Add validation for auth checks in AbstractUserDetailsAuthenticationProvider

minseok.park · jzheaux · commit 88a38013bb77 · 2025-03-27T16:46:23.000-06:00
Add assertions to validate that preAuthenticationChecks and
postAuthenticationChecks are not null during initialization.
This allows errors to be detected earlier in the application lifecycle.

Closes PR-16710

Signed-off-by: minseok.park &lt;minseok.park@hyosung.com&gt;
diff --git a/core/src/main/java/org/springframework/security/authentication/dao/AbstractUserDetailsAuthenticationProvider.java b/core/src/main/java/org/springframework/security/authentication/dao/AbstractUserDetailsAuthenticationProvider.java
@@ -117,6 +117,8 @@ protected abstract void additionalAuthenticationChecks(UserDetails userDetails,
 	public final void afterPropertiesSet() throws Exception {
 		Assert.notNull(this.userCache, "A user cache must be set");
 		Assert.notNull(this.messages, "A message source must be set");
+		Assert.notNull(this.preAuthenticationChecks, "A pre authentication checks must be set");
+		Assert.notNull(this.postAuthenticationChecks, "A post authentication checks must be set");
 		doAfterPropertiesSet();
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -117,6 +117,8 @@ protected abstract void additionalAuthenticationChecks(UserDetails userDetails,`
`117`	`117`	`public final void afterPropertiesSet() throws Exception {`
`118`	`118`	`Assert.notNull(this.userCache, "A user cache must be set");`
`119`	`119`	`Assert.notNull(this.messages, "A message source must be set");`
	`120`	`+ Assert.notNull(this.preAuthenticationChecks, "A pre authentication checks must be set");`
	`121`	`+ Assert.notNull(this.postAuthenticationChecks, "A post authentication checks must be set");`
`120`	`122`	`doAfterPropertiesSet();`
`121`	`123`	`}`
`122`	`124`