Java Spring模拟junit测试在Spring security 3.2.0.RC1版本中抛出NullPointerException_Java_Junit_Spring Security_Mocking_Spring Test

Java Spring模拟junit测试在Spring security 3.2.0.RC1版本中抛出NullPointerException

java junit spring-security

Java Spring模拟junit测试在Spring security 3.2.0.RC1版本中抛出NullPointerException,java,junit,spring-security,mocking,spring-test,Java,Junit,Spring Security,Mocking,Spring Test,我有一个junit测试，它使用SpringMockMVC执行一个请求 private MockMvc mvc; @Before public void setUp() { mvc = MockMvcBuilders.standaloneSetup(new LoginController()) .addFilter(new AnonymousAuthenticationFilter("anonymous")) .addFilter(new

我有一个junit测试，它使用SpringMockMVC执行一个请求

private MockMvc mvc;

@Before
public void setUp() {
    mvc = MockMvcBuilders.standaloneSetup(new LoginController())
            .addFilter(new AnonymousAuthenticationFilter("anonymous"))
            .addFilter(new SecurityContextHolderAwareRequestFilter())
            .addFilter(new XssValidationFilter()).build();
    SecurityContextHolder.getContext().setAuthentication(null);
}

@Test
public void test() throws Exception {
    MockHttpServletRequestBuilder builder = MockMvcRequestBuilders.get("/login.htm")
            .param(USER, "admin").param(PASSWORD, "pass");
    ResultActions perform = mvc.perform(builder);
    (assertions..)
}

测试运行得很好，直到我将SpringSecurityLibs版本提升到3.2.0.RC1。现在，我在以下位置获得NullPointerException：

ResultActions perform = mvc.perform(builder);

stacktrace是：

java.lang.NullPointerException
at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:150)
at org.springframework.mock.web.MockFilterChain.doFilter(MockFilterChain.java:137)
at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:113)
at org.springframework.mock.web.MockFilterChain.doFilter(MockFilterChain.java:137)
at org.springframework.test.web.servlet.MockMvc.perform(MockMvc.java:141)
at com.mycompany.controller.main.LoginControllerTest.test(LoginControllerTest.java:134)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
at org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:47)
at org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:12)
at org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:44)
at org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:17)
at org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:26)
at org.springframework.test.context.junit4.statements.RunBeforeTestMethodCallbacks.evaluate(RunBeforeTestMethodCallbacks.java:74)
at org.springframework.test.context.junit4.statements.RunAfterTestMethodCallbacks.evaluate(RunAfterTestMethodCallbacks.java:83)
at org.springframework.test.context.junit4.statements.SpringRepeat.evaluate(SpringRepeat.java:72)
at org.springframework.test.context.junit4.SpringJUnit4ClassRunner.runChild(SpringJUnit4ClassRunner.java:230)
at org.springframework.test.context.junit4.SpringJUnit4ClassRunner.runChild(SpringJUnit4ClassRunner.java:87)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:238)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:63)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:236)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:53)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:229)
at org.springframework.test.context.junit4.statements.RunBeforeTestClassCallbacks.evaluate(RunBeforeTestClassCallbacks.java:61)
at org.springframework.test.context.junit4.statements.RunAfterTestClassCallbacks.evaluate(RunAfterTestClassCallbacks.java:71)
at org.junit.runners.ParentRunner.run(ParentRunner.java:309)
at org.springframework.test.context.junit4.SpringJUnit4ClassRunner.run(SpringJUnit4ClassRunner.java:173)
at org.eclipse.jdt.internal.junit4.runner.JUnit4TestReference.run(JUnit4TestReference.java:50)
at org.eclipse.jdt.internal.junit.runner.TestExecution.run(TestExecution.java:38)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:467)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:683)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.run(RemoteTestRunner.java:390)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.main(RemoteTestRunner.java:197)

我不知道该怎么办。如何修复该测试？我需要这个新版本的spring security，因为它支持CSRF攻击预防

您好，

Peter.

正如M.Deinum所说，我必须在SecurityContextHolderAwareRequestFilter上调用AfterPropertieSet方法。因此，设置方法如下所示：

@Before
public void setUp() throws ServletException {
    Mockito.reset(userGroupInfo, licenseManager);
    SecurityContextHolderAwareRequestFilter securityContextHolderAwareRequestFilter = new SecurityContextHolderAwareRequestFilter();
    securityContextHolderAwareRequestFilter.afterPropertiesSet();
    mvc = MockMvcBuilders.standaloneSetup(new LoginController(userGroupInfo, licenseManager, userInfo))
            .addFilter(new AnonymousAuthenticationFilter("anonymous"))
            .addFilter(securityContextHolderAwareRequestFilter)
            .addFilter(new XssValidationFilter()).build();
    SecurityContextHolder.getContext().setAuthentication(null);
}

考虑联系Spring Security DeV，如果可能的话，可能会对此提出错误。测试设置代码是错误的。Spring Security中的大多数过滤器实现了通常由Spring容器调用的

初始化bean

。但您的安装代码无法调用此函数。SecurityContextHolderAwareRequestFilter的3.2版本在该方法中进行了一些附加设置，以检测Servlet 3.0与否。