                   ├── LogoutFilterTests-context.xml
        │                   ├── RememberMeAuthenticationFilterTests-context.xml
        │                   ├── RequestCacheAwareFilterTests-context.xml
        │                   ├── RequestMatcherTests-context.xml
        │                   ├── SecurityContextPersistenceFilterTests-context.xml
        │                   ├── SessionManagementFilterTests-context.xml
        │                   ├── SwitchUserFilterTests-context.xml
        │                   └── WebSecurityExpressionHandlerTests-context.xml
    └── src
        └── docs
            └── asciidoc
                └── migrate-3-to-4-xml.adoc


/.gitignore:
--------------------------------------------------------------------------------
 1 | target/
 2 | */src/*/java/META-INF
 3 | */src/META-INF/
 4 | */src/*/java/META-INF/
 5 | .classpath
 6 | .springBeans
 7 | .project
 8 | .DS_Store
 9 | .settings/
10 | .idea/
11 | out/
12 | bin/
13 | intellij/
14 | build/
15 | *.log
16 | *.log.*
17 | *.iml
18 | *.ipr
19 | *.iws
20 | .gradle/
21 | atlassian-ide-plugin.xml


--------------------------------------------------------------------------------
/README.adoc:
--------------------------------------------------------------------------------
1 | = Migrating from Spring Security 3.x to 4.x
2 | 
3 | This project demonstrates how to migrate from Spring Security 3.x to Spring Security 4.x.
4 | You can find detailed instructions in the http://docs.spring.io/spring-security/site/docs/4.0.x/reference/htmlsingle/#m3to4[Spring Security 4 Reference]


--------------------------------------------------------------------------------
/build.gradle:
--------------------------------------------------------------------------------
 1 | apply plugin: 'java'
 2 | apply plugin: 'eclipse'
 3 | 
 4 | group = 'org.springframework.security.migrate'
 5 | 
 6 | ext.ASCIIDOC_GRADLE = "$rootDir/gradle/asciidoc.gradle"
 7 | 
 8 | ext.springVersion = '4.1.7.RELEASE'
 9 | 
10 | task docsZip(type: Zip) {
11 | 	baseName = rootProject.name
12 | 	classifier = 'docs'
13 | 	duplicatesStrategy = 'EXCLUDE'
14 | 	from { [project(':xml'), project(':jc')]*.tasks*.asciidoctor*.outputs }
15 | 	into 'migrate'
16 | }
17 | 
18 | tasks.build.dependsOn docsZip
19 | 
20 | configurations.archives.artifacts.clear()
21 | 
22 | artifacts {
23 | 	archives docsZip
24 | }


--------------------------------------------------------------------------------
/gradle.properties:
--------------------------------------------------------------------------------
1 | version=1.0.0-CI-SNAPSHOT


--------------------------------------------------------------------------------
/gradle/asciidoc.gradle:
--------------------------------------------------------------------------------
 1 | apply plugin: 'java'
 2 | 
 3 | asciidoctor {
 4 |         options = [
 5 |           eruby: 'erubis'
 6 |         ]
 7 |         attributes copycss : '',
 8 |             icons : 'font',
 9 |             'source-highlighter': 'prettify',
10 |             sectanchors : '',
11 |             toc: 'left',
12 |             idprefix: '',
13 |             idseparator: '-',
14 |             doctype: 'book',
15 |             numbered: '',
16 | 
17 |             'spring-security-docs-url' : 'https://docs.spring.io/spring-security/site/docs/3.2.x/reference/htmlsingle/#',
18 |             'spring-security-migration-github-url' : 'https://github.com/spring-projects/spring-security-migrate-3-to-4/'
19 |     }
20 | 
21 | tasks.build.dependsOn asciidoctor


--------------------------------------------------------------------------------
/gradle/wrapper/gradle-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/spring-attic/spring-security-migrate-3-to-4/da1ea227ba56e6a7efed5f54bfb66078ff151d96/gradle/wrapper/gradle-wrapper.jar


--------------------------------------------------------------------------------
/gradle/wrapper/gradle-wrapper.properties:
--------------------------------------------------------------------------------
1 | #Fri Mar 20 09:40:53 CDT 2015
2 | distributionBase=GRADLE_USER_HOME
3 | distributionPath=wrapper/dists
4 | zipStoreBase=GRADLE_USER_HOME
5 | zipStorePath=wrapper/dists
6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.3-bin.zip
7 | 


--------------------------------------------------------------------------------
/jc/build.gradle:
--------------------------------------------------------------------------------
1 | plugins {
2 |     id 'org.asciidoctor.convert' version '1.5.2'
3 | }
4 | apply from: ASCIIDOC_GRADLE
5 | 
6 | tasks.findByPath("artifactoryPublish")?.enabled = false


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/.gitignore:
--------------------------------------------------------------------------------
 1 | build
 2 | target
 3 | bin
 4 | .classpath
 5 | .settings
 6 | .project
 7 | .idea
 8 | *~
 9 | .springBeans
10 | .gradle
11 | *.iml


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/gradle/wrapper/gradle-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/spring-attic/spring-security-migrate-3-to-4/da1ea227ba56e6a7efed5f54bfb66078ff151d96/jc/spring-security-3-jc/gradle/wrapper/gradle-wrapper.jar


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/gradle/wrapper/gradle-wrapper.properties:
--------------------------------------------------------------------------------
1 | #Wed Mar 18 08:16:34 CDT 2015
2 | distributionBase=GRADLE_USER_HOME
3 | distributionPath=wrapper/dists
4 | zipStoreBase=GRADLE_USER_HOME
5 | zipStorePath=wrapper/dists
6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.3-bin.zip
7 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/AppInitializer.java:
--------------------------------------------------------------------------------
 1 | package sample;
 2 | 
 3 | import org.springframework.web.servlet.support.AbstractAnnotationConfigDispatcherServletInitializer;
 4 | 
 5 | import sample.mvc.MvcConfig;
 6 | 
 7 | public class AppInitializer extends
 8 | 		AbstractAnnotationConfigDispatcherServletInitializer {
 9 | 
10 | 	@Override
11 | 	protected Class<?>[] getRootConfigClasses() {
12 | 		return new Class[] {SecurityConfig.class};
13 | 	}
14 | 
15 | 	@Override
16 | 	protected Class<?>[] getServletConfigClasses() {
17 | 		return new Class[] {MvcConfig.class};
18 | 	}
19 | 
20 | 	@Override
21 | 	protected String[] getServletMappings() {
22 | 		return new String[] {"/"};
23 | 	}
24 | 
25 | }
26 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.security.access.prepost.PreAuthorize;
19 | 
20 | /**
21 |  * @author Rob Winch
22 |  */
23 | public class HelloWorldMessageService implements MessageService {
24 | 
25 | 	@PreAuthorize("hasRole('ROLE_USER')")
26 | 	public String getMessage() {
27 | 		return "Hello World";
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/MessageService.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | /**
4 |  * @author Rob Winch
5 |  */
6 | public interface MessageService {
7 | 	String getMessage();
8 | }
9 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/SecurityInitializer.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | import org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer;
4 | 
5 | public class SecurityInitializer extends
6 | 		AbstractSecurityWebApplicationInitializer {
7 | 
8 | }
9 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/mvc/AuthenticationPrincipalController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2016 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License");
 5 |  * you may not use this file except in compliance with the License.
 6 |  * You may obtain a copy of the License at
 7 |  *
 8 |  *      https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS,
12 |  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 |  * See the License for the specific language governing permissions and
14 |  * limitations under the License.
15 |  */
16 | package sample.mvc;
17 | 
18 | import org.springframework.security.web.bind.annotation.AuthenticationPrincipal;
19 | import org.springframework.web.bind.annotation.RequestMapping;
20 | import org.springframework.web.bind.annotation.RestController;
21 | 
22 | /**
23 |  * Demonstrates the use of {@link AuthenticationPrincipal} on a method argument.
24 |  * See test sample.web.AuthenticationPrincipalTests.
25 |  *
26 |  * @author Joe Grandja
27 |  */
28 | @RestController
29 | public class AuthenticationPrincipalController {
30 | 
31 | 	@RequestMapping("/principal")
32 | 	public String principal(@AuthenticationPrincipal String principal) {
33 | 		return principal;
34 | 	}
35 | 
36 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/mvc/LoginController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.mvc;
17 | 
18 | import org.springframework.stereotype.Controller;
19 | import org.springframework.web.bind.annotation.RequestMapping;
20 | 
21 | /**
22 |  * @author Rob Winch
23 |  */
24 | @Controller
25 | public class LoginController {
26 | 	@RequestMapping("/login")
27 | 	public String login() {
28 | 		return "login";
29 | 	}
30 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/java/sample/mvc/MvcConfig.java:
--------------------------------------------------------------------------------
 1 | package sample.mvc;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.ComponentScan;
 5 | import org.springframework.web.servlet.config.annotation.EnableWebMvc;
 6 | import org.springframework.web.servlet.view.InternalResourceViewResolver;
 7 | 
 8 | @EnableWebMvc
 9 | @ComponentScan
10 | public class MvcConfig {
11 | 	@Bean
12 | 	public InternalResourceViewResolver viewResolver() {
13 | 		InternalResourceViewResolver resolver = new InternalResourceViewResolver();
14 | 		resolver.setPrefix("/WEB-INF/views/");
15 | 		resolver.setSuffix(".jsp");
16 | 		return resolver;
17 | 	}
18 | }
19 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="warn" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/webapp/WEB-INF/views/home.jsp:
--------------------------------------------------------------------------------
 1 | <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
 2 | <%@ taglib uri="http://www.springframework.org/tags/form"  prefix="form"%>
 3 | <%@taglib prefix="sec"
 4 | 	uri="http://www.springframework.org/security/tags"%>
 5 | <%@ page session="false"%>
 6 | <html>
 7 | <head>
 8 | <title>Home</title>
 9 | </head>
10 | <body>
11 | 	<p>
12 | 		Message <b><c:out value="${message}" /></b>
13 | 	</p>
14 | 	<p>
15 | 		<form:form action="./logout" method="post">
16 | 			<input type="submit" value="Log Out"/>
17 | 		</form:form>
18 | 	</p>
19 | 
20 | 	<sec:authorize ifAllGranted="ROLE_ADMIN,ROLE_USER">
21 | 		<p>Must have ROLE_ADMIN and ROLE_USER</p>
22 | 	</sec:authorize>
23 | 	<sec:authorize ifAnyGranted="ROLE_ADMIN,ROLE_USER">
24 | 		<p>Must have ROLE_ADMIN or ROLE_USER</p>
25 | 	</sec:authorize>
26 | 	<sec:authorize ifNotGranted="ROLE_ADMIN,ROLE_USER">
27 | 		<p>Must not have ROLE_ADMIN</p>
28 | 	</sec:authorize>
29 | </body>
30 | </html>
31 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/main/webapp/WEB-INF/views/login.jsp:
--------------------------------------------------------------------------------
 1 | <%@taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
 2 | <%@taglib prefix="form" uri="http://www.springframework.org/tags/form" %>
 3 | <%@ page pageEncoding="UTF-8"%>
 4 | 
 5 | <html>
 6 | <head>
 7 | <title>Login</title>
 8 | </head>
 9 | 
10 | <body>
11 | 	<h1>Login</h1>
12 | 
13 | 	<c:url var="loginUrl" value="/login" />
14 | 	<form:form action="${loginUrl}" method="post">
15 | 		<p>
16 | 			<label for="username">User:</label>
17 | 		</p>
18 | 		<input type="text" id="username" name="username" />
19 | 
20 | 		<p>
21 | 			<label for="password">Password:</label>
22 | 		</p>
23 | 		<input type="password" id="password" name="password">
24 | 
25 | 		<p>
26 | 			<label for="remember-me">Remember Me</label>
27 | 		</p>
28 | 		<input type="checkbox" id="remember-me"
29 | 			name="remember-me" />
30 | 
31 | 		<div>
32 | 			<input name="submit" type="submit" />
33 | 		</div>
34 | 	</form:form>
35 | 
36 | </body>
37 | </html>
38 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/acl/AclImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import java.io.Serializable;
 4 | import java.util.List;
 5 | 
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.mockito.Mock;
 9 | import org.mockito.runners.MockitoJUnitRunner;
10 | import org.springframework.security.acls.domain.AclAuthorizationStrategy;
11 | import org.springframework.security.acls.domain.AclImpl;
12 | import org.springframework.security.acls.domain.AuditLogger;
13 | import org.springframework.security.acls.model.Acl;
14 | import org.springframework.security.acls.model.ObjectIdentity;
15 | import org.springframework.security.acls.model.Sid;
16 | 
17 | 
18 | @RunWith(MockitoJUnitRunner.class)
19 | public class AclImplTests {
20 | 	@Mock
21 | 	ObjectIdentity objectIdentity;
22 | 	@Mock
23 | 	AclAuthorizationStrategy aclAuthorizationStrategy;
24 | 	@Mock
25 | 	AuditLogger auditLogger;
26 | 	@Mock
27 | 	Acl parentAcl;
28 | 	final boolean entriesInheriting = true;
29 | 	@Mock
30 | 	Sid owner;
31 | 	@Mock
32 | 	List<Sid> loadedSids;
33 | 	Serializable id = "id";
34 | 
35 | 	@Test
36 | 	public void constructor() {
37 | 		new AclImpl(objectIdentity, id, aclAuthorizationStrategy, auditLogger,
38 | 				parentAcl, loadedSids, entriesInheriting, owner);
39 | 	}
40 | }
41 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/acl/EhCacheBasedAclCacheTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import net.sf.ehcache.Ehcache;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.acls.domain.EhCacheBasedAclCache;
10 | 
11 | @RunWith(MockitoJUnitRunner.class)
12 | public class EhCacheBasedAclCacheTests {
13 | 
14 | 	@Mock
15 | 	Ehcache ehCache;
16 | 
17 | 	@Test
18 | 	public void constructor() throws Exception {
19 | 		new EhCacheBasedAclCache(ehCache);
20 | 	}
21 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/cas/ServiceAuthenticationDetailsSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.cas;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.springframework.security.cas.ServiceProperties;
 6 | import org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource;
 7 | 
 8 | public class ServiceAuthenticationDetailsSourceTests {
 9 | 	final String artifactId = "TICKET";
10 | 
11 | 	ServiceProperties serviceProperties;
12 | 
13 | 	@Before
14 | 	public void setup() {
15 | 		serviceProperties = new ServiceProperties();
16 | 	}
17 | 
18 | 	@Test
19 | 	public void constructor() {
20 | 		new ServiceAuthenticationDetailsSource();
21 | 	}
22 | 
23 | 	@Test
24 | 	public void constructorString() {
25 | 		new ServiceAuthenticationDetailsSource(artifactId);
26 | 	}
27 | }
28 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/AnonymousAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AnonymousAuthenticationProvider;
 5 | 
 6 | public class AnonymousAuthenticationProviderTests {
 7 | 
 8 | 	final String key = "key";
 9 | 
10 | 	@Test
11 | 	public void constructor() {
12 | 		AnonymousAuthenticationProvider provider = new AnonymousAuthenticationProvider();
13 | 		provider.setKey(key);
14 | 	}
15 | }
16 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/AuthenticationDetailsSourceImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AuthenticationDetailsSourceImpl;
 5 | 
 6 | public class AuthenticationDetailsSourceImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void test() {
10 | 		AuthenticationDetailsSourceImpl source = new AuthenticationDetailsSourceImpl();
11 | 		source.setClazz(CustomWebAuthenticationDetails.class);
12 | 	}
13 | 
14 | }
15 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/CustomWebAuthenticationDetails.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 6 | 
 7 | @SuppressWarnings("serial")
 8 | public class CustomWebAuthenticationDetails extends WebAuthenticationDetails {
 9 | 	private String customProperty;
10 | 
11 | 	public CustomWebAuthenticationDetails(HttpServletRequest request) {
12 | 		super(request);
13 | 		this.customProperty = request.getHeader("custom");
14 | 	}
15 | 
16 | 	public String getCustomProperty() {
17 | 		return customProperty;
18 | 	}
19 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/GrantedAuthorityImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.core.authority.GrantedAuthorityImpl;
 5 | 
 6 | public class GrantedAuthorityImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void constructor() {
10 | 		new GrantedAuthorityImpl("ROLE_USER");
11 | 	}
12 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/InMemoryDaoImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.Properties;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.core.userdetails.UserDetailsService;
10 | import org.springframework.security.core.userdetails.memory.InMemoryDaoImpl;
11 | 
12 | 
13 | 
14 | @RunWith(MockitoJUnitRunner.class)
15 | public class InMemoryDaoImplTests {
16 | 
17 | 	@Mock
18 | 	UserDetailsService uds;
19 | 
20 | 	@Test
21 | 	public void javaExample() {
22 | 		Properties properties = new Properties();
23 | 		properties.put("user", "password,ROLE_USER");
24 | 
25 | 		InMemoryDaoImpl uds = new InMemoryDaoImpl();
26 | 		uds.setUserProperties(properties);
27 | 	}
28 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/RememberMeAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.authentication.RememberMeAuthenticationProvider;
 8 | 
 9 | @RunWith(MockitoJUnitRunner.class)
10 | public class RememberMeAuthenticationProviderTests {
11 | 	final String key = "key";
12 | 
13 | 	@Mock
14 | 	RememberMeAuthenticationProvider provider;
15 | 
16 | 	@Test
17 | 	public void javaCompiles() {
18 | 		RememberMeAuthenticationProvider provider = new RememberMeAuthenticationProvider();
19 | 		provider.setKey(key);
20 | 	}
21 | }
22 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/SecurityConfigTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.List;
 6 | 
 7 | import org.junit.Test;
 8 | import org.springframework.security.access.ConfigAttribute;
 9 | import org.springframework.security.access.SecurityConfig;
10 | 
11 | public class SecurityConfigTests {
12 | 
13 | 	@Test
14 | 	public void createSingleAttributeList() {
15 | 		List<ConfigAttribute> attrs =
16 | 				SecurityConfig.createSingleAttributeList("ROLE_USER");
17 | 
18 | 		assertThat(attrs).onProperty("attribute").containsOnly("ROLE_USER");
19 | 	}
20 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/core/UserDetailsWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.Collection;
 6 | import java.util.List;
 7 | 
 8 | import org.junit.Test;
 9 | import org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl;
10 | import org.springframework.security.access.hierarchicalroles.UserDetailsWrapper;
11 | import org.springframework.security.core.GrantedAuthority;
12 | import org.springframework.security.core.authority.AuthorityUtils;
13 | import org.springframework.security.core.userdetails.User;
14 | import org.springframework.security.core.userdetails.UserDetails;
15 | 
16 | public class UserDetailsWrapperTests {
17 | 
18 | 	@Test
19 | 	public void test() {
20 | 		List<GrantedAuthority> authorities = AuthorityUtils.createAuthorityList("ROLE_ADMIN");
21 | 		UserDetails userDetails = new User("admin", "notused", authorities);
22 | 		RoleHierarchyImpl roleHiearchy = new RoleHierarchyImpl();
23 | 		roleHiearchy.setHierarchy("ROLE_ADMIN > ROLE_USER");
24 | 
25 | 		UserDetailsWrapper authenticate = new UserDetailsWrapper(userDetails, roleHiearchy);
26 | 
27 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/openid/OpenID4JavaConsumerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import java.util.Arrays;
 4 | import java.util.List;
 5 | 
 6 | import org.junit.Before;
 7 | import org.junit.Test;
 8 | import org.springframework.security.openid.OpenID4JavaConsumer;
 9 | import org.springframework.security.openid.OpenIDAttribute;
10 | 
11 | public class OpenID4JavaConsumerTests {
12 | 
13 | 	List<OpenIDAttribute> attributes;
14 | 
15 | 	@Before
16 | 	public void setup() {
17 | 		attributes = Arrays.asList(new OpenIDAttribute("email",
18 | 				"http://axschema.org/contact/email"));
19 | 	}
20 | 
21 | 	@Test
22 | 	public void constructor() throws Exception {
23 | 		new OpenID4JavaConsumer(attributes);
24 | 	}
25 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/role_/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.role_;
17 | 
18 | import javax.annotation.security.RolesAllowed;
19 | 
20 | import org.springframework.security.access.prepost.PreAuthorize;
21 | 
22 | /**
23 |  * @author Rob Winch
24 |  */
25 | public class HelloWorldMessageService implements MessageService {
26 | 
27 | 	@PreAuthorize("hasRole('USER')")
28 | 	public String getMessage() {
29 | 		return "Hello World";
30 | 	}
31 | 
32 | 	@RolesAllowed("USER")
33 | 	public String getJsrMessage() {
34 | 		return "Hello JSR";
35 | 	}
36 | }
37 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/role_/MessageService.java:
--------------------------------------------------------------------------------
 1 | package sample.role_;
 2 | 
 3 | /**
 4 |  * @author Rob Winch
 5 |  */
 6 | public interface MessageService {
 7 | 	String getMessage();
 8 | 	String getJsrMessage();
 9 | }
10 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/AbstractRememberMeServicesTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.core.userdetails.UserDetailsService;
 8 | import org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices;
 9 | import org.springframework.security.web.authentication.rememberme.PersistentTokenRepository;
10 | import org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices;
11 | 
12 | @RunWith(MockitoJUnitRunner.class)
13 | public class AbstractRememberMeServicesTests {
14 | 	final String key = "key";
15 | 
16 | 	@Mock
17 | 	UserDetailsService userDetailsService;
18 | 
19 | 	@Mock
20 | 	PersistentTokenRepository tokenRepository;
21 | 
22 | 	@Test
23 | 	public void deprecatedPropertiesPersistentTokenBasedRememberMeServices() {
24 | 		PersistentTokenBasedRememberMeServices services = new PersistentTokenBasedRememberMeServices();
25 | 		services.setKey(key);
26 | 		services.setUserDetailsService(userDetailsService);
27 | 		services.setTokenRepository(tokenRepository);
28 | 	}
29 | 
30 | 	@Test
31 | 	public void deprecatedPropertiesTokenBasedRememberMeServices() {
32 | 		TokenBasedRememberMeServices services = new TokenBasedRememberMeServices();
33 | 		services.setKey(key);
34 | 		services.setUserDetailsService(userDetailsService);
35 | 	}
36 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/AnonymousAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.springframework.security.core.authority.AuthorityUtils;
 6 | import org.springframework.security.core.userdetails.memory.UserAttribute;
 7 | import org.springframework.security.web.authentication.AnonymousAuthenticationFilter;
 8 | 
 9 | public class AnonymousAuthenticationFilterTests {
10 | 	final String key = "key";
11 | 	UserAttribute attrs;
12 | 
13 | 	@Before
14 | 	public void setup() {
15 | 		attrs = new UserAttribute();
16 | 		attrs.setPassword("anonymous");
17 | 		attrs.setAuthorities(AuthorityUtils
18 | 				.createAuthorityList("ROLE_ANONYMOUS"));
19 | 	}
20 | 
21 | 	@Test
22 | 	public void deprecatedProperties() {
23 | 		AnonymousAuthenticationFilter filter = new AnonymousAuthenticationFilter();
24 | 		filter.setKey(key);
25 | 		filter.setUserAttribute(attrs);
26 | 	}
27 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/BasicAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.authentication.AuthenticationManager;
 8 | import org.springframework.security.web.AuthenticationEntryPoint;
 9 | import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
10 | 
11 | @RunWith(MockitoJUnitRunner.class)
12 | public class BasicAuthenticationFilterTests {
13 | 	@Mock
14 | 	AuthenticationManager authenticationManager;
15 | 
16 | 	@Mock
17 | 	AuthenticationEntryPoint entryPoint;
18 | 
19 | 	final boolean ignoreFailure = false;
20 | 
21 | 	@Test
22 | 	public void deprecated() {
23 | 		BasicAuthenticationFilter filter = new BasicAuthenticationFilter();
24 | 		filter.setAuthenticationManager(authenticationManager);
25 | 		filter.setAuthenticationEntryPoint(entryPoint);
26 | 		filter.setIgnoreFailure(ignoreFailure);
27 | 	}
28 | }
29 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/ConcurrentSessionControlStrategyTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.core.session.SessionRegistry;
 8 | import org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy;
 9 | import org.springframework.security.web.authentication.session.SessionAuthenticationStrategy;
10 | 
11 | @RunWith(MockitoJUnitRunner.class)
12 | public class ConcurrentSessionControlStrategyTests {
13 | 
14 | 	@Mock
15 | 	SessionRegistry sessionRegistry;
16 | 	@Mock
17 | 	SessionAuthenticationStrategy sas;
18 | 
19 | 	@Test
20 | 	public void deprecated() {
21 | 		ConcurrentSessionControlStrategy strategy = new ConcurrentSessionControlStrategy(
22 | 				sessionRegistry);
23 | 	}
24 | 
25 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/ConcurrentSessionFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.core.session.SessionRegistry;
10 | import org.springframework.security.web.session.ConcurrentSessionFilter;
11 | 
12 | @RunWith(MockitoJUnitRunner.class)
13 | public class ConcurrentSessionFilterTests {
14 | 	@Mock
15 | 	SessionRegistry sessionRegistry;
16 | 	@Mock
17 | 	Filter filter;
18 | 
19 | 	@Test
20 | 	public void deprecated() {
21 | 		ConcurrentSessionFilter filter = new ConcurrentSessionFilter();
22 | 		filter.setSessionRegistry(sessionRegistry);
23 | 		filter.setExpiredUrl("/expired");
24 | 	}
25 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/ExceptionTranslationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.web.AuthenticationEntryPoint;
 5 | import org.springframework.security.web.access.ExceptionTranslationFilter;
 6 | import org.springframework.security.web.authentication.Http403ForbiddenEntryPoint;
 7 | import org.springframework.security.web.savedrequest.NullRequestCache;
 8 | import org.springframework.security.web.savedrequest.RequestCache;
 9 | 
10 | public class ExceptionTranslationFilterTests {
11 | 
12 | 	@Test
13 | 	public void deprecatedSetters() {
14 | 		RequestCache requestCache = new NullRequestCache();
15 | 		AuthenticationEntryPoint entryPoint = new Http403ForbiddenEntryPoint();
16 | 
17 | 		ExceptionTranslationFilter filter = new ExceptionTranslationFilter();
18 | 		filter.setAuthenticationEntryPoint(entryPoint);
19 | 		filter.setRequestCache(requestCache);
20 | 	}
21 | }
22 | 


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/LoginUrlAuthenticationEntryPointTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
 5 | 
 6 | 
 7 | 
 8 | public class LoginUrlAuthenticationEntryPointTests {
 9 | 
10 | 	@Test
11 | 	public void deprecatedProperties() {
12 | 		LoginUrlAuthenticationEntryPoint entryPoint = new LoginUrlAuthenticationEntryPoint();
13 | 		entryPoint.setLoginFormUrl("/login");
14 | 	}
15 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/RequestCacheAwareFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.context.annotation.Bean;
 9 | import org.springframework.context.annotation.Configuration;
10 | import org.springframework.security.web.savedrequest.NullRequestCache;
11 | import org.springframework.security.web.savedrequest.RequestCache;
12 | import org.springframework.security.web.savedrequest.RequestCacheAwareFilter;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class RequestCacheAwareFilterTests {
19 | 	@Autowired
20 | 	RequestCache requestCache;
21 | 	@Autowired
22 | 	Filter filter;
23 | 
24 | 	@Test
25 | 	public void configLoads() {}
26 | 
27 | 	@Configuration
28 | 	static class Config {
29 | 
30 | 		@Bean
31 | 		public RequestCacheAwareFilter rememberMeAuthenticationFilter(RequestCache requestCache) {
32 | 			RequestCacheAwareFilter filter = new RequestCacheAwareFilter();
33 | 			filter.setRequestCache(requestCache);
34 | 			return filter;
35 | 		}
36 | 
37 | 		@Bean
38 | 		public RequestCache requestCache() {
39 | 			return new NullRequestCache();
40 | 		}
41 | 	}
42 | }


--------------------------------------------------------------------------------
/jc/spring-security-3-jc/src/test/java/sample/web/SecurityContextPersistenceFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.context.annotation.Bean;
 6 | import org.springframework.context.annotation.Configuration;
 7 | import org.springframework.security.web.context.NullSecurityContextRepository;
 8 | import org.springframework.security.web.context.SecurityContextPersistenceFilter;
 9 | import org.springframework.security.web.context.SecurityContextRepository;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class SecurityContextPersistenceFilterTests {
18 | 
19 | 	@Test
20 | 	public void configLoads() {}
21 | 
22 | 	@Configuration
23 | 	static class Config {
24 | 		@Bean
25 | 		public SecurityContextPersistenceFilter securityContextPersistenceFilter(SecurityContextRepository securityContextRepository) {
26 | 			SecurityContextPersistenceFilter filter = new SecurityContextPersistenceFilter();
27 | 			filter.setSecurityContextRepository(securityContextRepository);
28 | 			return filter;
29 | 		}
30 | 
31 | 		@Bean
32 | 		public SecurityContextRepository securityContextRepository() {
33 | 			return new NullSecurityContextRepository();
34 | 		}
35 | 	}
36 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/.gitignore:
--------------------------------------------------------------------------------
 1 | build
 2 | target
 3 | bin
 4 | .classpath
 5 | .settings
 6 | .project
 7 | .idea
 8 | *~
 9 | .springBeans
10 | .gradle
11 | *.iml


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/gradle/wrapper/gradle-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/spring-attic/spring-security-migrate-3-to-4/da1ea227ba56e6a7efed5f54bfb66078ff151d96/jc/spring-security-4-jc/gradle/wrapper/gradle-wrapper.jar


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/gradle/wrapper/gradle-wrapper.properties:
--------------------------------------------------------------------------------
1 | #Wed Mar 18 08:16:34 CDT 2015
2 | distributionBase=GRADLE_USER_HOME
3 | distributionPath=wrapper/dists
4 | zipStoreBase=GRADLE_USER_HOME
5 | zipStorePath=wrapper/dists
6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.3-bin.zip
7 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/AppInitializer.java:
--------------------------------------------------------------------------------
 1 | package sample;
 2 | 
 3 | import org.springframework.web.servlet.support.AbstractAnnotationConfigDispatcherServletInitializer;
 4 | 
 5 | import sample.mvc.MvcConfig;
 6 | 
 7 | public class AppInitializer extends
 8 | 		AbstractAnnotationConfigDispatcherServletInitializer {
 9 | 
10 | 	@Override
11 | 	protected Class<?>[] getRootConfigClasses() {
12 | 		return new Class[] {SecurityConfig.class};
13 | 	}
14 | 
15 | 	@Override
16 | 	protected Class<?>[] getServletConfigClasses() {
17 | 		return new Class[] {MvcConfig.class};
18 | 	}
19 | 
20 | 	@Override
21 | 	protected String[] getServletMappings() {
22 | 		return new String[] {"/"};
23 | 	}
24 | 
25 | }
26 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.security.access.prepost.PreAuthorize;
19 | 
20 | /**
21 |  * @author Rob Winch
22 |  */
23 | public class HelloWorldMessageService implements MessageService {
24 | 
25 | 	@PreAuthorize("hasRole('ROLE_USER')")
26 | 	public String getMessage() {
27 | 		return "Hello World";
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/MessageService.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | /**
4 |  * @author Rob Winch
5 |  */
6 | public interface MessageService {
7 | 	String getMessage();
8 | }
9 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/SecurityInitializer.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | import org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer;
4 | 
5 | public class SecurityInitializer extends
6 | 		AbstractSecurityWebApplicationInitializer {
7 | 
8 | }
9 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/mvc/AuthenticationPrincipalController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2016 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License");
 5 |  * you may not use this file except in compliance with the License.
 6 |  * You may obtain a copy of the License at
 7 |  *
 8 |  *      https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS,
12 |  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 |  * See the License for the specific language governing permissions and
14 |  * limitations under the License.
15 |  */
16 | package sample.mvc;
17 | 
18 | import org.springframework.security.core.annotation.AuthenticationPrincipal;
19 | import org.springframework.security.core.userdetails.User;
20 | import org.springframework.web.bind.annotation.RequestMapping;
21 | import org.springframework.web.bind.annotation.RestController;
22 | 
23 | /**
24 |  * Demonstrates the use of {@link AuthenticationPrincipal} on a method argument.
25 |  * See test sample.web.AuthenticationPrincipalTests.
26 |  *
27 |  * @author Joe Grandja
28 |  */
29 | @RestController
30 | public class AuthenticationPrincipalController {
31 | 
32 | 	@RequestMapping("/principal")
33 | 	public String principal(@AuthenticationPrincipal User principal) {
34 | 		return principal.getUsername();
35 | 	}
36 | 
37 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/mvc/LoginController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.mvc;
17 | 
18 | import org.springframework.stereotype.Controller;
19 | import org.springframework.web.bind.annotation.RequestMapping;
20 | 
21 | /**
22 |  * @author Rob Winch
23 |  */
24 | @Controller
25 | public class LoginController {
26 | 	@RequestMapping("/login")
27 | 	public String login() {
28 | 		return "login";
29 | 	}
30 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/java/sample/mvc/MvcConfig.java:
--------------------------------------------------------------------------------
 1 | package sample.mvc;
 2 | 
 3 | import org.springframework.context.annotation.Bean;
 4 | import org.springframework.context.annotation.ComponentScan;
 5 | import org.springframework.web.servlet.config.annotation.EnableWebMvc;
 6 | import org.springframework.web.servlet.view.InternalResourceViewResolver;
 7 | 
 8 | @EnableWebMvc
 9 | @ComponentScan
10 | public class MvcConfig {
11 | 	@Bean
12 | 	public InternalResourceViewResolver viewResolver() {
13 | 		InternalResourceViewResolver resolver = new InternalResourceViewResolver();
14 | 		resolver.setPrefix("/WEB-INF/views/");
15 | 		resolver.setSuffix(".jsp");
16 | 		return resolver;
17 | 	}
18 | }
19 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="warn" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/webapp/WEB-INF/views/home.jsp:
--------------------------------------------------------------------------------
 1 | <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
 2 | <%@ taglib uri="http://www.springframework.org/tags/form"  prefix="form"%>
 3 | <%@taglib prefix="sec"
 4 | 	uri="http://www.springframework.org/security/tags"%>
 5 | <%@ page session="false"%>
 6 | <html>
 7 | <head>
 8 | <title>Home</title>
 9 | </head>
10 | <body>
11 | 	<p>
12 | 		Message <b><c:out value="${message}" /></b>
13 | 	</p>
14 | 	<p>
15 | 		<form:form action="./logout" method="post">
16 | 			<input type="submit" value="Log Out"/>
17 | 		</form:form>
18 | 	</p>
19 | 
20 | 	<sec:authorize access="hasRole('ROLE_ADMIN') and hasRole('ROLE_USER')">
21 | 		<p>Must have ROLE_ADMIN and ROLE_USER</p>
22 | 	</sec:authorize>
23 | 	<sec:authorize access="hasAnyRole('ROLE_ADMIN','ROLE_USER')">
24 | 		<p>Must have ROLE_ADMIN or ROLE_USER</p>
25 | 	</sec:authorize>
26 | 	<sec:authorize access="!hasAnyRole('ROLE_ADMIN','ROLE_USER')">
27 | 		<p>Must not have ROLE_ADMIN or ROLE_USER</p>
28 | 	</sec:authorize>
29 | </body>
30 | </html>
31 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/main/webapp/WEB-INF/views/login.jsp:
--------------------------------------------------------------------------------
 1 | <%@taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
 2 | <%@taglib prefix="form" uri="http://www.springframework.org/tags/form" %>
 3 | <%@ page pageEncoding="UTF-8"%>
 4 | 
 5 | <html>
 6 | <head>
 7 | <title>Login</title>
 8 | </head>
 9 | 
10 | <body>
11 | 	<h1>Login</h1>
12 | 
13 | 	<c:url var="loginUrl" value="/login" />
14 | 	<form:form action="${loginUrl}" method="post">
15 | 		<p>
16 | 			<label for="username">User:</label>
17 | 		</p>
18 | 		<input type="text" id="username" name="username" />
19 | 
20 | 		<p>
21 | 			<label for="password">Password:</label>
22 | 		</p>
23 | 		<input type="password" id="password" name="password">
24 | 
25 | 		<p>
26 | 			<label for="remember-me">Remember Me</label>
27 | 		</p>
28 | 		<input type="checkbox" id="remember-me"
29 | 			name="remember-me" />
30 | 
31 | 		<div>
32 | 			<input name="submit" type="submit" />
33 | 		</div>
34 | 	</form:form>
35 | 
36 | </body>
37 | </html>
38 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/acl/EhCacheBasedAclCacheTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import net.sf.ehcache.Ehcache;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.acls.domain.AclAuthorizationStrategy;
10 | import org.springframework.security.acls.domain.AclAuthorizationStrategyImpl;
11 | import org.springframework.security.acls.domain.AuditLogger;
12 | import org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy;
13 | import org.springframework.security.acls.domain.EhCacheBasedAclCache;
14 | import org.springframework.security.acls.model.PermissionGrantingStrategy;
15 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
16 | 
17 | @RunWith(MockitoJUnitRunner.class)
18 | public class EhCacheBasedAclCacheTests {
19 | 
20 | 	@Mock
21 | 	Ehcache ehCache;
22 | 	@Mock
23 | 	AuditLogger auditLogger;
24 | 
25 | 	@Test
26 | 	public void constructor() throws Exception {
27 | 		PermissionGrantingStrategy permissionGrantingStrategy =
28 | 				new DefaultPermissionGrantingStrategy(auditLogger);
29 | 		AclAuthorizationStrategy aclAuthorizationStrategy =
30 | 				new AclAuthorizationStrategyImpl(new SimpleGrantedAuthority("ROLE_ACL_ADMIN"));
31 | 		new EhCacheBasedAclCache(ehCache, permissionGrantingStrategy, aclAuthorizationStrategy);
32 | 	}
33 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/cas/ServiceAuthenticationDetailsSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.cas;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.springframework.security.cas.ServiceProperties;
 6 | import org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource;
 7 | 
 8 | public class ServiceAuthenticationDetailsSourceTests {
 9 | 	final String artifactId = "TICKET";
10 | 
11 | 	ServiceProperties serviceProperties;
12 | 
13 | 	@Before
14 | 	public void setup() {
15 | 		serviceProperties = new ServiceProperties();
16 | 	}
17 | 
18 | 	@Test
19 | 	public void constructor() {
20 | 		new ServiceAuthenticationDetailsSource(serviceProperties);
21 | 	}
22 | 
23 | 	@Test
24 | 	public void constructorString() {
25 | 		new ServiceAuthenticationDetailsSource(serviceProperties, artifactId);
26 | 	}
27 | }
28 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/AbstractAccessDecisionManagerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.mockito.Mockito.mock;
 4 | 
 5 | import java.util.Arrays;
 6 | import java.util.List;
 7 | 
 8 | import org.junit.Before;
 9 | import org.junit.Test;
10 | import org.junit.runner.RunWith;
11 | import org.mockito.Mock;
12 | import org.mockito.runners.MockitoJUnitRunner;
13 | import org.springframework.security.access.AccessDecisionManager;
14 | import org.springframework.security.access.AccessDecisionVoter;
15 | import org.springframework.security.access.vote.AffirmativeBased;
16 | import org.springframework.security.access.vote.ConsensusBased;
17 | import org.springframework.security.access.vote.UnanimousBased;
18 | 
19 | @RunWith(MockitoJUnitRunner.class)
20 | public class AbstractAccessDecisionManagerTests {
21 | 	@Mock
22 | 	List<AccessDecisionManager> adm;
23 | 
24 | 	List<AccessDecisionVoter<? extends Object>> voters;
25 | 
26 | 	@Before
27 | 	public void setup() {
28 | 		voters = Arrays
29 | 				.<AccessDecisionVoter<? extends Object>> asList(mock(AccessDecisionVoter.class));
30 | 	}
31 | 
32 | 	@Test
33 | 	public void affirmativeBased() {
34 | 		AffirmativeBased adm = new AffirmativeBased(voters);
35 | 	}
36 | 
37 | 	@Test
38 | 	public void consensusBased() {
39 | 		ConsensusBased adm = new ConsensusBased(voters);
40 | 	}
41 | 
42 | 	@Test
43 | 	public void unanimousBased() {
44 | 		UnanimousBased adm = new UnanimousBased(voters);
45 | 	}
46 | }
47 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/AnonymousAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AnonymousAuthenticationProvider;
 5 | 
 6 | public class AnonymousAuthenticationProviderTests {
 7 | 
 8 | 	final String key = "key";
 9 | 
10 | 	@Test
11 | 	public void constructor() {
12 | 		AnonymousAuthenticationProvider provider = new AnonymousAuthenticationProvider(key);
13 | 	}
14 | }
15 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/AuthenticationDetailsSourceImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.junit.Test;
 6 | import org.springframework.security.authentication.AuthenticationDetailsSource;
 7 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 8 | 
 9 | public class AuthenticationDetailsSourceImplTests {
10 | 
11 | 	@Test
12 | 	public void test() {
13 | 		CustomWebAuthenticationDetailsSource source = new CustomWebAuthenticationDetailsSource();
14 | 	}
15 | 
16 | 	public class CustomWebAuthenticationDetailsSource implements AuthenticationDetailsSource<HttpServletRequest, WebAuthenticationDetails> {
17 | 
18 | 		public WebAuthenticationDetails buildDetails(HttpServletRequest context) {
19 | 			return new CustomWebAuthenticationDetails(context);
20 | 		}
21 | 	}
22 | }
23 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/CustomWebAuthenticationDetails.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 6 | 
 7 | @SuppressWarnings("serial")
 8 | public class CustomWebAuthenticationDetails extends WebAuthenticationDetails {
 9 | 	private String customProperty;
10 | 
11 | 	public CustomWebAuthenticationDetails(HttpServletRequest request) {
12 | 		super(request);
13 | 		this.customProperty = request.getHeader("custom");
14 | 	}
15 | 
16 | 	public String getCustomProperty() {
17 | 		return customProperty;
18 | 	}
19 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/GrantedAuthorityImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
 5 | 
 6 | public class GrantedAuthorityImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void constructor() {
10 | 		new SimpleGrantedAuthority("ROLE_USER");
11 | 	}
12 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/InMemoryDaoImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.Properties;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.core.userdetails.UserDetailsService;
10 | import org.springframework.security.provisioning.InMemoryUserDetailsManager;
11 | 
12 | 
13 | 
14 | @RunWith(MockitoJUnitRunner.class)
15 | public class InMemoryDaoImplTests {
16 | 
17 | 	@Mock
18 | 	UserDetailsService uds;
19 | 
20 | 	@Test
21 | 	public void javaExample() {
22 | 		Properties properties = new Properties();
23 | 		properties.put("user", "password,ROLE_USER");
24 | 
25 | 		InMemoryUserDetailsManager uds = new InMemoryUserDetailsManager(properties);
26 | 	}
27 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/RememberMeAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.authentication.RememberMeAuthenticationProvider;
 8 | 
 9 | @RunWith(MockitoJUnitRunner.class)
10 | public class RememberMeAuthenticationProviderTests {
11 | 	final String key = "key";
12 | 
13 | 	@Mock
14 | 	RememberMeAuthenticationProvider provider;
15 | 
16 | 	@Test
17 | 	public void javaCompiles() {
18 | 		RememberMeAuthenticationProvider provider = new RememberMeAuthenticationProvider(key);
19 | 	}
20 | }
21 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/SecurityConfigTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.List;
 6 | 
 7 | import org.junit.Test;
 8 | import org.springframework.security.access.ConfigAttribute;
 9 | import org.springframework.security.access.SecurityConfig;
10 | 
11 | public class SecurityConfigTests {
12 | 
13 | 	@Test
14 | 	public void createSingleAttributeList() {
15 | 		List<ConfigAttribute> attrs =
16 | 				SecurityConfig.createList("ROLE_USER");
17 | 
18 | 		assertThat(attrs).onProperty("attribute").containsOnly("ROLE_USER");
19 | 	}
20 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/core/UserDetailsWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.Collection;
 6 | import java.util.List;
 7 | 
 8 | import org.junit.Test;
 9 | import org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl;
10 | import org.springframework.security.core.GrantedAuthority;
11 | import org.springframework.security.core.authority.AuthorityUtils;
12 | import org.springframework.security.core.userdetails.User;
13 | import org.springframework.security.core.userdetails.UserDetails;
14 | 
15 | public class UserDetailsWrapperTests {
16 | 
17 | 	@Test
18 | 	public void test() {
19 | 		List<GrantedAuthority> authorities = AuthorityUtils.createAuthorityList("ROLE_ADMIN");
20 | 		UserDetails userDetails = new User("admin", "notused", authorities);
21 | 		RoleHierarchyImpl roleHiearchy = new RoleHierarchyImpl();
22 | 		roleHiearchy.setHierarchy("ROLE_ADMIN > ROLE_USER");
23 | 
24 | 		Collection<GrantedAuthority> allAuthorities =
25 | 				roleHiearchy.getReachableGrantedAuthorities(userDetails.getAuthorities());
26 | 		UserDetails authenticate =
27 | 				new User(userDetails.getUsername(), userDetails.getPassword(), allAuthorities);
28 | 
29 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
30 | 	}
31 | }
32 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/openid/OpenID4JavaConsumerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import java.util.Arrays;
 4 | import java.util.HashMap;
 5 | import java.util.List;
 6 | import java.util.Map;
 7 | 
 8 | import org.junit.Before;
 9 | import org.junit.Test;
10 | import org.springframework.security.openid.OpenID4JavaConsumer;
11 | import org.springframework.security.openid.OpenIDAttribute;
12 | import org.springframework.security.openid.RegexBasedAxFetchListFactory;
13 | 
14 | public class OpenID4JavaConsumerTests {
15 | 
16 | 	List<OpenIDAttribute> attributes;
17 | 
18 | 	@Before
19 | 	public void setup() {
20 | 		attributes = Arrays.asList(new OpenIDAttribute("email",
21 | 				"http://axschema.org/contact/email"));
22 | 	}
23 | 
24 | 	@Test
25 | 	public void constructor() throws Exception {
26 | 		Map<String, List<OpenIDAttribute>> regexMap = new HashMap<String,List<OpenIDAttribute>>();
27 | 		regexMap.put(".*", attributes);
28 | 		RegexBasedAxFetchListFactory factory = new RegexBasedAxFetchListFactory(regexMap);
29 | 		new OpenID4JavaConsumer(factory);
30 | 	}
31 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/role_/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.role_;
17 | 
18 | import javax.annotation.security.RolesAllowed;
19 | 
20 | import org.springframework.security.access.prepost.PreAuthorize;
21 | 
22 | /**
23 |  * @author Rob Winch
24 |  */
25 | public class HelloWorldMessageService implements MessageService {
26 | 
27 | 	@PreAuthorize("hasRole('USER')")
28 | 	public String getMessage() {
29 | 		return "Hello World";
30 | 	}
31 | 
32 | 	@RolesAllowed("USER")
33 | 	public String getJsrMessage() {
34 | 		return "Hello JSR";
35 | 	}
36 | }
37 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/role_/MessageService.java:
--------------------------------------------------------------------------------
 1 | package sample.role_;
 2 | 
 3 | /**
 4 |  * @author Rob Winch
 5 |  */
 6 | public interface MessageService {
 7 | 	String getMessage();
 8 | 	String getJsrMessage();
 9 | }
10 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/AbstractRememberMeServicesTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.core.userdetails.UserDetailsService;
 8 | import org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices;
 9 | import org.springframework.security.web.authentication.rememberme.PersistentTokenRepository;
10 | import org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices;
11 | 
12 | @RunWith(MockitoJUnitRunner.class)
13 | public class AbstractRememberMeServicesTests {
14 | 	final String key = "key";
15 | 
16 | 	@Mock
17 | 	UserDetailsService userDetailsService;
18 | 
19 | 	@Mock
20 | 	PersistentTokenRepository tokenRepository;
21 | 
22 | 
23 | 	@Test
24 | 	public void deprecatedPropertiesPersistentTokenBasedRememberMeServices() {
25 | 		PersistentTokenBasedRememberMeServices services = new PersistentTokenBasedRememberMeServices(
26 | 				key, userDetailsService, tokenRepository);
27 | 	}
28 | 
29 | 	@Test
30 | 	public void deprecatedPropertiesTokenBasedRememberMeServices() {
31 | 		TokenBasedRememberMeServices services = new TokenBasedRememberMeServices(
32 | 				key, userDetailsService);
33 | 	}
34 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/AnonymousAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.springframework.security.core.authority.AuthorityUtils;
 6 | import org.springframework.security.core.userdetails.memory.UserAttribute;
 7 | import org.springframework.security.web.authentication.AnonymousAuthenticationFilter;
 8 | 
 9 | public class AnonymousAuthenticationFilterTests {
10 | 	final String key = "key";
11 | 	UserAttribute attrs;
12 | 
13 | 	@Before
14 | 	public void setup() {
15 | 		attrs = new UserAttribute();
16 | 		attrs.setPassword("anonymous");
17 | 		attrs.setAuthorities(AuthorityUtils
18 | 				.createAuthorityList("ROLE_ANONYMOUS"));
19 | 	}
20 | 
21 | 	@Test
22 | 	public void deprecatedProperties() {
23 | 		AnonymousAuthenticationFilter filter =
24 | 				new AnonymousAuthenticationFilter(key,attrs.getPassword(),attrs.getAuthorities());
25 | 	}
26 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/BasicAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.mockito.Mock;
 6 | import org.mockito.runners.MockitoJUnitRunner;
 7 | import org.springframework.security.authentication.AuthenticationManager;
 8 | import org.springframework.security.web.AuthenticationEntryPoint;
 9 | import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
10 | 
11 | @RunWith(MockitoJUnitRunner.class)
12 | public class BasicAuthenticationFilterTests {
13 | 	@Mock
14 | 	AuthenticationManager authenticationManager;
15 | 
16 | 	@Mock
17 | 	AuthenticationEntryPoint entryPoint;
18 | 
19 | 	final boolean ignoreFailure = false;
20 | 
21 | 
22 | 	@Test
23 | 	public void deprecated() {
24 | 		BasicAuthenticationFilter filter =
25 | 				new BasicAuthenticationFilter(authenticationManager,entryPoint);
26 | 	}
27 | }
28 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/ConcurrentSessionFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.core.session.SessionRegistry;
10 | import org.springframework.security.web.session.ConcurrentSessionFilter;
11 | 
12 | @RunWith(MockitoJUnitRunner.class)
13 | public class ConcurrentSessionFilterTests {
14 | 	@Mock
15 | 	SessionRegistry sessionRegistry;
16 | 	@Mock
17 | 	Filter filter;
18 | 
19 | 	@Test
20 | 	public void deprecated() {
21 | 		ConcurrentSessionFilter filter = new ConcurrentSessionFilter(sessionRegistry,"/expired");
22 | 	}
23 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/ExceptionTranslationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.web.AuthenticationEntryPoint;
 5 | import org.springframework.security.web.access.ExceptionTranslationFilter;
 6 | import org.springframework.security.web.authentication.Http403ForbiddenEntryPoint;
 7 | import org.springframework.security.web.savedrequest.NullRequestCache;
 8 | import org.springframework.security.web.savedrequest.RequestCache;
 9 | 
10 | public class ExceptionTranslationFilterTests {
11 | 
12 | 	@Test
13 | 	public void deprecatedSetters() {
14 | 		RequestCache requestCache = new NullRequestCache();
15 | 		AuthenticationEntryPoint entryPoint = new Http403ForbiddenEntryPoint();
16 | 
17 | 		ExceptionTranslationFilter filter = new ExceptionTranslationFilter(entryPoint, requestCache);
18 | 	}
19 | }
20 | 


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/LoginUrlAuthenticationEntryPointTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
 5 | 
 6 | 
 7 | 
 8 | public class LoginUrlAuthenticationEntryPointTests {
 9 | 
10 | 	@Test
11 | 	public void deprecatedProperties() {
12 | 		LoginUrlAuthenticationEntryPoint entryPoint = new LoginUrlAuthenticationEntryPoint("/login");
13 | 	}
14 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/RequestCacheAwareFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.context.annotation.Bean;
 9 | import org.springframework.context.annotation.Configuration;
10 | import org.springframework.security.web.savedrequest.NullRequestCache;
11 | import org.springframework.security.web.savedrequest.RequestCache;
12 | import org.springframework.security.web.savedrequest.RequestCacheAwareFilter;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class RequestCacheAwareFilterTests {
19 | 	@Autowired
20 | 	RequestCache requestCache;
21 | 	@Autowired
22 | 	Filter filter;
23 | 
24 | 	@Test
25 | 	public void configLoads() {}
26 | 
27 | 	@Configuration
28 | 	static class Config {
29 | 
30 | 		@Bean
31 | 		public RequestCacheAwareFilter rememberMeAuthenticationFilter(RequestCache requestCache) {
32 | 			RequestCacheAwareFilter filter = new RequestCacheAwareFilter(requestCache);
33 | 			return filter;
34 | 		}
35 | 
36 | 		@Bean
37 | 		public RequestCache requestCache() {
38 | 			return new NullRequestCache();
39 | 		}
40 | 	}
41 | }


--------------------------------------------------------------------------------
/jc/spring-security-4-jc/src/test/java/sample/web/SecurityContextPersistenceFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.context.annotation.Bean;
 6 | import org.springframework.context.annotation.Configuration;
 7 | import org.springframework.security.web.context.NullSecurityContextRepository;
 8 | import org.springframework.security.web.context.SecurityContextPersistenceFilter;
 9 | import org.springframework.security.web.context.SecurityContextRepository;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class SecurityContextPersistenceFilterTests {
18 | 
19 | 	@Test
20 | 	public void configLoads() {}
21 | 
22 | 	@Configuration
23 | 	static class Config {
24 | 		@Bean
25 | 		public SecurityContextPersistenceFilter securityContextPersistenceFilter(SecurityContextRepository securityContextRepository) {
26 | 			SecurityContextPersistenceFilter filter = new SecurityContextPersistenceFilter(securityContextRepository);
27 | 			return filter;
28 | 		}
29 | 
30 | 		@Bean
31 | 		public SecurityContextRepository securityContextRepository() {
32 | 			return new NullSecurityContextRepository();
33 | 		}
34 | 	}
35 | }


--------------------------------------------------------------------------------
/push-changes.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash --
 2 | 
 3 | git checkout jc
 4 | git reset --hard master
 5 | cp -r jc/spring-security-4-jc/* jc/spring-security-3-jc/
 6 | git add .
 7 | git commit -m 'Migrate to Spring Security 4'
 8 | git push -f origin jc
 9 | git checkout xml
10 | git reset --hard master
11 | cp -r xml/spring-security-4-xml/* xml/spring-security-3-xml/
12 | git add .
13 | git commit -m 'Migrate to Spring Security 4'
14 | git push -f origin xml
15 | git checkout master
16 | git push -f origin master


--------------------------------------------------------------------------------
/settings.gradle:
--------------------------------------------------------------------------------
1 | rootProject.name = 'spring-security-migrate-3-to-4'
2 | 
3 | include ':xml:spring-security-4-xml'
4 | include ':xml:spring-security-3-xml'
5 | include ':jc:spring-security-4-jc'
6 | include ':jc:spring-security-3-jc'
7 | 


--------------------------------------------------------------------------------
/xml/build.gradle:
--------------------------------------------------------------------------------
1 | plugins {
2 | 	id 'org.asciidoctor.convert' version '1.5.2'
3 | }
4 | apply from: ASCIIDOC_GRADLE
5 | 
6 | tasks.findByPath("artifactoryPublish")?.enabled = false


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/.gitignore:
--------------------------------------------------------------------------------
 1 | build
 2 | target
 3 | bin
 4 | .classpath
 5 | .settings
 6 | .project
 7 | .idea
 8 | *~
 9 | .springBeans
10 | .gradle
11 | *.iml


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/gradle/wrapper/gradle-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/spring-attic/spring-security-migrate-3-to-4/da1ea227ba56e6a7efed5f54bfb66078ff151d96/xml/spring-security-3-xml/gradle/wrapper/gradle-wrapper.jar


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/gradle/wrapper/gradle-wrapper.properties:
--------------------------------------------------------------------------------
1 | #Wed Mar 18 08:16:34 CDT 2015
2 | distributionBase=GRADLE_USER_HOME
3 | distributionPath=wrapper/dists
4 | zipStoreBase=GRADLE_USER_HOME
5 | zipStorePath=wrapper/dists
6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.3-bin.zip
7 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/java/sample/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.security.access.prepost.PreAuthorize;
19 | 
20 | /**
21 |  * @author Rob Winch
22 |  */
23 | public class HelloWorldMessageService implements MessageService {
24 | 
25 | 	@PreAuthorize("hasRole('ROLE_USER')")
26 | 	public String getMessage() {
27 | 		return "Hello World";
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/java/sample/HomeController.java:
--------------------------------------------------------------------------------
 1 | package sample;
 2 | 
 3 | import java.util.Locale;
 4 | 
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.core.context.SecurityContextHolder;
 7 | import org.springframework.security.core.userdetails.UserDetails;
 8 | import org.springframework.stereotype.Controller;
 9 | import org.springframework.ui.Model;
10 | import org.springframework.web.bind.annotation.RequestMapping;
11 | import org.springframework.web.bind.annotation.RequestMethod;
12 | 
13 | /**
14 |  * Handles requests for the application home page.
15 |  */
16 | @Controller
17 | public class HomeController {
18 | 
19 | 	private final MessageService messageService;
20 | 
21 | 	@Autowired
22 | 	public HomeController(MessageService messageService) {
23 | 		this.messageService = messageService;
24 | 	}
25 | 
26 | 	/**
27 | 	 * Simply selects the home view to render by returning its name.
28 | 	 */
29 | 	@RequestMapping(value = "/", method = RequestMethod.GET)
30 | 	public String home(Locale locale, Model model) {
31 | 
32 | 		Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
33 | 		if (principal instanceof UserDetails) {
34 | 			model.addAttribute("username", ((UserDetails) principal).getUsername());
35 | 		} else {
36 | 			model.addAttribute("username", principal);
37 | 		}
38 | 		model.addAttribute("message", messageService.getMessage());
39 | 		return "home";
40 | 	}
41 | 
42 | }
43 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/java/sample/LoginController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.stereotype.Controller;
19 | import org.springframework.web.bind.annotation.RequestMapping;
20 | 
21 | /**
22 |  * @author Rob Winch
23 |  */
24 | @Controller
25 | public class LoginController {
26 | 	@RequestMapping("/login")
27 | 	public String login() {
28 | 		return "login";
29 | 	}
30 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/java/sample/MessageService.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | /**
4 |  * @author Rob Winch
5 |  */
6 | public interface MessageService {
7 | 	String getMessage();
8 | }
9 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="warn" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/webapp/WEB-INF/spring/root-context.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <beans xmlns="http://www.springframework.org/schema/beans"
3 |   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
4 |   xmlns:sec="http://www.springframework.org/schema/security"
5 |   xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
6 | 
7 | 
8 | </beans>
9 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/webapp/WEB-INF/spring/security.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<intercept-url pattern="/login" access="ROLE_ANONYMOUS"/>
 9 | 		<intercept-url pattern="/**" access="ROLE_USER"/>
10 | 		<form-login login-page="/login"/>
11 | 		<logout/>
12 | 	</http>
13 | 
14 | 	<authentication-manager>
15 | 		<authentication-provider>
16 | 			<user-service>
17 | 				<user name="user" password="password" authorities="ROLE_USER" />
18 | 				<user name="admin" password="password" authorities="ROLE_USER,ROLE_ADMIN" />
19 | 			</user-service>
20 | 		</authentication-provider>
21 | 	</authentication-manager>
22 | 
23 | 	<global-method-security pre-post-annotations="enabled" />
24 | 
25 | 	<b:bean class="sample.HelloWorldMessageService" />
26 | 
27 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/webapp/WEB-INF/views/home.jsp:
--------------------------------------------------------------------------------
 1 | <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
 2 | <%@taglib prefix="sec"
 3 | 	uri="http://www.springframework.org/security/tags"%>
 4 | <%@ page session="false"%>
 5 | <html>
 6 | <head>
 7 | <title>Home</title>
 8 | </head>
 9 | <body>
10 | 	<p>
11 | 		Message <b><c:out value="${message}" /></b>
12 | 	</p>
13 | 	<p>
14 | 		<a href="./j_spring_security_logout">Log Out</a>
15 | 	</p>
16 | 
17 | 	<sec:authorize ifAllGranted="ROLE_ADMIN,ROLE_USER">
18 | 		<p>Must have ROLE_ADMIN and ROLE_USER</p>
19 | 	</sec:authorize>
20 | 	<sec:authorize ifAnyGranted="ROLE_ADMIN,ROLE_USER">
21 | 		<p>Must have ROLE_ADMIN or ROLE_USER</p>
22 | 	</sec:authorize>
23 | 	<sec:authorize ifNotGranted="ROLE_ADMIN,ROLE_USER">
24 | 		<p>Must not have ROLE_ADMIN</p>
25 | 	</sec:authorize>
26 | </body>
27 | </html>
28 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/main/webapp/WEB-INF/views/login.jsp:
--------------------------------------------------------------------------------
 1 | <%@taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
 2 | <%@ page pageEncoding="UTF-8"%>
 3 | 
 4 | <html>
 5 | <head>
 6 | <title>Login</title>
 7 | </head>
 8 | 
 9 | <body>
10 | 	<h1>Login</h1>
11 | 
12 | 	<c:url var="loginUrl" value="/j_spring_security_check" />
13 | 	<form action="${loginUrl}" method="post">
14 | 		<p>
15 | 			<label for="j_username">User:</label>
16 | 		</p>
17 | 		<input type="text" id="j_username" name="j_username" />
18 | 
19 | 		<p>
20 | 			<label for="j_password">Password:</label>
21 | 		</p>
22 | 		<input type="password" id="j_password" name="j_password">
23 | 
24 | 		<p>
25 | 			<label for="_spring_security_remember_me">Remember Me</label>
26 | 		</p>
27 | 		<input type="checkbox" id="_spring_security_remember_me"
28 | 			name="_spring_security_remember_me" />
29 | 
30 | 		<div>
31 | 			<input name="submit" type="submit" />
32 | 		</div>
33 | 	</form>
34 | 
35 | </body>
36 | </html>
37 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/acl/AclImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import java.io.Serializable;
 4 | import java.util.List;
 5 | 
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.mockito.Mock;
 9 | import org.mockito.runners.MockitoJUnitRunner;
10 | import org.springframework.security.acls.domain.AclAuthorizationStrategy;
11 | import org.springframework.security.acls.domain.AclImpl;
12 | import org.springframework.security.acls.domain.AuditLogger;
13 | import org.springframework.security.acls.model.Acl;
14 | import org.springframework.security.acls.model.ObjectIdentity;
15 | import org.springframework.security.acls.model.Sid;
16 | 
17 | 
18 | @RunWith(MockitoJUnitRunner.class)
19 | public class AclImplTests {
20 | 	@Mock
21 | 	ObjectIdentity objectIdentity;
22 | 	@Mock
23 | 	AclAuthorizationStrategy aclAuthorizationStrategy;
24 | 	@Mock
25 | 	AuditLogger auditLogger;
26 | 	@Mock
27 | 	Acl parentAcl;
28 | 	final boolean entriesInheriting = true;
29 | 	@Mock
30 | 	Sid owner;
31 | 	@Mock
32 | 	List<Sid> loadedSids;
33 | 	Serializable id = "id";
34 | 
35 | 	@Test
36 | 	public void constructor() {
37 | 		new AclImpl(objectIdentity, id, aclAuthorizationStrategy, auditLogger,
38 | 				parentAcl, loadedSids, entriesInheriting, owner);
39 | 	}
40 | }
41 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/acl/EhCacheBasedAclCacheTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import net.sf.ehcache.Ehcache;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.acls.domain.EhCacheBasedAclCache;
10 | 
11 | @RunWith(MockitoJUnitRunner.class)
12 | public class EhCacheBasedAclCacheTests {
13 | 
14 | 	@Mock
15 | 	Ehcache ehCache;
16 | 
17 | 	@Test
18 | 	public void constructor() throws Exception {
19 | 		new EhCacheBasedAclCache(ehCache);
20 | 	}
21 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/cas/ServiceAuthenticationDetailsSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.cas;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.junit.runner.RunWith;
 6 | import org.springframework.security.cas.ServiceProperties;
 7 | import org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource;
 8 | import org.springframework.test.context.ContextConfiguration;
 9 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
10 | 
11 | 
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class ServiceAuthenticationDetailsSourceTests {
16 | 	final String artifactId = "TICKET";
17 | 
18 | 	ServiceProperties serviceProperties;
19 | 
20 | 	@Before
21 | 	public void setup() {
22 | 		serviceProperties = new ServiceProperties();
23 | 	}
24 | 
25 | 	@Test
26 | 	public void xmlConfigurationLoads() {}
27 | 
28 | 	@Test
29 | 	public void constructor() {
30 | 		new ServiceAuthenticationDetailsSource();
31 | 	}
32 | 
33 | 	@Test
34 | 	public void constructorString() {
35 | 		new ServiceAuthenticationDetailsSource(artifactId);
36 | 	}
37 | }
38 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/config/FilterInvocationDefinitionSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.config;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.access.intercept.FilterInvocationSecurityMetadataSource;
 7 | import org.springframework.test.context.ContextConfiguration;
 8 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 9 | 
10 | @RunWith(SpringJUnit4ClassRunner.class)
11 | @ContextConfiguration
12 | public class FilterInvocationDefinitionSourceTests {
13 | 
14 | 	@Autowired
15 | 	FilterInvocationSecurityMetadataSource sms;
16 | 
17 | 	@Test
18 | 	public void loads() {
19 | 	}
20 | }
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/config/HeadersTests.java:
--------------------------------------------------------------------------------
 1 | package sample.config;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import org.junit.Before;
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.springframework.beans.factory.annotation.Autowired;
 9 | import org.springframework.mock.web.MockFilterChain;
10 | import org.springframework.mock.web.MockHttpServletRequest;
11 | import org.springframework.mock.web.MockHttpServletResponse;
12 | import org.springframework.security.web.FilterChainProxy;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class HeadersTests {
19 | 
20 | 	MockHttpServletRequest request;
21 | 	MockHttpServletResponse response;
22 | 	MockFilterChain chain;
23 | 
24 | 	@Autowired
25 | 	FilterChainProxy springSecurityFilterChain;
26 | 
27 | 	@Before
28 | 	public void setup() {
29 | 		request = new MockHttpServletRequest();
30 | 		response = new MockHttpServletResponse();
31 | 		chain = new MockFilterChain();
32 | 	}
33 | 
34 | 	@Test
35 | 	public void headers() throws Exception {
36 | 		springSecurityFilterChain.doFilter(request, response, chain);
37 | 
38 | 		assertThat(response.getHeader("X-Frame-Options")).isEqualTo("SAMEORIGIN");
39 | 		assertThat(response.getHeaderNames().size()).isEqualTo(1);
40 | 	}
41 | }
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/AnonymousAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AnonymousAuthenticationProvider;
 5 | 
 6 | public class AnonymousAuthenticationProviderTests {
 7 | 
 8 | 	final String key = "key";
 9 | 
10 | 	@Test
11 | 	public void constructor() {
12 | 		AnonymousAuthenticationProvider provider = new AnonymousAuthenticationProvider();
13 | 		provider.setKey(key);
14 | 	}
15 | }
16 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/AuthenticationDetailsSourceImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AuthenticationDetailsSourceImpl;
 5 | 
 6 | public class AuthenticationDetailsSourceImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void test() {
10 | 		AuthenticationDetailsSourceImpl source = new AuthenticationDetailsSourceImpl();
11 | 		source.setClazz(CustomWebAuthenticationDetails.class);
12 | 	}
13 | 
14 | }
15 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/CustomWebAuthenticationDetails.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 6 | 
 7 | @SuppressWarnings("serial")
 8 | public class CustomWebAuthenticationDetails extends WebAuthenticationDetails {
 9 | 	private String customProperty;
10 | 
11 | 	public CustomWebAuthenticationDetails(HttpServletRequest request) {
12 | 		super(request);
13 | 		this.customProperty = request.getHeader("custom");
14 | 	}
15 | 
16 | 	public String getCustomProperty() {
17 | 		return customProperty;
18 | 	}
19 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/GrantedAuthorityImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.core.authority.GrantedAuthorityImpl;
 5 | 
 6 | public class GrantedAuthorityImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void constructor() {
10 | 		new GrantedAuthorityImpl("ROLE_USER");
11 | 	}
12 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/InMemoryDaoImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.Properties;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.userdetails.UserDetailsService;
 9 | import org.springframework.security.core.userdetails.memory.InMemoryDaoImpl;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class InMemoryDaoImplTests {
18 | 
19 | 	@Autowired
20 | 	UserDetailsService uds;
21 | 
22 | 	@Test
23 | 	public void findUser() {
24 | 		uds.loadUserByUsername("user");
25 | 	}
26 | 
27 | 	@Test
28 | 	public void javaExample() {
29 | 		Properties properties = new Properties();
30 | 		properties.put("user","password,ROLE_USER");
31 | 
32 | 		InMemoryDaoImpl uds = new InMemoryDaoImpl();
33 | 		uds.setUserProperties(properties);
34 | 	}
35 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/ProviderManagerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.List;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.beans.factory.annotation.Qualifier;
 9 | import org.springframework.security.authentication.AuthenticationProvider;
10 | import org.springframework.security.authentication.ProviderManager;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class ProviderManagerTests {
19 | 
20 | 	@Autowired
21 | 	List<AuthenticationProvider> providers;
22 | 
23 | 	@Qualifier("parent")
24 | 	@Autowired
25 | 	ProviderManager parent;
26 | 
27 | 	@Test
28 | 	public void contextLoads() {
29 | 	}
30 | 
31 | 	@Test
32 | 	public void javaCompiles() {
33 | 		ProviderManager provider = new ProviderManager();
34 | 		provider.setParent(parent);
35 | 		provider.setProviders(providers);
36 | 		provider.setClearExtraInformation(true);
37 | 	}
38 | }
39 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/RememberMeAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.RememberMeAuthenticationProvider;
 7 | import org.springframework.test.context.ContextConfiguration;
 8 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 9 | 
10 | 
11 | 
12 | @RunWith(SpringJUnit4ClassRunner.class)
13 | @ContextConfiguration
14 | public class RememberMeAuthenticationProviderTests {
15 | 	final String key = "key";
16 | 
17 | 	@Autowired
18 | 	RememberMeAuthenticationProvider provider;
19 | 
20 | 	@Test
21 | 	public void contextLoads() {}
22 | 
23 | 	@Test
24 | 	public void javaCompiles() {
25 | 		RememberMeAuthenticationProvider provider = new RememberMeAuthenticationProvider();
26 | 		provider.setKey(key);
27 | 	}
28 | }
29 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/SecurityConfigTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.List;
 6 | 
 7 | import org.junit.Test;
 8 | import org.springframework.security.access.ConfigAttribute;
 9 | import org.springframework.security.access.SecurityConfig;
10 | 
11 | public class SecurityConfigTests {
12 | 
13 | 	@Test
14 | 	public void createSingleAttributeList() {
15 | 		List<ConfigAttribute> attrs =
16 | 				SecurityConfig.createSingleAttributeList("ROLE_USER");
17 | 
18 | 		assertThat(attrs).onProperty("attribute").containsOnly("ROLE_USER");
19 | 	}
20 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/UserDetailsServiceWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.*;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.authentication.AuthenticationManager;
 9 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
10 | import org.springframework.security.core.Authentication;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class UserDetailsServiceWrapperTests {
18 | 
19 | 	@Autowired
20 | 	AuthenticationManager auth;
21 | 
22 | 	@Test
23 | 	public void hasHierarchy() {
24 | 		UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("admin", "password");
25 | 
26 | 		Authentication authenticate = auth.authenticate(token);
27 | 
28 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
29 | 	}
30 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/core/UserDetailsWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.Collection;
 6 | import java.util.List;
 7 | 
 8 | import org.junit.Test;
 9 | import org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl;
10 | import org.springframework.security.access.hierarchicalroles.UserDetailsWrapper;
11 | import org.springframework.security.core.GrantedAuthority;
12 | import org.springframework.security.core.authority.AuthorityUtils;
13 | import org.springframework.security.core.userdetails.User;
14 | import org.springframework.security.core.userdetails.UserDetails;
15 | 
16 | public class UserDetailsWrapperTests {
17 | 
18 | 	@Test
19 | 	public void test() {
20 | 		List<GrantedAuthority> authorities = AuthorityUtils.createAuthorityList("ROLE_ADMIN");
21 | 		UserDetails userDetails = new User("admin", "notused", authorities);
22 | 		RoleHierarchyImpl roleHiearchy = new RoleHierarchyImpl();
23 | 		roleHiearchy.setHierarchy("ROLE_ADMIN > ROLE_USER");
24 | 
25 | 		UserDetailsWrapper authenticate = new UserDetailsWrapper(userDetails, roleHiearchy);
26 | 
27 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/openid/OpenID4JavaConsumerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import java.util.Arrays;
 4 | import java.util.List;
 5 | 
 6 | import org.junit.Before;
 7 | import org.junit.Test;
 8 | import org.junit.runner.RunWith;
 9 | import org.springframework.security.openid.OpenID4JavaConsumer;
10 | import org.springframework.security.openid.OpenIDAttribute;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class OpenID4JavaConsumerTests {
17 | 
18 | 	List<OpenIDAttribute> attributes;
19 | 
20 | 	@Before
21 | 	public void setup() {
22 | 		attributes = Arrays.asList(new OpenIDAttribute("email", "http://axschema.org/contact/email"));
23 | 	}
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void constructor() throws Exception {
30 | 		new OpenID4JavaConsumer(attributes);
31 | 	}
32 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/openid/OpenIDTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import org.junit.Before;
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.springframework.beans.factory.annotation.Autowired;
 9 | import org.springframework.mock.web.MockFilterChain;
10 | import org.springframework.mock.web.MockHttpServletRequest;
11 | import org.springframework.mock.web.MockHttpServletResponse;
12 | import org.springframework.security.web.FilterChainProxy;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class OpenIDTests {
19 | 
20 | 	@Autowired
21 | 	FilterChainProxy springSecurityFilter;
22 | 
23 | 	MockHttpServletRequest request;
24 | 	MockHttpServletResponse response;
25 | 	MockFilterChain chain;
26 | 
27 | 	@Before
28 | 	public void setup() {
29 | 		request = new MockHttpServletRequest();
30 | 		response = new MockHttpServletResponse();
31 | 		chain = new MockFilterChain();
32 | 	}
33 | 
34 | 	@Test
35 | 	public void filterProcessUrl() throws Exception {
36 | 		request.setRequestURI("/j_spring_openid_security_check");
37 | 
38 | 		springSecurityFilter.doFilter(request, response, chain);
39 | 
40 | 		assertThat(response.getRedirectedUrl()).isNotNull();
41 | 	}
42 | }
43 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/role_/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.role_;
17 | 
18 | import javax.annotation.security.RolesAllowed;
19 | 
20 | import org.springframework.security.access.prepost.PreAuthorize;
21 | 
22 | /**
23 |  * @author Rob Winch
24 |  */
25 | public class HelloWorldMessageService implements MessageService {
26 | 
27 | 	@PreAuthorize("hasRole('USER')")
28 | 	public String getMessage() {
29 | 		return "Hello World";
30 | 	}
31 | 
32 | 	@RolesAllowed("USER")
33 | 	public String getJsrMessage() {
34 | 		return "Hello JSR";
35 | 	}
36 | }
37 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/role_/MessageService.java:
--------------------------------------------------------------------------------
 1 | package sample.role_;
 2 | 
 3 | /**
 4 |  * @author Rob Winch
 5 |  */
 6 | public interface MessageService {
 7 | 	String getMessage();
 8 | 	String getJsrMessage();
 9 | }
10 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/BasicAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.AuthenticationManager;
 7 | import org.springframework.security.web.AuthenticationEntryPoint;
 8 | import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
 9 | import org.springframework.test.context.ContextConfiguration;
10 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
11 | 
12 | 
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class BasicAuthenticationFilterTests {
17 | 	@Autowired
18 | 	AuthenticationManager authenticationManager;
19 | 
20 | 	@Autowired
21 | 	AuthenticationEntryPoint entryPoint;
22 | 
23 | 	final boolean ignoreFailure = false;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		BasicAuthenticationFilter filter = new BasicAuthenticationFilter();
31 | 		filter.setAuthenticationManager(authenticationManager);
32 | 		filter.setAuthenticationEntryPoint(entryPoint);
33 | 		filter.setIgnoreFailure(ignoreFailure);
34 | 	}
35 | }
36 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/ConcurrentSessionControlStrategyTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.core.session.SessionRegistry;
 7 | import org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy;
 8 | import org.springframework.security.web.authentication.session.SessionAuthenticationStrategy;
 9 | import org.springframework.test.context.ContextConfiguration;
10 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
11 | 
12 | 
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class ConcurrentSessionControlStrategyTests {
17 | 
18 | 	@Autowired
19 | 	SessionRegistry sessionRegistry;
20 | 
21 | 	@Autowired
22 | 	SessionAuthenticationStrategy sas;
23 | 
24 | 	@Test
25 | 	public void configLoads() {}
26 | 
27 | 	@Test
28 | 	public void deprecated() {
29 | 		ConcurrentSessionControlStrategy strategy = new ConcurrentSessionControlStrategy(sessionRegistry);
30 | 	}
31 | 
32 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/ConcurrentSessionFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.session.SessionRegistry;
 9 | import org.springframework.security.web.session.ConcurrentSessionFilter;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class ConcurrentSessionFilterTests {
16 | 	@Autowired
17 | 	SessionRegistry sessionRegistry;
18 | 	@Autowired
19 | 	Filter filter;
20 | 
21 | 	@Test
22 | 	public void configLoads() {}
23 | 
24 | 	@Test
25 | 	public void deprecated() {
26 | 		ConcurrentSessionFilter filter = new ConcurrentSessionFilter();
27 | 		filter.setSessionRegistry(sessionRegistry);
28 | 		filter.setExpiredUrl("/expired");
29 | 	}
30 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/ExceptionTranslationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.AuthenticationEntryPoint;
 7 | import org.springframework.security.web.access.ExceptionTranslationFilter;
 8 | import org.springframework.security.web.authentication.Http403ForbiddenEntryPoint;
 9 | import org.springframework.security.web.savedrequest.NullRequestCache;
10 | import org.springframework.security.web.savedrequest.RequestCache;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class ExceptionTranslationFilterTests {
19 | 	@Autowired
20 | 	ExceptionTranslationFilter etf;
21 | 
22 | 	@Test
23 | 	public void configLoads() {}
24 | 
25 | 	@Test
26 | 	public void deprecatedSetters() {
27 | 		RequestCache requestCache = new NullRequestCache();
28 | 		AuthenticationEntryPoint entryPoint = new Http403ForbiddenEntryPoint();
29 | 
30 | 		ExceptionTranslationFilter filter = new ExceptionTranslationFilter();
31 | 		filter.setAuthenticationEntryPoint(entryPoint);
32 | 		filter.setRequestCache(requestCache);
33 | 	}
34 | }
35 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/LoginUrlAuthenticationEntryPointTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.After;
 4 | import org.junit.Before;
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.authority.AuthorityUtils;
 9 | import org.springframework.security.core.context.SecurityContextHolder;
10 | import org.springframework.security.core.userdetails.memory.UserAttribute;
11 | import org.springframework.security.web.authentication.AnonymousAuthenticationFilter;
12 | import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | 
17 | 
18 | @RunWith(SpringJUnit4ClassRunner.class)
19 | @ContextConfiguration
20 | public class LoginUrlAuthenticationEntryPointTests {
21 | 	@Test
22 | 	public void configLoads() {}
23 | 
24 | 	@Test
25 | 	public void deprecatedProperties() {
26 | 		LoginUrlAuthenticationEntryPoint entryPoint = new LoginUrlAuthenticationEntryPoint();
27 | 		entryPoint.setLoginFormUrl("/login");
28 | 	}
29 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/RememberMeAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.AuthenticationManager;
 7 | import org.springframework.security.web.authentication.RememberMeServices;
 8 | import org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter;
 9 | import org.springframework.test.context.ContextConfiguration;
10 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
11 | 
12 | 
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class RememberMeAuthenticationFilterTests {
17 | 	@Autowired
18 | 	AuthenticationManager authenticationManager;
19 | 	@Autowired
20 | 	RememberMeServices rememberMeServices;
21 | 
22 | 	@Autowired
23 | 	RememberMeAuthenticationFilter filter;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		RememberMeAuthenticationFilter filter = new RememberMeAuthenticationFilter();
31 | 		filter.setAuthenticationManager(authenticationManager);
32 | 		filter.setRememberMeServices(rememberMeServices);
33 | 	}
34 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/RequestCacheAwareFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.web.savedrequest.RequestCache;
 9 | import org.springframework.security.web.savedrequest.RequestCacheAwareFilter;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class RequestCacheAwareFilterTests {
16 | 	@Autowired
17 | 	RequestCache requestCache;
18 | 	@Autowired
19 | 	Filter filter;
20 | 
21 | 	@Test
22 | 	public void configLoads() {}
23 | 
24 | 	@Test
25 | 	public void deprecated() {
26 | 		RequestCacheAwareFilter filter = new RequestCacheAwareFilter();
27 | 		filter.setRequestCache(requestCache);
28 | 	}
29 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/SecurityContextPersistenceFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.context.SecurityContextPersistenceFilter;
 7 | import org.springframework.security.web.context.SecurityContextRepository;
 8 | import org.springframework.test.context.ContextConfiguration;
 9 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
10 | 
11 | 
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class SecurityContextPersistenceFilterTests {
16 | 	@Autowired
17 | 	SecurityContextRepository securityContextRepository;
18 | 
19 | 	@Test
20 | 	public void configLoads() {}
21 | 
22 | 	@Test
23 | 	public void deprecated() {
24 | 		SecurityContextPersistenceFilter filter = new SecurityContextPersistenceFilter();
25 | 		filter.setSecurityContextRepository(securityContextRepository);
26 | 	}
27 | 
28 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/java/sample/web/SessionManagementFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.session.SessionRegistry;
 9 | import org.springframework.security.web.authentication.session.SessionAuthenticationStrategy;
10 | import org.springframework.security.web.context.SecurityContextRepository;
11 | import org.springframework.security.web.session.SessionManagementFilter;
12 | import org.springframework.test.context.ContextConfiguration;
13 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class SessionManagementFilterTests {
18 | 	@Autowired
19 | 	SecurityContextRepository securityContextRepository;
20 | 	@Autowired
21 | 	SessionAuthenticationStrategy sessionAuthenticationStrategy;
22 | 	@Autowired
23 | 	Filter filter;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		SessionManagementFilter filter = new SessionManagementFilter(securityContextRepository);
31 | 		filter.setSessionAuthenticationStrategy(sessionAuthenticationStrategy);
32 | 	}
33 | }


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>	
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="info" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/cas/CasAuthenticationFilterDefaultUrlsTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
 7 | 
 8 | 	<b:bean id="casFilter"
 9 | 				class="org.springframework.security.cas.web.CasAuthenticationFilter">
10 | 		<b:property name="authenticationManager" ref="authenticationManager"/>
11 | 	</b:bean>
12 | 
13 | 	<authentication-manager id="authenticationManager">
14 | 		<authentication-provider>
15 | 			<user-service>
16 | 				<user name="user" password="password" authorities="ROLE_USER"/>
17 | 			</user-service>
18 | 		</authentication-provider>
19 | 	</authentication-manager>
20 | </b:beans>
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/cas/ServiceAuthenticationDetailsSourceTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource"/>
 9 | 
10 | 	<b:bean class="org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource">
11 | 		<b:constructor-arg value="TICKET"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean id="serviceProperties"
15 | 			class="org.springframework.security.cas.ServiceProperties">
16 | 		<b:property name="service"
17 | 				value="https://localhost:8443/cas-sample/j_spring_cas_security_check"/>
18 | 		<b:property name="sendRenew" value="false"/>
19 | 	</b:bean>
20 | </b:beans>
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/FilterChainMapPathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.web.FilterChainProxy">
 8 | 		<filter-chain-map path-type="regex">
 9 | 			<filter-chain pattern=".*" filters="mockFilter"/>
10 | 		</filter-chain-map>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="mockFilter" class="org.mockito.Mockito" factory-method="mock">
14 | 		<b:constructor-arg value="javax.servlet.Filter"/>
15 | 	</b:bean>
16 | </b:beans>
17 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/FilterInvocationDefinitionSourceTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<filter-invocation-definition-source id="fids">
 8 | 		<intercept-url pattern="/**" access="ROLE_USER"/>
 9 | 	</filter-invocation-definition-source>
10 | 
11 | </b:beans>
12 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/FilterSecurityMetadataSourcePathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<filter-security-metadata-source id="fsms" path-type="regex" use-expressions="false">
 8 | 		<intercept-url pattern=".*" access="ROLE_ADMIN"/>
 9 | 	</filter-security-metadata-source>
10 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/HeadersTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<headers>
 9 | 			<frame-options policy="SAMEORIGIN"/>
10 | 		</headers>
11 | 
12 | 		<form-login/>
13 | 	</http>
14 | 
15 | 	<authentication-manager>
16 | 		<authentication-provider>
17 | 			<user-service>
18 | 				<user name="user" password="password" authorities="ROLE_USER"/>
19 | 			</user-service>
20 | 		</authentication-provider>
21 | 	</authentication-manager>
22 | </b:beans>
23 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/HttpAccessDeniedPageTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http access-denied-page="/denied">
 8 | 		<intercept-url pattern="/**" access="ROLE_ADMIN"/>
 9 | 		<form-login/>
10 | 	</http>
11 | 
12 | 	<authentication-manager>
13 | 		<authentication-provider>
14 | 			<user-service>
15 | 				<user name="user" password="password" authorities="ROLE_USER"/>
16 | 			</user-service>
17 | 		</authentication-provider>
18 | 	</authentication-manager>
19 | </b:beans>
20 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/config/HttpPathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http path-type="regex" use-expressions="false">
 8 | 		<intercept-url pattern=".*" access="ROLE_ADMIN"/>
 9 | 		<form-login/>
10 | 	</http>
11 | 
12 | 	<authentication-manager>
13 | 		<authentication-provider>
14 | 			<user-service>
15 | 				<user name="user" password="password" authorities="ROLE_USER"/>
16 | 			</user-service>
17 | 		</authentication-provider>
18 | 	</authentication-manager>
19 | </b:beans>
20 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/core/AbstractAccessDecisionManagerTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xmlns:util="http://www.springframework.org/schema/util"
 6 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 7 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 8 | 		http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util-4.1.xsd">
 9 | 
10 | 	<b:bean class="org.springframework.security.access.vote.AffirmativeBased">
11 | 		<b:property name="decisionVoters" ref="voters"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean class="org.springframework.security.access.vote.ConsensusBased">
15 | 		<b:property name="decisionVoters" ref="voters"/>
16 | 	</b:bean>
17 | 
18 | 	<b:bean class="org.springframework.security.access.vote.UnanimousBased">
19 | 		<b:property name="decisionVoters" ref="voters"/>
20 | 	</b:bean>
21 | 
22 | 	<util:list id="voters">
23 | 		<b:bean class="org.springframework.security.access.vote.RoleVoter"/>
24 | 	</util:list>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/core/InMemoryDaoImplTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.core.userdetails.memory.InMemoryDaoImpl">
 8 | 		<b:property name="userProperties">
 9 | 			<b:value>
10 | 			user=password,ROLE_USER
11 | 			</b:value>
12 | 		</b:property>
13 | 	</b:bean>
14 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/core/RememberMeAuthenticationProviderTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.authentication.RememberMeAuthenticationProvider">
 8 | 		<b:property name="key" value="key"/>
 9 | 	</b:bean>
10 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/core/UserDetailsServiceWrapperTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<user-service id="userDetailsService">
 8 | 		<user name="user" password="password" authorities="ROLE_USER" />
 9 | 		<user name="admin" password="password" authorities="ROLE_ADMIN" />
10 | 	</user-service>
11 | 
12 | 	<authentication-manager>
13 | 		<authentication-provider user-service-ref="userDetailsServiceWrapper"/>
14 | 	</authentication-manager>
15 | 
16 | 	<b:bean id="userDetailsServiceWrapper" class="org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper">
17 | 		<b:property name="userDetailsService" ref="userDetailsService"/>
18 | 		<b:property name="roleHierarchy" ref="roleHierarchy"/>
19 | 	</b:bean>
20 | 
21 | 	<b:bean id="roleHierarchy" class="org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl">
22 | 		<b:property name="hierarchy">
23 | 			<b:value>
24 | 				ROLE_ADMIN > ROLE_USER
25 | 			</b:value>
26 | 		</b:property>
27 | 	</b:bean>
28 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/openid/OpenID4JavaConsumerTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.openid.OpenID4JavaConsumer">
 8 | 		<b:constructor-arg>
 9 | 			<b:list>
10 | 				<b:bean class="org.springframework.security.openid.OpenIDAttribute">
11 | 					<b:constructor-arg value="email"/>
12 | 					<b:constructor-arg value="http://axschema.org/contact/email"/>
13 | 				</b:bean>
14 | 			</b:list>
15 | 		</b:constructor-arg>
16 | 	</b:bean>
17 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/openid/OpenIDTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<openid-login />
 9 | 	</http>
10 | 
11 | 	<authentication-manager>
12 | 		<authentication-provider>
13 | 			<user-service>
14 | 				<user name="user" password="password" authorities="ROLE_USER"/>
15 | 			</user-service>
16 | 		</authentication-provider>
17 | 	</authentication-manager>
18 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/role_/RolePrefixTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 3 | 	xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http use-expressions="true">
 8 | 		<intercept-url access="hasRole('USER')" pattern="/**" />
 9 | 		<form-login/>
10 | 		<logout/>
11 | 	</http>
12 | 
13 | 	<authentication-manager>
14 | 		<authentication-provider>
15 | 			<user-service>
16 | 				<user name="user" password="password" authorities="USER"/>
17 | 				<user name="admin" password="password" authorities="USER,ADMIN"/>
18 | 			</user-service>
19 | 		</authentication-provider>
20 | 	</authentication-manager>
21 | 
22 | 	<global-method-security jsr250-annotations="enabled" pre-post-annotations="enabled"/>
23 | 
24 | 	<b:bean class="sample.role_.HelloWorldMessageService"/>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/AbstractRememberMeServicesTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices">
 9 | 		<b:property name="key" value="key"/>
10 | 		<b:property name="userDetailsService" ref="userDetailsService"/>
11 | 		<b:property name="tokenRepository" ref="tokenRepository"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices">
15 | 		<b:property name="key" value="key"/>
16 | 		<b:property name="userDetailsService" ref="userDetailsService"/>
17 | 	</b:bean>
18 | 
19 | 	<b:bean id="tokenRepository" class="org.mockito.Mockito" factory-method="mock">
20 | 		<b:constructor-arg value="org.springframework.security.web.authentication.rememberme.PersistentTokenRepository"/>
21 | 	</b:bean>
22 | 
23 | 	<user-service id="userDetailsService">
24 | 		<user name="user" password="password" authorities="ROLE_USER" />
25 | 	</user-service>
26 | </b:beans>
27 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/AnonymousAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.AnonymousAuthenticationFilter">
 9 | 		<b:property name="key" value="key"/>
10 | 		<b:property name="userAttribute" ref="userAttribute"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="userAttribute" class="org.springframework.security.core.userdetails.memory.UserAttribute">
14 | 		<b:property name="password" value="anonymous"/>
15 | 		<b:property name="authoritiesAsString" value="ROLE_USER"/>
16 | 	</b:bean>
17 | </b:beans>
18 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/BasicAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.www.BasicAuthenticationFilter">
 9 | 		<b:property name="authenticationManager" ref="authenticationManager"/>
10 | 		<b:property name="authenticationEntryPoint" ref="entryPoint"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="entryPoint" class="org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint">
14 | 		<b:property name="realmName" value="Realm"/>
15 | 	</b:bean>
16 | 
17 | 	<authentication-manager id="authenticationManager">
18 | 		<authentication-provider>
19 | 			<user-service id="userDetailsService">
20 | 				<user name="user" password="password" authorities="ROLE_USER" />
21 | 			</user-service>
22 | 		</authentication-provider>
23 | 	</authentication-manager>
24 | </b:beans>
25 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/ConcurrentSessionControlStrategyTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy">
 9 | 		<b:constructor-arg ref="sessionRegistry"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl"/>
13 | </b:beans>
14 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/ConcurrentSessionFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.session.ConcurrentSessionFilter">
 9 | 		<b:property name="sessionRegistry" ref="sessionRegistry"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl"/>
13 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/ExceptionTranslationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.access.ExceptionTranslationFilter">
 9 | 		<b:property name="authenticationEntryPoint" ref="entryPoint"/>
10 | 		<b:property name="requestCache" ref="requestCache"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="entryPoint" class="org.springframework.security.web.authentication.Http403ForbiddenEntryPoint"/>
14 | 	<b:bean id="requestCache" class="org.springframework.security.web.savedrequest.NullRequestCache"/>
15 | </b:beans>
16 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/FilterChainProxyTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.FilterChainProxy">
 9 | 		<b:property name="filterChainMap">
10 | 			<b:map>
11 | 				<b:entry key="#{T(org.springframework.security.web.util.matcher.AnyRequestMatcher).INSTANCE}">
12 | 					<b:ref bean="mockFilter"/>
13 | 				</b:entry>
14 | 			</b:map>
15 | 		</b:property>
16 | 	</b:bean>
17 | 
18 | 	<b:bean id="mockFilter" class="org.mockito.Mockito" factory-method="mock">
19 | 		<b:constructor-arg value="javax.servlet.Filter"/>
20 | 	</b:bean>
21 | </b:beans>
22 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/LoginUrlAuthenticationEntryPointTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint">
 9 | 		<b:property name="loginFormUrl" value="/login"/>
10 | 	</b:bean>
11 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/LogoutFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean id="logoutFilter" class="org.springframework.security.web.authentication.logout.LogoutFilter">
 8 | 		<b:constructor-arg value="/logout-success"/>
 9 | 		<b:constructor-arg>
10 | 			<b:bean class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/>
11 | 		</b:constructor-arg>
12 | 	</b:bean>
13 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/RememberMeAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 5 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter">
 8 | 		<b:property name="authenticationManager" ref="authenticationManager"/>
 9 | 		<b:property name="rememberMeServices" ref="rememberMeServices"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="rememberMeServices"
13 | 		class="org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices">
14 | 		<b:constructor-arg value="key" />
15 | 		<b:constructor-arg ref="userDetailsService" />
16 | 	</b:bean>
17 | 
18 | 	<authentication-manager id="authenticationManager">
19 | 		<authentication-provider>
20 | 			<user-service id="userDetailsService">
21 | 				<user name="user" password="password" authorities="ROLE_USER" />
22 | 			</user-service>
23 | 		</authentication-provider>
24 | 	</authentication-manager>
25 | </b:beans>
26 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/RequestCacheAwareFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.savedrequest.RequestCacheAwareFilter">
 9 | 		<b:property name="requestCache" ref="requestCache"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="requestCache" class="org.springframework.security.web.savedrequest.NullRequestCache"/>
13 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/RequestMatcherTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.util.AntPathRequestMatcher">
 9 | 		<b:constructor-arg value="/**"/>
10 | 	</b:bean>
11 | 	<b:bean class="org.springframework.security.web.util.AnyRequestMatcher"/>
12 | 	<b:bean class="org.springframework.security.web.util.ELRequestMatcher">
13 | 		<b:constructor-arg value="true"/>
14 | 	</b:bean>
15 | 	<b:bean class="org.springframework.security.web.util.IpAddressMatcher">
16 | 		<b:constructor-arg value="192.168.1.1"/>
17 | 	</b:bean>
18 | 	<b:bean class="org.springframework.security.web.util.RegexRequestMatcher">
19 | 		<b:constructor-arg value=".*"/>
20 | 		<b:constructor-arg>
21 | 			<b:null/>
22 | 		</b:constructor-arg>
23 | 	</b:bean>
24 | 	<b:bean class="org.springframework.security.web.util.RequestMatcherEditor"/>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/SecurityContextPersistenceFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.context.SecurityContextPersistenceFilter">
 9 | 		<b:property name="securityContextRepository" ref="securityContextRepository"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="securityContextRepository" class="org.springframework.security.web.context.HttpSessionSecurityContextRepository"/>
13 | </b:beans>
14 | 


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/SessionManagementFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.session.SessionManagementFilter">
 9 | 		<b:constructor-arg ref="securityContextRepository"/>
10 | 		<b:property name="sessionAuthenticationStrategy" ref="sessionAuthenticationStrategy"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="sessionAuthenticationStrategy" class="org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy"/>
14 | 	<b:bean id="securityContextRepository" class="org.springframework.security.web.context.HttpSessionSecurityContextRepository"/>
15 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/SwitchUserFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean id="switchUserProcessingFilter" class="org.springframework.security.web.authentication.switchuser.SwitchUserFilter">
 8 | 		<b:property name="userDetailsService" ref="userDetailsService" />
 9 | 		<b:property name="targetUrl" value="/" />
10 | 	</b:bean>
11 | 
12 | 	<user-service id="userDetailsService">
13 | 		<user name="user" password="password" authorities="ROLE_USER"/>
14 | 	</user-service>
15 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-3-xml/src/test/resources/sample/web/WebSecurityExpressionHandlerTests-context.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
4 | 	xmlns="http://www.springframework.org/schema/security"
5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
7 | 
8 | 	<b:bean class="sample.web.WebSecurityExpressionHandlerTests$CustomWebSecurityExpressionHandler"/>
9 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/.gitignore:
--------------------------------------------------------------------------------
 1 | build
 2 | target
 3 | bin
 4 | .classpath
 5 | .settings
 6 | .project
 7 | .idea
 8 | *~
 9 | .springBeans
10 | .gradle
11 | *.iml


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/java/sample/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.security.access.prepost.PreAuthorize;
19 | 
20 | /**
21 |  * @author Rob Winch
22 |  */
23 | public class HelloWorldMessageService implements MessageService {
24 | 
25 | 	@PreAuthorize("hasRole('ROLE_USER')")
26 | 	public String getMessage() {
27 | 		return "Hello World";
28 | 	}
29 | }
30 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/java/sample/HomeController.java:
--------------------------------------------------------------------------------
 1 | package sample;
 2 | 
 3 | import java.util.Locale;
 4 | 
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.core.context.SecurityContextHolder;
 7 | import org.springframework.security.core.userdetails.UserDetails;
 8 | import org.springframework.stereotype.Controller;
 9 | import org.springframework.ui.Model;
10 | import org.springframework.web.bind.annotation.RequestMapping;
11 | import org.springframework.web.bind.annotation.RequestMethod;
12 | 
13 | /**
14 |  * Handles requests for the application home page.
15 |  */
16 | @Controller
17 | public class HomeController {
18 | 
19 | 	private final MessageService messageService;
20 | 
21 | 	@Autowired
22 | 	public HomeController(MessageService messageService) {
23 | 		this.messageService = messageService;
24 | 	}
25 | 
26 | 	/**
27 | 	 * Simply selects the home view to render by returning its name.
28 | 	 */
29 | 	@RequestMapping(value = "/", method = RequestMethod.GET)
30 | 	public String home(Locale locale, Model model) {
31 | 
32 | 		Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
33 | 		if (principal instanceof UserDetails) {
34 | 			model.addAttribute("username", ((UserDetails) principal).getUsername());
35 | 		} else {
36 | 			model.addAttribute("username", principal);
37 | 		}
38 | 		model.addAttribute("message", messageService.getMessage());
39 | 		return "home";
40 | 	}
41 | 
42 | }
43 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/java/sample/LoginController.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample;
17 | 
18 | import org.springframework.stereotype.Controller;
19 | import org.springframework.web.bind.annotation.RequestMapping;
20 | 
21 | /**
22 |  * @author Rob Winch
23 |  */
24 | @Controller
25 | public class LoginController {
26 | 	@RequestMapping("/login")
27 | 	public String login() {
28 | 		return "login";
29 | 	}
30 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/java/sample/MessageService.java:
--------------------------------------------------------------------------------
1 | package sample;
2 | 
3 | /**
4 |  * @author Rob Winch
5 |  */
6 | public interface MessageService {
7 | 	String getMessage();
8 | }
9 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="warn" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/webapp/WEB-INF/spring/root-context.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <beans xmlns="http://www.springframework.org/schema/beans"
3 |   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
4 |   xmlns:sec="http://www.springframework.org/schema/security"
5 |   xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
6 | 
7 | 
8 | </beans>
9 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/webapp/WEB-INF/spring/security.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http disable-url-rewriting="false">
 8 | 		<headers disabled="true"/>
 9 | 		<csrf disabled="true"/>
10 | 
11 | 		<intercept-url pattern="/login" access="permitAll"/>
12 | 		<intercept-url pattern="/**" access="hasRole('USER')"/>
13 | 		<form-login login-page="/login"/>
14 | 		<logout logout-url="/j_spring_security_logout" logout-success-url="/"/>
15 | 	</http>
16 | 
17 | 	<authentication-manager>
18 | 		<authentication-provider>
19 | 			<user-service>
20 | 				<user name="user" password="password" authorities="ROLE_USER" />
21 | 				<user name="admin" password="password" authorities="ROLE_USER,ROLE_ADMIN" />
22 | 			</user-service>
23 | 		</authentication-provider>
24 | 	</authentication-manager>
25 | 
26 | 	<global-method-security pre-post-annotations="enabled" />
27 | 
28 | 	<b:bean class="sample.HelloWorldMessageService" />
29 | 
30 | 	<b:bean class="sample.Sec2919PostProcessor" />
31 | 
32 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/webapp/WEB-INF/views/home.jsp:
--------------------------------------------------------------------------------
 1 | <%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
 2 | <%@taglib prefix="sec"
 3 | 	uri="http://www.springframework.org/security/tags"%>
 4 | <%@ page session="false"%>
 5 | <html>
 6 | <head>
 7 | <title>Home</title>
 8 | </head>
 9 | <body>
10 | 	<p>
11 | 		Message <b><c:out value="${message}" /></b>
12 | 	</p>
13 | 	<p>
14 | 		<a href="./j_spring_security_logout">Log Out</a>
15 | 	</p>
16 | 
17 | 	<sec:authorize access="hasRole('ROLE_ADMIN') and hasRole('ROLE_USER')">
18 | 		<p>Must have ROLE_ADMIN and ROLE_USER</p>
19 | 	</sec:authorize>
20 | 	<sec:authorize access="hasAnyRole('ROLE_ADMIN','ROLE_USER')">
21 | 		<p>Must have ROLE_ADMIN or ROLE_USER</p>
22 | 	</sec:authorize>
23 | 	<sec:authorize access="!hasAnyRole('ROLE_ADMIN','ROLE_USER')">
24 | 		<p>Must not have ROLE_ADMIN or ROLE_USER</p>
25 | 	</sec:authorize>
26 | </body>
27 | </html>
28 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/main/webapp/WEB-INF/views/login.jsp:
--------------------------------------------------------------------------------
 1 | <%@taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
 2 | <%@ page pageEncoding="UTF-8"%>
 3 | 
 4 | <html>
 5 | <head>
 6 | <title>Login</title>
 7 | </head>
 8 | 
 9 | <body>
10 | 	<h1>Login</h1>
11 | 
12 | 	<c:url var="loginUrl" value="/j_spring_security_check" />
13 | 	<form action="${loginUrl}" method="post">
14 | 		<p>
15 | 			<label for="j_username">User:</label>
16 | 		</p>
17 | 		<input type="text" id="j_username" name="j_username" />
18 | 
19 | 		<p>
20 | 			<label for="j_password">Password:</label>
21 | 		</p>
22 | 		<input type="password" id="j_password" name="j_password">
23 | 
24 | 		<p>
25 | 			<label for="_spring_security_remember_me">Remember Me</label>
26 | 		</p>
27 | 		<input type="checkbox" id="_spring_security_remember_me"
28 | 			name="_spring_security_remember_me" />
29 | 
30 | 		<div>
31 | 			<input name="submit" type="submit" />
32 | 		</div>
33 | 	</form>
34 | 
35 | </body>
36 | </html>
37 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/acl/EhCacheBasedAclCacheTests.java:
--------------------------------------------------------------------------------
 1 | package sample.acl;
 2 | 
 3 | import net.sf.ehcache.Ehcache;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.mockito.Mock;
 8 | import org.mockito.runners.MockitoJUnitRunner;
 9 | import org.springframework.security.acls.domain.AclAuthorizationStrategy;
10 | import org.springframework.security.acls.domain.AclAuthorizationStrategyImpl;
11 | import org.springframework.security.acls.domain.AuditLogger;
12 | import org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy;
13 | import org.springframework.security.acls.domain.EhCacheBasedAclCache;
14 | import org.springframework.security.acls.model.PermissionGrantingStrategy;
15 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
16 | 
17 | @RunWith(MockitoJUnitRunner.class)
18 | public class EhCacheBasedAclCacheTests {
19 | 
20 | 	@Mock
21 | 	Ehcache ehCache;
22 | 	@Mock
23 | 	AuditLogger auditLogger;
24 | 
25 | 	@Test
26 | 	public void constructor() throws Exception {
27 | 		PermissionGrantingStrategy permissionGrantingStrategy =
28 | 				new DefaultPermissionGrantingStrategy(auditLogger);
29 | 		AclAuthorizationStrategy aclAuthorizationStrategy =
30 | 				new AclAuthorizationStrategyImpl(new SimpleGrantedAuthority("ROLE_ACL_ADMIN"));
31 | 		new EhCacheBasedAclCache(ehCache, permissionGrantingStrategy, aclAuthorizationStrategy);
32 | 	}
33 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/cas/ServiceAuthenticationDetailsSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.cas;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.junit.runner.RunWith;
 6 | import org.springframework.security.cas.ServiceProperties;
 7 | import org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource;
 8 | import org.springframework.test.context.ContextConfiguration;
 9 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
10 | 
11 | 
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class ServiceAuthenticationDetailsSourceTests {
16 | 	final String artifactId = "TICKET";
17 | 
18 | 	ServiceProperties serviceProperties;
19 | 
20 | 	@Before
21 | 	public void setup() {
22 | 		serviceProperties = new ServiceProperties();
23 | 	}
24 | 
25 | 	@Test
26 | 	public void xmlConfigurationLoads() {}
27 | 
28 | 	@Test
29 | 	public void constructor() {
30 | 		new ServiceAuthenticationDetailsSource(serviceProperties);
31 | 	}
32 | 
33 | 	@Test
34 | 	public void constructorString() {
35 | 		new ServiceAuthenticationDetailsSource(serviceProperties, artifactId);
36 | 	}
37 | }
38 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/config/FilterInvocationDefinitionSourceTests.java:
--------------------------------------------------------------------------------
 1 | package sample.config;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.access.intercept.FilterInvocationSecurityMetadataSource;
 7 | import org.springframework.test.context.ContextConfiguration;
 8 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 9 | 
10 | @RunWith(SpringJUnit4ClassRunner.class)
11 | @ContextConfiguration
12 | public class FilterInvocationDefinitionSourceTests {
13 | 
14 | 	@Autowired
15 | 	FilterInvocationSecurityMetadataSource sms;
16 | 
17 | 	@Test
18 | 	public void loads() {
19 | 	}
20 | }
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/config/HeadersTests.java:
--------------------------------------------------------------------------------
 1 | package sample.config;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import org.junit.Before;
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.springframework.beans.factory.annotation.Autowired;
 9 | import org.springframework.mock.web.MockFilterChain;
10 | import org.springframework.mock.web.MockHttpServletRequest;
11 | import org.springframework.mock.web.MockHttpServletResponse;
12 | import org.springframework.security.web.FilterChainProxy;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class HeadersTests {
19 | 
20 | 	MockHttpServletRequest request;
21 | 	MockHttpServletResponse response;
22 | 	MockFilterChain chain;
23 | 
24 | 	@Autowired
25 | 	FilterChainProxy springSecurityFilterChain;
26 | 
27 | 	@Before
28 | 	public void setup() {
29 | 		request = new MockHttpServletRequest();
30 | 		response = new MockHttpServletResponse();
31 | 		chain = new MockFilterChain();
32 | 	}
33 | 
34 | 	@Test
35 | 	public void headers() throws Exception {
36 | 		springSecurityFilterChain.doFilter(request, response, chain);
37 | 
38 | 		assertThat(response.getHeader("X-Frame-Options")).isEqualTo("SAMEORIGIN");
39 | 		assertThat(response.getHeaderNames().size()).isEqualTo(1);
40 | 	}
41 | }
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/AnonymousAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.authentication.AnonymousAuthenticationProvider;
 5 | 
 6 | public class AnonymousAuthenticationProviderTests {
 7 | 
 8 | 	final String key = "key";
 9 | 
10 | 	@Test
11 | 	public void constructor() {
12 | 		AnonymousAuthenticationProvider provider = new AnonymousAuthenticationProvider(key);
13 | 	}
14 | }
15 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/AuthenticationDetailsSourceImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.junit.Test;
 6 | import org.springframework.security.authentication.AuthenticationDetailsSource;
 7 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 8 | 
 9 | public class AuthenticationDetailsSourceImplTests {
10 | 
11 | 	@Test
12 | 	public void test() {
13 | 		CustomWebAuthenticationDetailsSource source = new CustomWebAuthenticationDetailsSource();
14 | 	}
15 | 
16 | 	public class CustomWebAuthenticationDetailsSource implements AuthenticationDetailsSource<HttpServletRequest, WebAuthenticationDetails> {
17 | 
18 | 		public WebAuthenticationDetails buildDetails(HttpServletRequest context) {
19 | 			return new CustomWebAuthenticationDetails(context);
20 | 		}
21 | 	}
22 | }
23 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/CustomWebAuthenticationDetails.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import javax.servlet.http.HttpServletRequest;
 4 | 
 5 | import org.springframework.security.web.authentication.WebAuthenticationDetails;
 6 | 
 7 | @SuppressWarnings("serial")
 8 | public class CustomWebAuthenticationDetails extends WebAuthenticationDetails {
 9 | 	private String customProperty;
10 | 
11 | 	public CustomWebAuthenticationDetails(HttpServletRequest request) {
12 | 		super(request);
13 | 		this.customProperty = request.getHeader("custom");
14 | 	}
15 | 
16 | 	public String getCustomProperty() {
17 | 		return customProperty;
18 | 	}
19 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/GrantedAuthorityImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
 5 | 
 6 | public class GrantedAuthorityImplTests {
 7 | 
 8 | 	@Test
 9 | 	public void constructor() {
10 | 		new SimpleGrantedAuthority("ROLE_USER");
11 | 	}
12 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/InMemoryDaoImplTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.Properties;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.userdetails.UserDetailsService;
 9 | import org.springframework.security.provisioning.InMemoryUserDetailsManager;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class InMemoryDaoImplTests {
18 | 
19 | 	@Autowired
20 | 	UserDetailsService uds;
21 | 
22 | 	@Test
23 | 	public void findUser() {
24 | 		uds.loadUserByUsername("user");
25 | 	}
26 | 
27 | 	@Test
28 | 	public void javaExample() {
29 | 		Properties properties = new Properties();
30 | 		properties.put("user","password,ROLE_USER");
31 | 
32 | 		InMemoryUserDetailsManager uds = new InMemoryUserDetailsManager(properties);
33 | 	}
34 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/ProviderManagerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import java.util.List;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.beans.factory.annotation.Qualifier;
 9 | import org.springframework.security.authentication.AuthenticationProvider;
10 | import org.springframework.security.authentication.ProviderManager;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class ProviderManagerTests {
19 | 
20 | 	@Autowired
21 | 	List<AuthenticationProvider> providers;
22 | 
23 | 	@Qualifier("parent")
24 | 	@Autowired
25 | 	ProviderManager parent;
26 | 
27 | 	@Test
28 | 	public void contextLoads() {
29 | 	}
30 | 
31 | 	@Test
32 | 	public void javaCompiles() {
33 | 		ProviderManager provider = new ProviderManager(providers, parent);
34 | 	}
35 | }
36 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/RememberMeAuthenticationProviderTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.RememberMeAuthenticationProvider;
 7 | import org.springframework.test.context.ContextConfiguration;
 8 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 9 | 
10 | 
11 | 
12 | @RunWith(SpringJUnit4ClassRunner.class)
13 | @ContextConfiguration
14 | public class RememberMeAuthenticationProviderTests {
15 | 	final String key = "key";
16 | 
17 | 	@Autowired
18 | 	RememberMeAuthenticationProvider provider;
19 | 
20 | 	@Test
21 | 	public void contextLoads() {}
22 | 
23 | 	@Test
24 | 	public void javaCompiles() {
25 | 		RememberMeAuthenticationProvider provider = new RememberMeAuthenticationProvider(key);
26 | 	}
27 | }
28 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/SecurityConfigTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.List;
 6 | 
 7 | import org.junit.Test;
 8 | import org.springframework.security.access.ConfigAttribute;
 9 | import org.springframework.security.access.SecurityConfig;
10 | 
11 | public class SecurityConfigTests {
12 | 
13 | 	@Test
14 | 	public void createSingleAttributeList() {
15 | 		List<ConfigAttribute> attrs =
16 | 				SecurityConfig.createList("ROLE_USER");
17 | 
18 | 		assertThat(attrs).onProperty("attribute").containsOnly("ROLE_USER");
19 | 	}
20 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/UserDetailsServiceWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.*;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.authentication.AuthenticationManager;
 9 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
10 | import org.springframework.security.core.Authentication;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class UserDetailsServiceWrapperTests {
18 | 
19 | 	@Autowired
20 | 	AuthenticationManager auth;
21 | 
22 | 	@Test
23 | 	public void hasHierarchy() {
24 | 		UsernamePasswordAuthenticationToken token = new UsernamePasswordAuthenticationToken("admin", "password");
25 | 
26 | 		Authentication authenticate = auth.authenticate(token);
27 | 
28 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
29 | 	}
30 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/core/UserDetailsWrapperTests.java:
--------------------------------------------------------------------------------
 1 | package sample.core;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import java.util.Collection;
 6 | import java.util.List;
 7 | 
 8 | import org.junit.Test;
 9 | import org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl;
10 | import org.springframework.security.core.GrantedAuthority;
11 | import org.springframework.security.core.authority.AuthorityUtils;
12 | import org.springframework.security.core.userdetails.User;
13 | import org.springframework.security.core.userdetails.UserDetails;
14 | 
15 | public class UserDetailsWrapperTests {
16 | 
17 | 	@Test
18 | 	public void test() {
19 | 		List<GrantedAuthority> authorities = AuthorityUtils.createAuthorityList("ROLE_ADMIN");
20 | 		UserDetails userDetails = new User("admin", "notused", authorities);
21 | 		RoleHierarchyImpl roleHiearchy = new RoleHierarchyImpl();
22 | 		roleHiearchy.setHierarchy("ROLE_ADMIN > ROLE_USER");
23 | 
24 | 		Collection<GrantedAuthority> allAuthorities =
25 | 				roleHiearchy.getReachableGrantedAuthorities(userDetails.getAuthorities());
26 | 		UserDetails authenticate =
27 | 				new User(userDetails.getUsername(), userDetails.getPassword(), allAuthorities);
28 | 
29 | 		assertThat(authenticate.getAuthorities()).onProperty("authority").containsOnly("ROLE_USER","ROLE_ADMIN");
30 | 	}
31 | }
32 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/openid/OpenID4JavaConsumerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import java.util.Arrays;
 4 | import java.util.HashMap;
 5 | import java.util.List;
 6 | import java.util.Map;
 7 | 
 8 | import org.junit.Before;
 9 | import org.junit.Test;
10 | import org.junit.runner.RunWith;
11 | import org.springframework.security.openid.OpenID4JavaConsumer;
12 | import org.springframework.security.openid.OpenIDAttribute;
13 | import org.springframework.security.openid.RegexBasedAxFetchListFactory;
14 | import org.springframework.test.context.ContextConfiguration;
15 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
16 | 
17 | @RunWith(SpringJUnit4ClassRunner.class)
18 | @ContextConfiguration
19 | public class OpenID4JavaConsumerTests {
20 | 
21 | 	List<OpenIDAttribute> attributes;
22 | 
23 | 	@Before
24 | 	public void setup() {
25 | 		attributes = Arrays.asList(new OpenIDAttribute("email", "http://axschema.org/contact/email"));
26 | 	}
27 | 
28 | 	@Test
29 | 	public void configLoads() {}
30 | 
31 | 	@Test
32 | 	public void constructor() throws Exception {
33 | 		Map<String, List<OpenIDAttribute>> regexMap = new HashMap<String,List<OpenIDAttribute>>();
34 | 		regexMap.put(".*", attributes);
35 | 		RegexBasedAxFetchListFactory factory = new RegexBasedAxFetchListFactory(regexMap);
36 | 		new OpenID4JavaConsumer(factory);
37 | 	}
38 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/openid/OpenIDTests.java:
--------------------------------------------------------------------------------
 1 | package sample.openid;
 2 | 
 3 | import static org.fest.assertions.Assertions.assertThat;
 4 | 
 5 | import org.junit.Before;
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.springframework.beans.factory.annotation.Autowired;
 9 | import org.springframework.mock.web.MockFilterChain;
10 | import org.springframework.mock.web.MockHttpServletRequest;
11 | import org.springframework.mock.web.MockHttpServletResponse;
12 | import org.springframework.security.web.FilterChainProxy;
13 | import org.springframework.test.context.ContextConfiguration;
14 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class OpenIDTests {
19 | 
20 | 	@Autowired
21 | 	FilterChainProxy springSecurityFilter;
22 | 
23 | 	MockHttpServletRequest request;
24 | 	MockHttpServletResponse response;
25 | 	MockFilterChain chain;
26 | 
27 | 	@Before
28 | 	public void setup() {
29 | 		request = new MockHttpServletRequest();
30 | 		request.setMethod("GET");
31 | 		response = new MockHttpServletResponse();
32 | 		chain = new MockFilterChain();
33 | 	}
34 | 
35 | 	@Test
36 | 	public void filterProcessUrl() throws Exception {
37 | 		request.setServletPath("/j_spring_openid_security_check");
38 | 
39 | 		springSecurityFilter.doFilter(request, response, chain);
40 | 
41 | 		assertThat(response.getRedirectedUrl()).isNotNull();
42 | 	}
43 | }
44 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/role_/HelloWorldMessageService.java:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * Copyright 2002-2015 the original author or authors.
 3 |  *
 4 |  * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 5 |  * use this file except in compliance with the License. You may obtain a copy of
 6 |  * the License at
 7 |  *
 8 |  * https://www.apache.org/licenses/LICENSE-2.0
 9 |  *
10 |  * Unless required by applicable law or agreed to in writing, software
11 |  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12 |  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13 |  * License for the specific language governing permissions and limitations under
14 |  * the License.
15 |  */
16 | package sample.role_;
17 | 
18 | import javax.annotation.security.RolesAllowed;
19 | 
20 | import org.springframework.security.access.prepost.PreAuthorize;
21 | 
22 | /**
23 |  * @author Rob Winch
24 |  */
25 | public class HelloWorldMessageService implements MessageService {
26 | 
27 | 	@PreAuthorize("hasRole('USER')")
28 | 	public String getMessage() {
29 | 		return "Hello World";
30 | 	}
31 | 
32 | 	@RolesAllowed("USER")
33 | 	public String getJsrMessage() {
34 | 		return "Hello JSR";
35 | 	}
36 | }
37 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/role_/MessageService.java:
--------------------------------------------------------------------------------
 1 | package sample.role_;
 2 | 
 3 | /**
 4 |  * @author Rob Winch
 5 |  */
 6 | public interface MessageService {
 7 | 	String getMessage();
 8 | 	String getJsrMessage();
 9 | }
10 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/BasicAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.AuthenticationManager;
 7 | import org.springframework.security.web.AuthenticationEntryPoint;
 8 | import org.springframework.security.web.authentication.www.BasicAuthenticationFilter;
 9 | import org.springframework.test.context.ContextConfiguration;
10 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
11 | 
12 | 
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class BasicAuthenticationFilterTests {
17 | 	@Autowired
18 | 	AuthenticationManager authenticationManager;
19 | 
20 | 	@Autowired
21 | 	AuthenticationEntryPoint entryPoint;
22 | 
23 | 	final boolean ignoreFailure = false;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		BasicAuthenticationFilter filter =
31 | 				new BasicAuthenticationFilter(authenticationManager,entryPoint);
32 | 	}
33 | }
34 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/ConcurrentSessionFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.session.SessionRegistry;
 9 | import org.springframework.security.web.session.ConcurrentSessionFilter;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class ConcurrentSessionFilterTests {
16 | 	@Autowired
17 | 	SessionRegistry sessionRegistry;
18 | 	@Autowired
19 | 	Filter filter;
20 | 
21 | 	@Test
22 | 	public void configLoads() {}
23 | 
24 | 	@Test
25 | 	public void deprecated() {
26 | 		ConcurrentSessionFilter filter = new ConcurrentSessionFilter(sessionRegistry,"/expired");
27 | 	}
28 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/ExceptionTranslationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.AuthenticationEntryPoint;
 7 | import org.springframework.security.web.access.ExceptionTranslationFilter;
 8 | import org.springframework.security.web.authentication.Http403ForbiddenEntryPoint;
 9 | import org.springframework.security.web.savedrequest.NullRequestCache;
10 | import org.springframework.security.web.savedrequest.RequestCache;
11 | import org.springframework.test.context.ContextConfiguration;
12 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
13 | 
14 | 
15 | 
16 | @RunWith(SpringJUnit4ClassRunner.class)
17 | @ContextConfiguration
18 | public class ExceptionTranslationFilterTests {
19 | 	@Autowired
20 | 	ExceptionTranslationFilter etf;
21 | 
22 | 	@Test
23 | 	public void configLoads() {}
24 | 
25 | 	@Test
26 | 	public void deprecatedSetters() {
27 | 		RequestCache requestCache = new NullRequestCache();
28 | 		AuthenticationEntryPoint entryPoint = new Http403ForbiddenEntryPoint();
29 | 
30 | 		ExceptionTranslationFilter filter = new ExceptionTranslationFilter(entryPoint, requestCache);
31 | 	}
32 | }
33 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/LoginUrlAuthenticationEntryPointTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
 6 | import org.springframework.test.context.ContextConfiguration;
 7 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 8 | 
 9 | @RunWith(SpringJUnit4ClassRunner.class)
10 | @ContextConfiguration
11 | public class LoginUrlAuthenticationEntryPointTests {
12 | 	@Test
13 | 	public void configLoads() {
14 | 	}
15 | 
16 | 	@Test
17 | 	public void deprecatedProperties() {
18 | 		LoginUrlAuthenticationEntryPoint entryPoint = new LoginUrlAuthenticationEntryPoint("/login");
19 | 	}
20 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/RememberMeAuthenticationFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.authentication.AuthenticationManager;
 7 | import org.springframework.security.web.authentication.RememberMeServices;
 8 | import org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter;
 9 | import org.springframework.test.context.ContextConfiguration;
10 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
11 | 
12 | 
13 | 
14 | @RunWith(SpringJUnit4ClassRunner.class)
15 | @ContextConfiguration
16 | public class RememberMeAuthenticationFilterTests {
17 | 	@Autowired
18 | 	AuthenticationManager authenticationManager;
19 | 	@Autowired
20 | 	RememberMeServices rememberMeServices;
21 | 
22 | 	@Autowired
23 | 	RememberMeAuthenticationFilter filter;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		RememberMeAuthenticationFilter filter =
31 | 				new RememberMeAuthenticationFilter(authenticationManager,rememberMeServices);
32 | 	}
33 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/RequestCacheAwareFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.web.savedrequest.RequestCache;
 9 | import org.springframework.security.web.savedrequest.RequestCacheAwareFilter;
10 | import org.springframework.test.context.ContextConfiguration;
11 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class RequestCacheAwareFilterTests {
16 | 	@Autowired
17 | 	RequestCache requestCache;
18 | 	@Autowired
19 | 	Filter filter;
20 | 
21 | 	@Test
22 | 	public void configLoads() {}
23 | 
24 | 	@Test
25 | 	public void deprecated() {
26 | 		RequestCacheAwareFilter filter = new RequestCacheAwareFilter(requestCache);
27 | 	}
28 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/SecurityContextPersistenceFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.security.web.context.SecurityContextPersistenceFilter;
 7 | import org.springframework.security.web.context.SecurityContextRepository;
 8 | import org.springframework.test.context.ContextConfiguration;
 9 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
10 | 
11 | 
12 | 
13 | @RunWith(SpringJUnit4ClassRunner.class)
14 | @ContextConfiguration
15 | public class SecurityContextPersistenceFilterTests {
16 | 	@Autowired
17 | 	SecurityContextRepository securityContextRepository;
18 | 
19 | 	@Test
20 | 	public void configLoads() {}
21 | 
22 | 	@Test
23 | 	public void deprecated() {
24 | 		SecurityContextPersistenceFilter filter = new SecurityContextPersistenceFilter(securityContextRepository);
25 | 	}
26 | 
27 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/SessionManagementFilterTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import javax.servlet.Filter;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.springframework.beans.factory.annotation.Autowired;
 8 | import org.springframework.security.core.session.SessionRegistry;
 9 | import org.springframework.security.web.authentication.session.SessionAuthenticationStrategy;
10 | import org.springframework.security.web.context.SecurityContextRepository;
11 | import org.springframework.security.web.session.SessionManagementFilter;
12 | import org.springframework.test.context.ContextConfiguration;
13 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
14 | 
15 | @RunWith(SpringJUnit4ClassRunner.class)
16 | @ContextConfiguration
17 | public class SessionManagementFilterTests {
18 | 	@Autowired
19 | 	SecurityContextRepository securityContextRepository;
20 | 	@Autowired
21 | 	SessionAuthenticationStrategy sessionAuthenticationStrategy;
22 | 	@Autowired
23 | 	Filter filter;
24 | 
25 | 	@Test
26 | 	public void configLoads() {}
27 | 
28 | 	@Test
29 | 	public void deprecated() {
30 | 		SessionManagementFilter filter = new SessionManagementFilter(securityContextRepository, sessionAuthenticationStrategy);
31 | 	}
32 | }


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/java/sample/web/WebSecurityExpressionHandlerTests.java:
--------------------------------------------------------------------------------
 1 | package sample.web;
 2 | 
 3 | import org.junit.Test;
 4 | import org.junit.runner.RunWith;
 5 | import org.springframework.beans.factory.annotation.Autowired;
 6 | import org.springframework.context.ApplicationContext;
 7 | import org.springframework.expression.EvaluationContext;
 8 | import org.springframework.expression.ExpressionParser;
 9 | import org.springframework.security.access.expression.SecurityExpressionHandler;
10 | import org.springframework.security.core.Authentication;
11 | import org.springframework.security.web.FilterInvocation;
12 | import org.springframework.test.context.ContextConfiguration;
13 | import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
14 | 
15 | 
16 | 
17 | @RunWith(SpringJUnit4ClassRunner.class)
18 | @ContextConfiguration
19 | public class WebSecurityExpressionHandlerTests {
20 | 
21 | 	@Autowired
22 | 	SecurityExpressionHandler<FilterInvocation> handler;
23 | 
24 | 	@Autowired
25 | 	ApplicationContext context;
26 | 
27 | 	@Test
28 | 	public void configLoads() {}
29 | 
30 | 	static class CustomWebSecurityExpressionHandler implements SecurityExpressionHandler<FilterInvocation> {
31 | 
32 | 		@Override
33 | 		public ExpressionParser getExpressionParser() {
34 | 			return null;
35 | 		}
36 | 
37 | 		@Override
38 | 		public EvaluationContext createEvaluationContext(
39 | 				Authentication authentication, FilterInvocation invocation) {
40 | 			return null;
41 | 		}
42 | 	}
43 | }
44 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/log4j.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <!DOCTYPE log4j:configuration PUBLIC "-//APACHE//DTD LOG4J 1.2//EN" "log4j.dtd">
 3 | <log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/">
 4 | 
 5 | 	<!-- Appenders -->
 6 | 	<appender name="console" class="org.apache.log4j.ConsoleAppender">
 7 | 		<param name="Target" value="System.out" />
 8 | 		<layout class="org.apache.log4j.PatternLayout">
 9 | 			<param name="ConversionPattern" value="%-5p: %c - %m%n" />
10 | 		</layout>
11 | 	</appender>
12 | 	
13 | 	<!-- Application Loggers -->
14 | 	<logger name="com.test.security">
15 | 		<level value="info" />
16 | 	</logger>
17 | 	
18 | 	<!-- 3rdparty Loggers -->
19 | 	<logger name="org.springframework.core">
20 | 		<level value="info" />
21 | 	</logger>	
22 | 	
23 | 	<logger name="org.springframework.beans">
24 | 		<level value="info" />
25 | 	</logger>
26 | 	
27 | 	<logger name="org.springframework.context">
28 | 		<level value="info" />
29 | 	</logger>
30 | 
31 | 	<logger name="org.springframework.web">
32 | 		<level value="info" />
33 | 	</logger>
34 | 
35 | 	<!-- Root Logger -->
36 | 	<root>
37 | 		<priority value="info" />
38 | 		<appender-ref ref="console" />
39 | 	</root>
40 | 	
41 | </log4j:configuration>
42 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/cas/CasAuthenticationFilterDefaultUrlsTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
 7 | 
 8 | 	<b:bean id="casFilter"
 9 | 				class="org.springframework.security.cas.web.CasAuthenticationFilter">
10 | 		<b:property name="authenticationManager" ref="authenticationManager"/>
11 | 		<b:property name="filterProcessesUrl" value="/j_spring_cas_security_check"/>
12 | 	</b:bean>
13 | 
14 | 	<authentication-manager id="authenticationManager">
15 | 		<authentication-provider>
16 | 			<user-service>
17 | 				<user name="user" password="password" authorities="ROLE_USER"/>
18 | 			</user-service>
19 | 		</authentication-provider>
20 | 	</authentication-manager>
21 | </b:beans>
22 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/cas/ServiceAuthenticationDetailsSourceTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 5 | 			http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource">
 8 | 			<b:constructor-arg ref="serviceProperties" />
 9 | 	</b:bean>
10 | 
11 | 	<b:bean class="org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource">
12 | 			<b:constructor-arg ref="serviceProperties" />
13 | 			<b:constructor-arg value="TICKET" />
14 | 	</b:bean>
15 | 
16 | 	<b:bean id="serviceProperties" class="org.springframework.security.cas.ServiceProperties">
17 | 			<b:property name="service"
18 | 					value="https://localhost:8443/cas-sample/j_spring_cas_security_check" />
19 | 			<b:property name="sendRenew" value="false" />
20 | 	</b:bean>
21 | </b:beans>
22 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/FilterChainMapPathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.web.FilterChainProxy">
 8 | 		<filter-chain-map request-matcher="regex">
 9 | 			<filter-chain pattern=".*" filters="mockFilter"/>
10 | 		</filter-chain-map>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="mockFilter" class="org.mockito.Mockito" factory-method="mock">
14 | 		<b:constructor-arg value="javax.servlet.Filter"/>
15 | 	</b:bean>
16 | </b:beans>
17 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/FilterInvocationDefinitionSourceTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<filter-security-metadata-source id="fids">
 8 | 		<intercept-url pattern="/**" access="ROLE_USER"/>
 9 | 	</filter-security-metadata-source>
10 | 
11 | </b:beans>
12 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/FilterSecurityMetadataSourcePathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<filter-security-metadata-source id="fsms" request-matcher="regex" use-expressions="false">
 8 | 		<intercept-url pattern=".*" access="ROLE_ADMIN"/>
 9 | 	</filter-security-metadata-source>
10 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/HeadersTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<headers defaults-disabled="true">
 9 | 			<frame-options policy="SAMEORIGIN"/>
10 | 		</headers>
11 | 
12 | 		<form-login/>
13 | 	</http>
14 | 
15 | 	<authentication-manager>
16 | 		<authentication-provider>
17 | 			<user-service>
18 | 				<user name="user" password="password" authorities="ROLE_USER"/>
19 | 			</user-service>
20 | 		</authentication-provider>
21 | 	</authentication-manager>
22 | </b:beans>
23 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/HttpAccessDeniedPageTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<access-denied-handler error-page="/denied"/>
 9 | 		<intercept-url pattern="/**" access="ROLE_ADMIN"/>
10 | 		<form-login/>
11 | 	</http>
12 | 
13 | 	<authentication-manager>
14 | 		<authentication-provider>
15 | 			<user-service>
16 | 				<user name="user" password="password" authorities="ROLE_USER"/>
17 | 			</user-service>
18 | 		</authentication-provider>
19 | 	</authentication-manager>
20 | </b:beans>
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/config/HttpPathTypeTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http request-matcher="regex" use-expressions="false">
 8 | 		<intercept-url pattern=".*" access="ROLE_ADMIN"/>
 9 | 		<form-login/>
10 | 	</http>
11 | 
12 | 	<authentication-manager>
13 | 		<authentication-provider>
14 | 			<user-service>
15 | 				<user name="user" password="password" authorities="ROLE_USER"/>
16 | 			</user-service>
17 | 		</authentication-provider>
18 | 	</authentication-manager>
19 | </b:beans>
20 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/core/AbstractAccessDecisionManagerTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xmlns:util="http://www.springframework.org/schema/util"
 6 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 7 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 8 | 		http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util-4.1.xsd">
 9 | 
10 | 	<b:bean class="org.springframework.security.access.vote.AffirmativeBased">
11 | 		<b:constructor-arg ref="voters"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean class="org.springframework.security.access.vote.ConsensusBased">
15 | 		<b:constructor-arg ref="voters"/>
16 | 	</b:bean>
17 | 
18 | 	<b:bean class="org.springframework.security.access.vote.UnanimousBased">
19 | 		<b:constructor-arg ref="voters"/>
20 | 	</b:bean>
21 | 
22 | 	<util:list id="voters">
23 | 		<b:bean class="org.springframework.security.access.vote.RoleVoter"/>
24 | 	</util:list>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/core/InMemoryDaoImplTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.provisioning.InMemoryUserDetailsManager">
 8 | 		<b:constructor-arg>
 9 | 			<b:value>
10 | 			user=password,ROLE_USER
11 | 			</b:value>
12 | 		</b:constructor-arg>
13 | 	</b:bean>
14 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/core/RememberMeAuthenticationProviderTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.authentication.RememberMeAuthenticationProvider">
 8 | 		<b:constructor-arg value="key"/>
 9 | 	</b:bean>
10 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/openid/OpenID4JavaConsumerTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.openid.OpenID4JavaConsumer">
 8 | 		<b:constructor-arg>
 9 | 			<b:bean class="org.springframework.security.openid.RegexBasedAxFetchListFactory">
10 | 				<b:constructor-arg>
11 | 					<b:map>
12 | 						<b:entry key=".*">
13 | 							<b:list>
14 | 								<b:bean class="org.springframework.security.openid.OpenIDAttribute">
15 | 									<b:constructor-arg value="email"/>
16 | 									<b:constructor-arg value="http://axschema.org/contact/email"/>
17 | 								</b:bean>
18 | 							</b:list>
19 | 						</b:entry>
20 | 					</b:map>
21 | 				</b:constructor-arg>
22 | 			</b:bean>
23 | 		</b:constructor-arg>
24 | 	</b:bean>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/openid/OpenIDTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http>
 8 | 		<openid-login login-processing-url="/j_spring_openid_security_check"/>
 9 | 	</http>
10 | 
11 | 	<authentication-manager>
12 | 		<authentication-provider>
13 | 			<user-service>
14 | 				<user name="user" password="password" authorities="ROLE_USER"/>
15 | 			</user-service>
16 | 		</authentication-provider>
17 | 	</authentication-manager>
18 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/role_/RolePrefixTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 3 | 	xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<http use-expressions="true">
 8 | 		<intercept-url access="hasRole('USER')" pattern="/**" />
 9 | 		<form-login/>
10 | 		<logout/>
11 | 	</http>
12 | 
13 | 	<authentication-manager>
14 | 		<authentication-provider>
15 | 			<user-service>
16 | 				<user name="user" password="password" authorities="USER"/>
17 | 				<user name="admin" password="password" authorities="USER,ADMIN"/>
18 | 			</user-service>
19 | 		</authentication-provider>
20 | 	</authentication-manager>
21 | 
22 | 	<global-method-security jsr250-annotations="enabled" pre-post-annotations="enabled"/>
23 | 
24 | 	<b:bean class="sample.role_.HelloWorldMessageService"/>
25 | 	<b:bean class="sample.role_.DefaultRolesPrefixPostProcessor"/>
26 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/AbstractRememberMeServicesTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices">
 9 | 		<b:constructor-arg value="key"/>
10 | 		<b:constructor-arg ref="userDetailsService"/>
11 | 		<b:constructor-arg ref="tokenRepository"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices">
15 | 		<b:constructor-arg value="key"/>
16 | 		<b:constructor-arg ref="userDetailsService"/>
17 | 	</b:bean>
18 | 
19 | 	<b:bean id="tokenRepository" class="org.mockito.Mockito" factory-method="mock">
20 | 		<b:constructor-arg value="org.springframework.security.web.authentication.rememberme.PersistentTokenRepository"/>
21 | 	</b:bean>
22 | 
23 | 	<user-service id="userDetailsService">
24 | 		<user name="user" password="password" authorities="ROLE_USER" />
25 | 	</user-service>
26 | </b:beans>
27 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/AnonymousAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.AnonymousAuthenticationFilter">
 9 | 		<b:constructor-arg value="key"/>
10 | 		<b:constructor-arg value="#{userAttribute.password}"/>
11 | 		<b:constructor-arg value="#{userAttribute.authorities}"/>
12 | 	</b:bean>
13 | 
14 | 	<b:bean id="userAttribute" class="org.springframework.security.core.userdetails.memory.UserAttribute">
15 | 		<b:property name="password" value="anonymous"/>
16 | 		<b:property name="authoritiesAsString" value="ROLE_USER"/>
17 | 	</b:bean>
18 | </b:beans>
19 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/BasicAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.www.BasicAuthenticationFilter">
 9 | 		<b:constructor-arg ref="authenticationManager"/>
10 | 		<b:constructor-arg ref="entryPoint"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="entryPoint" class="org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint">
14 | 		<b:property name="realmName" value="Realm"/>
15 | 	</b:bean>
16 | 
17 | 	<authentication-manager id="authenticationManager">
18 | 		<authentication-provider>
19 | 			<user-service id="userDetailsService">
20 | 				<user name="user" password="password" authorities="ROLE_USER" />
21 | 			</user-service>
22 | 		</authentication-provider>
23 | 	</authentication-manager>
24 | </b:beans>
25 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/ConcurrentSessionControlStrategyTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.session.CompositeSessionAuthenticationStrategy">
 9 | 		<b:constructor-arg>
10 | 			<b:list>
11 | 				<b:bean class="org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy">
12 | 					<b:constructor-arg ref="sessionRegistry"/>
13 | 				</b:bean>
14 | 				<b:bean class="org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy"/>
15 | 				<b:bean class="org.springframework.security.web.authentication.session.RegisterSessionAuthenticationStrategy">
16 | 					<b:constructor-arg ref="sessionRegistry"/>
17 | 				</b:bean>
18 | 			</b:list>
19 | 		</b:constructor-arg>
20 | 	</b:bean>
21 | 
22 | 	<b:bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl"/>
23 | </b:beans>
24 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/ConcurrentSessionFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.session.ConcurrentSessionFilter">
 9 | 		<b:constructor-arg ref="sessionRegistry"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="sessionRegistry" class="org.springframework.security.core.session.SessionRegistryImpl"/>
13 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/ExceptionTranslationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.access.ExceptionTranslationFilter">
 9 | 		<b:constructor-arg ref="entryPoint"/>
10 | 		<b:constructor-arg ref="requestCache"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="entryPoint" class="org.springframework.security.web.authentication.Http403ForbiddenEntryPoint"/>
14 | 	<b:bean id="requestCache" class="org.springframework.security.web.savedrequest.NullRequestCache"/>
15 | </b:beans>
16 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/FilterChainProxyTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.FilterChainProxy">
 9 | 		<b:constructor-arg>
10 | 			<b:bean class="org.springframework.security.web.DefaultSecurityFilterChain">
11 | 				<b:constructor-arg value="#{T(org.springframework.security.web.util.matcher.AnyRequestMatcher).INSTANCE}"/>
12 | 				<b:constructor-arg ref="mockFilter"/>
13 | 			</b:bean>
14 | 		</b:constructor-arg>
15 | 	</b:bean>
16 | 
17 | 	<b:bean id="mockFilter" class="org.mockito.Mockito" factory-method="mock">
18 | 		<b:constructor-arg value="javax.servlet.Filter"/>
19 | 	</b:bean>
20 | </b:beans>
21 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/LoginUrlAuthenticationEntryPointTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint">
 9 | 		<b:constructor-arg value="/login"/>
10 | 	</b:bean>
11 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/LogoutFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean id="logoutFilter" class="org.springframework.security.web.authentication.logout.LogoutFilter">
 8 | 		<b:constructor-arg value="/logout-success"/>
 9 | 		<b:constructor-arg>
10 | 			<b:bean class="org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler"/>
11 | 		</b:constructor-arg>
12 | 		<b:property name="filterProcessesUrl" value="/j_spring_security_logout"/>
13 | 	</b:bean>
14 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/RememberMeAuthenticationFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 5 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 6 | 
 7 | 	<b:bean class="org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter">
 8 | 		<b:constructor-arg ref="authenticationManager"/>
 9 | 		<b:constructor-arg ref="rememberMeServices"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="rememberMeServices"
13 | 		class="org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices">
14 | 		<b:constructor-arg value="key" />
15 | 		<b:constructor-arg ref="userDetailsService" />
16 | 	</b:bean>
17 | 
18 | 	<authentication-manager id="authenticationManager">
19 | 		<authentication-provider>
20 | 			<user-service id="userDetailsService">
21 | 				<user name="user" password="password" authorities="ROLE_USER" />
22 | 			</user-service>
23 | 		</authentication-provider>
24 | 	</authentication-manager>
25 | </b:beans>
26 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/RequestCacheAwareFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.savedrequest.RequestCacheAwareFilter">
 9 | 		<b:constructor-arg ref="requestCache"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="requestCache" class="org.springframework.security.web.savedrequest.NullRequestCache"/>
13 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/RequestMatcherTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.util.matcher.AntPathRequestMatcher">
 9 | 		<b:constructor-arg value="/**"/>
10 | 	</b:bean>
11 | 	<b:bean class="org.springframework.security.web.util.matcher.AnyRequestMatcher"/>
12 | 	<b:bean class="org.springframework.security.web.util.matcher.ELRequestMatcher">
13 | 		<b:constructor-arg value="true"/>
14 | 	</b:bean>
15 | 	<b:bean class="org.springframework.security.web.util.matcher.IpAddressMatcher">
16 | 		<b:constructor-arg value="192.168.1.1"/>
17 | 	</b:bean>
18 | 	<b:bean class="org.springframework.security.web.util.matcher.RegexRequestMatcher">
19 | 		<b:constructor-arg value=".*"/>
20 | 		<b:constructor-arg>
21 | 			<b:null/>
22 | 		</b:constructor-arg>
23 | 	</b:bean>
24 | 	<b:bean class="org.springframework.security.web.util.matcher.RequestMatcherEditor"/>
25 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/SecurityContextPersistenceFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.context.SecurityContextPersistenceFilter">
 9 | 		<b:constructor-arg ref="securityContextRepository"/>
10 | 	</b:bean>
11 | 
12 | 	<b:bean id="securityContextRepository" class="org.springframework.security.web.context.HttpSessionSecurityContextRepository"/>
13 | </b:beans>
14 | 


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/SessionManagementFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 4 | 	xmlns="http://www.springframework.org/schema/security"
 5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
 6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
 7 | 
 8 | 	<b:bean class="org.springframework.security.web.session.SessionManagementFilter">
 9 | 		<b:constructor-arg ref="securityContextRepository"/>
10 | 		<b:constructor-arg ref="sessionAuthenticationStrategy"/>
11 | 	</b:bean>
12 | 
13 | 	<b:bean id="sessionAuthenticationStrategy" class="org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy"/>
14 | 	<b:bean id="securityContextRepository" class="org.springframework.security.web.context.HttpSessionSecurityContextRepository"/>
15 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/SwitchUserFilterTests-context.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
 3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.springframework.org/schema/security"
 4 | 	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
 5 | 	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd">
 6 | 
 7 | 	<b:bean id="switchUserProcessingFilter" class="org.springframework.security.web.authentication.switchuser.SwitchUserFilter">
 8 | 		<b:property name="switchUserUrl" value="/j_spring_security_switch_user" />
 9 | 		<b:property name="exitUserUrl" value="/j_spring_security_exit_user" />
10 | 
11 | 		<b:property name="userDetailsService" ref="userDetailsService" />
12 | 		<b:property name="targetUrl" value="/" />
13 | 	</b:bean>
14 | 
15 | 	<user-service id="userDetailsService">
16 | 		<user name="user" password="password" authorities="ROLE_USER"/>
17 | 	</user-service>
18 | </b:beans>


--------------------------------------------------------------------------------
/xml/spring-security-4-xml/src/test/resources/sample/web/WebSecurityExpressionHandlerTests-context.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <b:beans xmlns:b="http://www.springframework.org/schema/beans"
3 | 	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
4 | 	xmlns="http://www.springframework.org/schema/security"
5 | 	xsi:schemaLocation="http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security.xsd
6 | 		http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd">
7 | 
8 | 	<b:bean class="sample.web.WebSecurityExpressionHandlerTests$CustomWebSecurityExpressionHandler"/>
9 | </b:beans>


--------------------------------------------------------------------------------