Skip to content

Commit ee2b826

Browse files
jzheauxjzheaux
committed
Use setCookieCustomizer
Issue gh-14132
1 parent 7f8b9c8 commit ee2b826

File tree

1 file changed

+13
-42
lines changed

1 file changed

+13
-42
lines changed

web/src/test/java/org/springframework/security/web/server/csrf/CookieServerCsrfTokenRepositoryTests.java

Lines changed: 13 additions & 42 deletions
Original file line numberDiff line numberDiff line change
@@ -131,13 +131,19 @@ void saveTokenWhenSameSiteThenCookieSameSite() {
131131

132132
@Test
133133
void saveTokenWhenCustomPropertiesThenCustomProperties() {
134-
setExpectedDomain("spring.io");
135134
setExpectedCookieName("csrfCookie");
136-
setExpectedPath("/some/path");
137135
setExpectedHeaderName("headerName");
138136
setExpectedParameterName("paramName");
139-
setExpectedSameSitePolicy("Strict");
140-
setExpectedCookieMaxAge(3600);
137+
this.csrfTokenRepository.setCookieCustomizer((cookie) -> {
138+
this.expectedPath = "/some/path";
139+
cookie.path(this.expectedPath);
140+
this.expectedDomain = "spring.io";
141+
cookie.domain(this.expectedDomain);
142+
this.expectedMaxAge = Duration.ofSeconds(3600);
143+
cookie.maxAge(this.expectedMaxAge);
144+
this.expectedSameSitePolicy = "Strict";
145+
cookie.sameSite(this.expectedSameSitePolicy);
146+
});
141147
saveAndAssertExpectedValues(createToken());
142148
}
143149

@@ -195,16 +201,6 @@ void saveTokenWhenSslInfoNullThenNotSecure() {
195201
assertThat(cookie.isSecure()).isFalse();
196202
}
197203

198-
@Test
199-
void saveTokenWhenSecureFlagTrueThenSecure() {
200-
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
201-
this.csrfTokenRepository.setSecure(true);
202-
this.csrfTokenRepository.saveToken(exchange, createToken()).block();
203-
ResponseCookie cookie = exchange.getResponse().getCookies().getFirst(this.expectedCookieName);
204-
assertThat(cookie).isNotNull();
205-
assertThat(cookie.isSecure()).isTrue();
206-
}
207-
208204
@Test
209205
void saveTokenWhenSecureFlagTrueThenSecureUsingCustomizer() {
210206
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
@@ -215,16 +211,6 @@ void saveTokenWhenSecureFlagTrueThenSecureUsingCustomizer() {
215211
assertThat(cookie.isSecure()).isTrue();
216212
}
217213

218-
@Test
219-
void saveTokenWhenSecureFlagFalseThenNotSecure() {
220-
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
221-
this.csrfTokenRepository.setSecure(false);
222-
this.csrfTokenRepository.saveToken(exchange, createToken()).block();
223-
ResponseCookie cookie = exchange.getResponse().getCookies().getFirst(this.expectedCookieName);
224-
assertThat(cookie).isNotNull();
225-
assertThat(cookie.isSecure()).isFalse();
226-
}
227-
228214
@Test
229215
void saveTokenWhenSecureFlagFalseThenNotSecureUsingCustomizer() {
230216
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
@@ -235,17 +221,6 @@ void saveTokenWhenSecureFlagFalseThenNotSecureUsingCustomizer() {
235221
assertThat(cookie.isSecure()).isFalse();
236222
}
237223

238-
@Test
239-
void saveTokenWhenSecureFlagFalseAndSslInfoThenNotSecure() {
240-
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
241-
this.request.sslInfo(SslInfo.from("sessionId"));
242-
this.csrfTokenRepository.setSecure(false);
243-
this.csrfTokenRepository.saveToken(exchange, createToken()).block();
244-
ResponseCookie cookie = exchange.getResponse().getCookies().getFirst(this.expectedCookieName);
245-
assertThat(cookie).isNotNull();
246-
assertThat(cookie.isSecure()).isFalse();
247-
}
248-
249224
@Test
250225
void saveTokenWhenSecureFlagFalseAndSslInfoThenNotSecureUsingCustomizer() {
251226
MockServerWebExchange exchange = MockServerWebExchange.from(this.request);
@@ -314,19 +289,14 @@ private void setExpectedParameterName(String expectedParameterName) {
314289
this.expectedParameterName = expectedParameterName;
315290
}
316291

317-
private void setExpectedDomain(String expectedDomain) {
318-
this.csrfTokenRepository.setCookieDomain(expectedDomain);
319-
this.expectedDomain = expectedDomain;
320-
}
321-
322292
private void setExpectedPath(String expectedPath) {
323293
this.csrfTokenRepository.setCookiePath(expectedPath);
324294
this.expectedPath = expectedPath;
325295
}
326296

327297
private void setExpectedHttpOnly(boolean expectedHttpOnly) {
328298
this.expectedHttpOnly = expectedHttpOnly;
329-
this.csrfTokenRepository.setCookieHttpOnly(expectedHttpOnly);
299+
this.csrfTokenRepository.setCookieCustomizer((cookie) -> cookie.httpOnly(expectedHttpOnly));
330300
}
331301

332302
private void setExpectedCookieName(String expectedCookieName) {
@@ -335,7 +305,8 @@ private void setExpectedCookieName(String expectedCookieName) {
335305
}
336306

337307
private void setExpectedCookieMaxAge(int expectedCookieMaxAge) {
338-
this.csrfTokenRepository.setCookieMaxAge(expectedCookieMaxAge);
308+
Duration duration = Duration.ofSeconds(expectedCookieMaxAge);
309+
this.csrfTokenRepository.setCookieCustomizer((cookie) -> cookie.maxAge(duration));
339310
this.expectedMaxAge = Duration.ofSeconds(expectedCookieMaxAge);
340311
}
341312

0 commit comments

Comments
 (0)