Merge branch '1.5.x'

mbhave · mbhave · commit 517b30acbb17 · 2017-03-14T11:35:53.000-07:00
diff --git a/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/ResourceServerProperties.java b/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/ResourceServerProperties.java
@@ -207,6 +207,9 @@ public void validate(Object target, Errors errors) {
 	}
 
 	private void validate(ResourceServerProperties target, Errors errors) {
+		if (!StringUtils.hasText(this.clientId)) {
+			return;
+		}
 		boolean jwtConfigPresent = StringUtils.hasText(this.jwt.getKeyUri())
 				|| StringUtils.hasText(this.jwt.getKeyValue());
 		boolean jwkConfigPresent = StringUtils.hasText(this.jwk.getKeySetUri());
@@ -228,8 +231,7 @@ private void validate(ResourceServerProperties target, Errors errors) {
 								+ "JWT verifier key");
 			}
 			if (StringUtils.hasText(target.getTokenInfoUri()) && isPreferTokenInfo()) {
-				if (StringUtils.hasText(this.clientId)
-						&& !StringUtils.hasText(this.clientSecret)) {
+				if (!StringUtils.hasText(this.clientSecret)) {
 					errors.rejectValue("clientSecret", "missing.clientSecret",
 							"Missing client secret");
 				}
diff --git a/spring-boot-autoconfigure/src/test/java/org/springframework/boot/autoconfigure/security/oauth2/resource/ResourceServerPropertiesTests.java b/spring-boot-autoconfigure/src/test/java/org/springframework/boot/autoconfigure/security/oauth2/resource/ResourceServerPropertiesTests.java
@@ -55,6 +55,14 @@ public void json() throws Exception {
 		assertThat(jwt.get("keyUri")).isNotNull();
 	}
 
+	@Test
+	public void validateWhenClientIdNullShouldNotFail() throws Exception {
+		this.properties = new ResourceServerProperties(null, "secret");
+		setListableBeanFactory();
+		this.properties.validate(this.properties, this.errors);
+		verifyZeroInteractions(this.errors);
+	}
+
 	@Test
 	public void validateWhenBothJwtAndJwkKeyUrisPresentShouldFail() throws Exception {
 		this.properties.getJwk().setKeySetUri("http://my-auth-server/token_keys");

Original file line number	Diff line number	Diff line change
`@@ -207,6 +207,9 @@ public void validate(Object target, Errors errors) {`
`207`	`207`	`}`
`208`	`208`
`209`	`209`	`private void validate(ResourceServerProperties target, Errors errors) {`
	`210`	`+ if (!StringUtils.hasText(this.clientId)) {`
	`211`	`+ return;`
	`212`	`+ }`
`210`	`213`	`boolean jwtConfigPresent = StringUtils.hasText(this.jwt.getKeyUri())`
`211`	`214`	`\|\| StringUtils.hasText(this.jwt.getKeyValue());`
`212`	`215`	`boolean jwkConfigPresent = StringUtils.hasText(this.jwk.getKeySetUri());`
`@@ -228,8 +231,7 @@ private void validate(ResourceServerProperties target, Errors errors) {`
`228`	`231`	`+ "JWT verifier key");`
`229`	`232`	`}`
`230`	`233`	`if (StringUtils.hasText(target.getTokenInfoUri()) && isPreferTokenInfo()) {`
`231`		`- if (StringUtils.hasText(this.clientId)`
`232`		`- && !StringUtils.hasText(this.clientSecret)) {`
	`234`	`+ if (!StringUtils.hasText(this.clientSecret)) {`
`233`	`235`	`errors.rejectValue("clientSecret", "missing.clientSecret",`
`234`	`236`	`"Missing client secret");`
`235`	`237`	`}`