anthonyraymond/joal
1
1
Fork 0
mirror of https://github.com/anthonyraymond/joal.git synced 2024-09-20 15:26:25 +08:00
Code Issues Packages Projects Releases Wiki Activity

WebSocketAuthorizationSecurityConfigTest tests

Browse source
This commit is contained in:
anthonyraymond 2018-04-10 00:41:59 +02:00
parent 2ff9b24f7b
commit 4c60f2964f
2 changed files with 18 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/main/java/org/araymond/joal/web/config/security/websocket/services/WebSocketAuthenticatorService.java
View file

@ -37,7 +37,7 @@ public class WebSocketAuthenticatorService {
throw new BadCredentialsException("Authentication token does not match the expected token");
}
// Everithing is fine, return an authenticated Authentication. (the constructor with grantedAuthorities auto set authenticated = true)
// Everything is fine, return an authenticated Authentication. (the constructor with grantedAuthorities auto set authenticated = true)
// null credentials, we do not pass the password along to prevent security flaw
return new UsernamePasswordAuthenticationToken(
username,

17
src/test/java/org/araymond/joal/web/config/security/WebSocketAuthorizationSecurityConfigTest.java Normal file
View file

@ -0,0 +1,17 @@
package org.araymond.joal.web.config.security;
import org.junit.Test;
import static org.assertj.core.api.Assertions.*;
import static org.assertj.core.api.Assertions.assertThat;
public class WebSocketAuthorizationSecurityConfigTest {
@Test
public void shouldDisableCSRFProtection() {
final WebSocketAuthorizationSecurityConfig config = new WebSocketAuthorizationSecurityConfig();
assertThat(config.sameOriginDisabled()).isTrue();
}
}