List of onAuthentication() Examples

Examples of onAuthentication()

org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()
Called when a user is newly authenticated.
If a session already exists, a new session will be created, the session attributes copied to it (if migrateSessionAttributes is set) and the sessionRegistry updated with the new session information.
If there is no session, no action is taken unless the alwaysCreateSession property is set, in which case a session will be created if one doesn't already exist.

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

    @Test
    public void newSessionShouldNotBeCreatedIfNoSessionExistsAndAlwaysCreateIsFalse() throws Exception {
        SessionFixationProtectionStrategy strategy = new SessionFixationProtectionStrategy();
        HttpServletRequest request = new MockHttpServletRequest();


        strategy.onAuthentication(mock(Authentication.class), request, new MockHttpServletResponse());


        assertNull(request.getSession(false));
    }


    @Test

View Full Code Here

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

    public void newSessionIsCreatedIfSessionAlreadyExists() throws Exception {
        SessionFixationProtectionStrategy strategy = new SessionFixationProtectionStrategy();
        HttpServletRequest request = new MockHttpServletRequest();
        String sessionId = request.getSession().getId();


        strategy.onAuthentication(mock(Authentication.class), request, new MockHttpServletResponse());


        assertFalse(sessionId.equals(request.getSession().getId()));
    }


    // SEC-2002

View Full Code Here

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

        ApplicationEventPublisher eventPublisher = mock(ApplicationEventPublisher.class);
        strategy.setApplicationEventPublisher(eventPublisher);


        Authentication mockAuthentication = mock(Authentication.class);


        strategy.onAuthentication(mockAuthentication, request, new MockHttpServletResponse());


        ArgumentCaptor<ApplicationEvent> eventArgumentCaptor = ArgumentCaptor.forClass(ApplicationEvent.class);
        verify(eventPublisher).publishEvent(eventArgumentCaptor.capture());


        assertFalse(oldSessionId.equals(request.getSession().getId()));

View Full Code Here

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

        HttpServletRequest request = new MockHttpServletRequest();
        HttpSession session = request.getSession();
        session.setAttribute("blah", "blah");
        session.setAttribute("SPRING_SECURITY_SAVED_REQUEST_KEY", "DefaultSavedRequest");


        strategy.onAuthentication(mock(Authentication.class), request, new MockHttpServletResponse());


        assertNull(request.getSession().getAttribute("blah"));
        assertNotNull(request.getSession().getAttribute("SPRING_SECURITY_SAVED_REQUEST_KEY"));
    }

View Full Code Here

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

        ApplicationEventPublisher eventPublisher = mock(ApplicationEventPublisher.class);
        strategy.setApplicationEventPublisher(eventPublisher);


        Authentication mockAuthentication = mock(Authentication.class);


        strategy.onAuthentication(mockAuthentication, request, new MockHttpServletResponse());


        ArgumentCaptor<ApplicationEvent> eventArgumentCaptor = ArgumentCaptor.forClass(ApplicationEvent.class);
        verify(eventPublisher).publishEvent(eventArgumentCaptor.capture());


        assertNull(request.getSession().getAttribute("blah"));

View Full Code Here

Examples of org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.onAuthentication()

    @Test
    public void sessionIsCreatedIfAlwaysCreateTrue() throws Exception {
        SessionFixationProtectionStrategy strategy = new SessionFixationProtectionStrategy();
        strategy.setAlwaysCreateSession(true);
        HttpServletRequest request = new MockHttpServletRequest();
        strategy.onAuthentication(mock(Authentication.class), request, new MockHttpServletResponse());
        assertNotNull(request.getSession(false));
    }


}

View Full Code Here

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.