Add direct WebFlux and WebMvc endpoint support

Add `@ControllerEndpoint` and `@RestControllerEndpoint` annotations that can be used to develop a Spring-only request mapped endpoint. Both Spring MVC and Spring WebFlux are supported. This feature is primarily for use when deeper Spring integration is required or when existing Spring Boot 1.5 projects want to migrate to Spring Boot 2.0 without re-writing existing endpoints. It comes at the expense of portability, since such endpoints will be missing from Jersey. Fixes gh-10257
spring-projects · Jan 20, 2018 · bda9b89 · bda9b89
1 parent 340ef52
commit bda9b89
Show file tree

Hide file tree

Showing 33 changed files with 1,882 additions and 61 deletions.
diff --git a/...springframework/boot/actuate/autoconfigure/endpoint/web/WebEndpointAutoConfiguration.java b/...springframework/boot/actuate/autoconfigure/endpoint/web/WebEndpointAutoConfiguration.java
@@ -36,6 +36,9 @@
 import org.springframework.boot.actuate.endpoint.web.PathMappedEndpoints;
 import org.springframework.boot.actuate.endpoint.web.PathMapper;
 import org.springframework.boot.actuate.endpoint.web.WebEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpointDiscoverer;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.annotation.ExposableControllerEndpoint;
 import org.springframework.boot.actuate.endpoint.web.annotation.WebEndpointDiscoverer;
 import org.springframework.boot.autoconfigure.AutoConfigureAfter;
 import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
@@ -100,6 +103,16 @@ public WebEndpointDiscoverer webEndpointDiscoverer(
 				filters.getIfAvailable(Collections::emptyList));
 	}
 
+	@Bean
+	@ConditionalOnMissingBean(ControllerEndpointsSupplier.class)
+	public ControllerEndpointDiscoverer controllerEndpointDiscoverer(
+			PathMapper webEndpointPathMapper,
+			ObjectProvider<Collection<OperationInvokerAdvisor>> invokerAdvisors,
+			ObjectProvider<Collection<EndpointFilter<ExposableControllerEndpoint>>> filters) {
+		return new ControllerEndpointDiscoverer(this.applicationContext,
+				webEndpointPathMapper, filters.getIfAvailable(Collections::emptyList));
+	}
+
 	@Bean
 	@ConditionalOnMissingBean
 	public PathMappedEndpoints pathMappedEndpoints(
@@ -117,4 +130,12 @@ public ExposeExcludePropertyEndpointFilter<ExposableWebEndpoint> webIncludeExclu
 				expose, exclude, "info", "health");
 	}
 
+	@Bean
+	public ExposeExcludePropertyEndpointFilter<ExposableControllerEndpoint> controllerIncludeExcludePropertyEndpointFilter() {
+		Set<String> expose = this.properties.getExpose();
+		Set<String> exclude = this.properties.getExclude();
+		return new ExposeExcludePropertyEndpointFilter<>(
+				ExposableControllerEndpoint.class, expose, exclude);
+	}
+
 }
diff --git a/...te/autoconfigure/endpoint/web/reactive/WebFluxEndpointManagementContextConfiguration.java b/...te/autoconfigure/endpoint/web/reactive/WebFluxEndpointManagementContextConfiguration.java
@@ -22,6 +22,8 @@
 import org.springframework.boot.actuate.endpoint.annotation.Endpoint;
 import org.springframework.boot.actuate.endpoint.web.EndpointMediaTypes;
 import org.springframework.boot.actuate.endpoint.web.WebEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.reactive.ControllerEndpointHandlerMapping;
 import org.springframework.boot.actuate.endpoint.web.reactive.WebFluxEndpointHandlerMapping;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnBean;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
@@ -61,4 +63,17 @@ public WebFluxEndpointHandlerMapping webEndpointReactiveHandlerMapping(
 				corsProperties.toCorsConfiguration());
 	}
 
+	@Bean
+	@ConditionalOnMissingBean
+	public ControllerEndpointHandlerMapping controllerEndpointHandlerMapping(
+			ControllerEndpointsSupplier controllerEndpointsSupplier,
+			EndpointMediaTypes endpointMediaTypes, CorsEndpointProperties corsProperties,
+			WebEndpointProperties webEndpointProperties) {
+		EndpointMapping endpointMapping = new EndpointMapping(
+				webEndpointProperties.getBasePath());
+		return new ControllerEndpointHandlerMapping(endpointMapping,
+				controllerEndpointsSupplier.getEndpoints(),
+				corsProperties.toCorsConfiguration());
+	}
+
 }
diff --git a/...uate/autoconfigure/endpoint/web/servlet/WebMvcEndpointManagementContextConfiguration.java b/...uate/autoconfigure/endpoint/web/servlet/WebMvcEndpointManagementContextConfiguration.java
@@ -22,6 +22,8 @@
 import org.springframework.boot.actuate.endpoint.annotation.Endpoint;
 import org.springframework.boot.actuate.endpoint.web.EndpointMediaTypes;
 import org.springframework.boot.actuate.endpoint.web.WebEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpointsSupplier;
+import org.springframework.boot.actuate.endpoint.web.servlet.ControllerEndpointHandlerMapping;
 import org.springframework.boot.actuate.endpoint.web.servlet.WebMvcEndpointHandlerMapping;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnBean;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
@@ -60,4 +62,17 @@ public WebMvcEndpointHandlerMapping webEndpointServletHandlerMapping(
 				corsProperties.toCorsConfiguration());
 	}
 
+	@Bean
+	@ConditionalOnMissingBean
+	public ControllerEndpointHandlerMapping controllerEndpointHandlerMapping(
+			ControllerEndpointsSupplier controllerEndpointsSupplier,
+			CorsEndpointProperties corsProperties,
+			WebEndpointProperties webEndpointProperties) {
+		EndpointMapping endpointMapping = new EndpointMapping(
+				webEndpointProperties.getBasePath());
+		return new ControllerEndpointHandlerMapping(endpointMapping,
+				controllerEndpointsSupplier.getEndpoints(),
+				corsProperties.toCorsConfiguration());
+	}
+
 }
diff --git a/...boot/actuate/autoconfigure/integrationtest/ControllerEndpointWebFluxIntegrationTests.java b/...boot/actuate/autoconfigure/integrationtest/ControllerEndpointWebFluxIntegrationTests.java
@@ -0,0 +1,94 @@
+/*
+ * Copyright 2012-2018 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.springframework.boot.actuate.autoconfigure.integrationtest;
+
+import org.junit.After;
+import org.junit.Test;
+
+import org.springframework.boot.actuate.autoconfigure.audit.AuditAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.beans.BeansEndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.endpoint.EndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.endpoint.web.WebEndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.web.reactive.ReactiveManagementContextAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.web.server.ManagementContextAutoConfiguration;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpoint;
+import org.springframework.boot.actuate.endpoint.web.annotation.RestControllerEndpoint;
+import org.springframework.boot.autoconfigure.ImportAutoConfiguration;
+import org.springframework.boot.autoconfigure.context.PropertyPlaceholderAutoConfiguration;
+import org.springframework.boot.autoconfigure.http.HttpMessageConvertersAutoConfiguration;
+import org.springframework.boot.autoconfigure.jackson.JacksonAutoConfiguration;
+import org.springframework.boot.autoconfigure.web.reactive.WebFluxAutoConfiguration;
+import org.springframework.boot.autoconfigure.web.servlet.DispatcherServletAutoConfiguration;
+import org.springframework.boot.test.util.TestPropertyValues;
+import org.springframework.boot.web.reactive.context.AnnotationConfigReactiveWebApplicationContext;
+import org.springframework.security.authentication.TestingAuthenticationToken;
+import org.springframework.security.test.context.TestSecurityContextHolder;
+import org.springframework.test.web.reactive.server.WebTestClient;
+import org.springframework.web.bind.annotation.GetMapping;
+
+/**
+ * Integration tests for the Actuator's WebFlux {@link ControllerEndpoint controller
+ * endpoints}.
+ *
+ * @author Phillip Webb
+ */
+public class ControllerEndpointWebFluxIntegrationTests {
+
+	private AnnotationConfigReactiveWebApplicationContext context;
+
+	@After
+	public void close() {
+		TestSecurityContextHolder.clearContext();
+		this.context.close();
+	}
+
+	@Test
+	public void endpointsCanBeAccessed() throws Exception {
+		TestSecurityContextHolder.getContext().setAuthentication(
+				new TestingAuthenticationToken("user", "N/A", "ROLE_ACTUATOR"));
+		this.context = new AnnotationConfigReactiveWebApplicationContext();
+		this.context.register(DefaultConfiguration.class, ExampleController.class);
+		TestPropertyValues.of("management.endpoints.web.expose=*").applyTo(this.context);
+		this.context.refresh();
+		WebTestClient webClient = WebTestClient.bindToApplicationContext(this.context)
+				.build();
+		webClient.get().uri("/actuator/example").exchange().expectStatus().isOk();
+	}
+
+	@ImportAutoConfiguration({ JacksonAutoConfiguration.class,
+			HttpMessageConvertersAutoConfiguration.class, EndpointAutoConfiguration.class,
+			WebEndpointAutoConfiguration.class,
+			ReactiveManagementContextAutoConfiguration.class,
+			AuditAutoConfiguration.class, PropertyPlaceholderAutoConfiguration.class,
+			WebFluxAutoConfiguration.class, ManagementContextAutoConfiguration.class,
+			AuditAutoConfiguration.class, DispatcherServletAutoConfiguration.class,
+			BeansEndpointAutoConfiguration.class })
+	static class DefaultConfiguration {
+
+	}
+
+	@RestControllerEndpoint(id = "example")
+	static class ExampleController {
+
+		@GetMapping("/")
+		public String example() {
+			return "Example";
+		}
+
+	}
+
+}
diff --git a/.../boot/actuate/autoconfigure/integrationtest/ControllerEndpointWebMvcIntegrationTests.java b/.../boot/actuate/autoconfigure/integrationtest/ControllerEndpointWebMvcIntegrationTests.java
@@ -0,0 +1,134 @@
+/*
+ * Copyright 2012-2018 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.springframework.boot.actuate.autoconfigure.integrationtest;
+
+import org.junit.After;
+import org.junit.Test;
+
+import org.springframework.boot.actuate.autoconfigure.audit.AuditAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.beans.BeansEndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.endpoint.EndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.endpoint.web.WebEndpointAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.web.server.ManagementContextAutoConfiguration;
+import org.springframework.boot.actuate.autoconfigure.web.servlet.ServletManagementContextAutoConfiguration;
+import org.springframework.boot.actuate.endpoint.web.annotation.ControllerEndpoint;
+import org.springframework.boot.actuate.endpoint.web.annotation.RestControllerEndpoint;
+import org.springframework.boot.autoconfigure.ImportAutoConfiguration;
+import org.springframework.boot.autoconfigure.context.PropertyPlaceholderAutoConfiguration;
+import org.springframework.boot.autoconfigure.http.HttpMessageConvertersAutoConfiguration;
+import org.springframework.boot.autoconfigure.jackson.JacksonAutoConfiguration;
+import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
+import org.springframework.boot.autoconfigure.web.servlet.DispatcherServletAutoConfiguration;
+import org.springframework.boot.autoconfigure.web.servlet.WebMvcAutoConfiguration;
+import org.springframework.boot.test.util.TestPropertyValues;
+import org.springframework.context.annotation.Import;
+import org.springframework.http.MediaType;
+import org.springframework.mock.web.MockServletContext;
+import org.springframework.security.authentication.TestingAuthenticationToken;
+import org.springframework.security.test.context.TestSecurityContextHolder;
+import org.springframework.test.web.servlet.MockMvc;
+import org.springframework.test.web.servlet.setup.DefaultMockMvcBuilder;
+import org.springframework.test.web.servlet.setup.MockMvcBuilders;
+import org.springframework.test.web.servlet.setup.MockMvcConfigurer;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.context.support.AnnotationConfigWebApplicationContext;
+
+import static org.springframework.security.test.web.servlet.setup.SecurityMockMvcConfigurers.springSecurity;
+import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.get;
+import static org.springframework.test.web.servlet.result.MockMvcResultMatchers.status;
+
+/**
+ * Integration tests for the Actuator's MVC {@link ControllerEndpoint controller
+ * endpoints}.
+ *
+ * @author Phillip Webb
+ * @author Andy Wilkinson
+ */
+public class ControllerEndpointWebMvcIntegrationTests {
+
+	private AnnotationConfigWebApplicationContext context;
+
+	@After
+	public void close() {
+		TestSecurityContextHolder.clearContext();
+		this.context.close();
+	}
+
+	@Test
+	public void endpointsAreSecureByDefault() throws Exception {
+		this.context = new AnnotationConfigWebApplicationContext();
+		this.context.register(SecureConfiguration.class, ExampleController.class);
+		MockMvc mockMvc = createSecureMockMvc();
+		mockMvc.perform(get("/actuator/example").accept(MediaType.APPLICATION_JSON))
+				.andExpect(status().isUnauthorized());
+	}
+
+	@Test
+	public void endpointsCanBeAccessed() throws Exception {
+		TestSecurityContextHolder.getContext().setAuthentication(
+				new TestingAuthenticationToken("user", "N/A", "ROLE_ACTUATOR"));
+		this.context = new AnnotationConfigWebApplicationContext();
+		this.context.register(SecureConfiguration.class, ExampleController.class);
+		TestPropertyValues.of("management.endpoints.web.base-path:/management",
+				"management.endpoints.web.expose=*").applyTo(this.context);
+		MockMvc mockMvc = createSecureMockMvc();
+		mockMvc.perform(get("/management/example")).andExpect(status().isOk());
+	}
+
+	private MockMvc createSecureMockMvc() {
+		return doCreateMockMvc(springSecurity());
+	}
+
+	private MockMvc doCreateMockMvc(MockMvcConfigurer... configurers) {
+		this.context.setServletContext(new MockServletContext());
+		this.context.refresh();
+		DefaultMockMvcBuilder builder = MockMvcBuilders.webAppContextSetup(this.context);
+		for (MockMvcConfigurer configurer : configurers) {
+			builder.apply(configurer);
+		}
+		return builder.build();
+	}
+
+	@ImportAutoConfiguration({ JacksonAutoConfiguration.class,
+			HttpMessageConvertersAutoConfiguration.class, EndpointAutoConfiguration.class,
+			WebEndpointAutoConfiguration.class,
+			ServletManagementContextAutoConfiguration.class, AuditAutoConfiguration.class,
+			PropertyPlaceholderAutoConfiguration.class, WebMvcAutoConfiguration.class,
+			ManagementContextAutoConfiguration.class, AuditAutoConfiguration.class,
+			DispatcherServletAutoConfiguration.class,
+			BeansEndpointAutoConfiguration.class })
+	static class DefaultConfiguration {
+
+	}
+
+	@Import(DefaultConfiguration.class)
+	@ImportAutoConfiguration({ SecurityAutoConfiguration.class })
+	static class SecureConfiguration {
+
+	}
+
+	@RestControllerEndpoint(id = "example")
+	static class ExampleController {
+
+		@GetMapping("/")
+		public String example() {
+			return "Example";
+		}
+
+	}
+
+}
diff --git a/...rk/boot/actuate/autoconfigure/integrationtest/WebMvcEndpointExposureIntegrationTests.java b/...rk/boot/actuate/autoconfigure/integrationtest/WebMvcEndpointExposureIntegrationTests.java
@@ -22,6 +22,7 @@
 import org.springframework.boot.actuate.autoconfigure.endpoint.web.WebEndpointAutoConfiguration;
 import org.springframework.boot.actuate.autoconfigure.web.server.ManagementContextAutoConfiguration;
 import org.springframework.boot.actuate.autoconfigure.web.servlet.ServletManagementContextAutoConfiguration;
+import org.springframework.boot.actuate.endpoint.web.annotation.RestControllerEndpoint;
 import org.springframework.boot.autoconfigure.AutoConfigurations;
 import org.springframework.boot.autoconfigure.http.HttpMessageConvertersAutoConfiguration;
 import org.springframework.boot.autoconfigure.jackson.JacksonAutoConfiguration;
@@ -34,6 +35,7 @@
 import org.springframework.test.web.servlet.MockMvc;
 import org.springframework.test.web.servlet.MvcResult;
 import org.springframework.test.web.servlet.setup.MockMvcBuilders;
+import org.springframework.web.bind.annotation.GetMapping;
 
 import static org.assertj.core.api.Assertions.assertThat;
 import static org.springframework.test.web.servlet.request.MockMvcRequestBuilders.request;
@@ -59,7 +61,8 @@ public class WebMvcEndpointExposureIntegrationTests {
 					ManagementContextAutoConfiguration.class,
 					ServletManagementContextAutoConfiguration.class))
 			.withConfiguration(
-					AutoConfigurations.of(EndpointAutoConfigurationClasses.ALL));
+					AutoConfigurations.of(EndpointAutoConfigurationClasses.ALL))
+			.withUserConfiguration(CustomMvcEndpoint.class);
 
 	@Test
 	public void webEndpointsAreDisabledByDefault() {
@@ -68,6 +71,7 @@ public void webEndpointsAreDisabledByDefault() {
 			assertThat(isExposed(mvc, HttpMethod.GET, "beans")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "conditions")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "configprops")).isFalse();
+			assertThat(isExposed(mvc, HttpMethod.GET, "custommvc")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "env")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "health")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "info")).isTrue();
@@ -87,6 +91,7 @@ public void webEndpointsCanBeExposed() {
 			assertThat(isExposed(mvc, HttpMethod.GET, "beans")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "conditions")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "configprops")).isTrue();
+			assertThat(isExposed(mvc, HttpMethod.GET, "custommvc")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "env")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "health")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "info")).isTrue();
@@ -106,6 +111,7 @@ public void singleWebEndpointCanBeExposed() {
 			assertThat(isExposed(mvc, HttpMethod.GET, "beans")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "conditions")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "configprops")).isFalse();
+			assertThat(isExposed(mvc, HttpMethod.GET, "custommvc")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "env")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "health")).isFalse();
 			assertThat(isExposed(mvc, HttpMethod.GET, "info")).isFalse();
@@ -126,6 +132,7 @@ public void singleWebEndpointCanBeExcluded() {
 			assertThat(isExposed(mvc, HttpMethod.GET, "beans")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "conditions")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "configprops")).isTrue();
+			assertThat(isExposed(mvc, HttpMethod.GET, "custommvc")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "env")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "health")).isTrue();
 			assertThat(isExposed(mvc, HttpMethod.GET, "info")).isTrue();
@@ -151,4 +158,14 @@ private boolean isExposed(MockMvc mockMvc, HttpMethod method, String path)
 				.format("Unexpected %s HTTP status for " + "endpoint %s", status, path));
 	}
 
+	@RestControllerEndpoint(id = "custommvc")
+	static class CustomMvcEndpoint {
+
+		@GetMapping("/")
+		public String main() {
+			return "test";
+		}
+
+	}
+
 }