Skip to content

Reactive doc points to unit tests #9157

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

Reactive doc points to unit tests #9157

wants to merge 3 commits into from

Conversation

gberche-orange
Copy link
Contributor

As a spring security user

  • in order to adapt the servlet configuration syntax such as multiple filter chains to reactive syntax
  • I need example/documentation of such syntax (as method names do not match)

This PR adds to the reactive documentation pointer to unit tests as further examples of configurations.

It might be possible to user asciidoc syntax to directly source the MultiSecurityHttpConfig instead of pointing to github (but this falls outside of my asciidoc so far). This may make maintenance of this section overtime easier if ever tests would detect broken path when MultiSecurityHttpConfig source code gets refactored.

@gberche-orange
Reactive doc point to unit tests
0c9ba3b 
Reactive doc point to unit tests for further example of configuration
@gberche-orange gberche-orange changed the title Reactive doc point to unit tests Reactive doc points to unit tests Oct 27, 2020
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Oct 27, 2020
jzheaux
jzheaux requested changes Oct 28, 2020
View reviewed changes
Copy link
Contributor

@jzheaux jzheaux left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, @gberche-orange for the PR! I've left my feedback inline.

@jzheaux jzheaux self-assigned this Oct 28, 2020
@jzheaux jzheaux added in: docs An issue in Documentation or samples type: enhancement A general enhancement and removed status: waiting-for-triage An issue we've not yet triaged labels Oct 28, 2020
@gberche-orange
Copy link
Contributor Author

Thanks @jzheaux for your feedback. I've added a section about webflux support for multiple filter, inspired by my project at https://github.com/orange-cloudfoundry/osb-reverse-proxy/blob/6e38440c53992b343606c872375c1a087c8ccb40/src/main/java/com/orange/oss/osbreverseproxy/SecurityConfig.java#L99-L151 which contains a bit more background which I trimmed from the contributed sample.

As a disclaimer, I'm still pretty new to spring-security, and may benefit from guidance/feedback on how to simplify this configuration.

jzheaux
jzheaux requested changes Oct 30, 2020
View reviewed changes
Copy link
Contributor

@jzheaux jzheaux left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the changes, @gberche-orange! I've left some additional feedback inline.

docs/manual/src/docs/asciidoc/_includes/reactive/webflux.adoc Outdated
@@ -124,3 +124,66 @@ class HelloWebfluxSecurityConfig {

This configuration explicitly sets up all the same things as our minimal configuration.
From here you can easily make the changes to the defaults.

You can find more examples of explicit configuration in unit tests, by searching https://github.com/spring-projects/spring-security/search?q=path%3Aconfig%2Fsrc%2Ftest%2F+EnableWebFluxSecurity[EnableWebFluxSecurity in the `config/src/test/` directory], e.g. https://github.com/spring-projects/spring-security/blob/9cf3129d7afa2abb439aba6aadfee0a2c8c784bf/config/src/test/java/org/springframework/security/config/annotation/web/reactive/EnableWebFluxSecurityTests.java#L349-L366[MultiSecurityHttpConfig] illustrating multiple `SecurityWebFilterChain` beans, which is also explained in section below.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Even with the new section, I still think that this sentence should stay focused on one thing and not two. Could we simplify it to:

You can find more examples of explicit configuration in unit tests, by searching https://github.com/spring-projects/spring-security/search?q=path%3Aconfig%2Fsrc%2Ftest%2F+EnableWebFluxSecurity[EnableWebFluxSecurity in the `config/src/test/` directory].

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I felt that while unit tests are a useful workaround for lack of documentation, they are still hard to grasp for the users of a library. I feel that pointing to a specific test explained in more details in a dedicated session lowers the barrier to reading unit tests by users.

I've however removed the MultiSecurityHttpConfig as requested.

@gberche-orange
Refine section about multiple chains support
b0761ef 
following #9157 (review)

- added anchor
- removed explicit reference to `MultiSecurityHttpConfig`
- replaced multi security example with extracts from `MultiSecurityHttpConfig` and samples/boot/webflux-form/src/main/java/sample/WebfluxFormSecurityConfig.java as `MultiSecurityHttpConfig` isn't using explictly two SecurityWebFilterChain but seems to rely on defaults instead
@gberche-orange
Copy link
Contributor Author

gberche-orange commented Nov 2, 2020
edited
Loading

Thanks @jzheaux for your additional review. I've refined the PR the best I could

It is quite challenging for me as a newcomer and 1st time contributor to reverse engineer documentation from unit tests and to come up with documentation that match quality that that core maintainers would produce.

If there are significant improvements required to this PR, then feel free to then to use this PR as a starting point, and consider further improving it to match the expected documentation quality.

@jzheaux jzheaux mentioned this pull request Nov 2, 2020
Closed
@jzheaux
Copy link
Contributor

jzheaux commented Nov 2, 2020

Thanks for the PR, @gberche-orange! This is now merged into master with ab9a310 and 69336fb.

Also, I polished it the new section with 8b7751f to update some of the indentation and standardize the explanations to fit the typical writing style of the reference manual.

@jzheaux jzheaux closed this Nov 2, 2020
@gberche-orange
Copy link
Contributor Author

Great, thanks @jzheaux !

@jzheaux jzheaux modified the milestones: 5.5.0-M2, 5.5.0-M1 Nov 4, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jzheaux jzheaux jzheaux approved these changes

Assignees

@jzheaux jzheaux

Labels
in: docs An issue in Documentation or samples type: enhancement A general enhancement
Projects
None yet
Milestone
5.5.0-M1
Development

Successfully merging this pull request may close these issues.
3 participants
@gberche-orange @jzheaux @spring-projects-issues