KEYCLOAK-1971 REST end point does't validate password policies properly

2015-11-24 20:50:41 +01:00 · 2015-11-24 20:50:41 +01:00 · 500bced6ee
commit 500bced6ee
parent ccd456dba6
2 changed files with 11 additions and 0 deletions
--- a/model/api/src/main/java/org/keycloak/models/PasswordPolicy.java
+++ b/model/api/src/main/java/org/keycloak/models/PasswordPolicy.java
@ -76,6 +76,8 @@ public class PasswordPolicy implements Serializable {
                list.add(new PasswordHistory(arg));
            } else if (name.equals(ForceExpiredPasswordChange.NAME)) {
                list.add(new ForceExpiredPasswordChange(arg));
+            } else {
+                throw new IllegalArgumentException("Unsupported policy");
            }
        }
        return list;
--- a/model/api/src/test/java/org/keycloak/models/PasswordPolicyTest.java
+++ b/model/api/src/test/java/org/keycloak/models/PasswordPolicyTest.java
@ -84,6 +84,15 @@ public class PasswordPolicyTest {
        Assert.assertNull(policy.validate("jdoe", "ab&d1234"));
    }

+    @Test
+    public void testInvalidPolicyName() {
+        try {
+            PasswordPolicy policy = new PasswordPolicy("noSuchPolicy");
+            Assert.fail("Expected exception");
+        } catch (IllegalArgumentException e) {
+        }
+    }
+    
    @Test
    public void testRegexPatterns() {
        PasswordPolicy policy = null;