Rename requireCspMatcher to requestMatcher

To align with the rest of the DSL

Signed-off-by: Ziqin Wang <ziqin@wangziqin.net>

Author: ziqin

config/src/main/java/org/springframework/security/config/annotation/web/configurers/HeadersConfigurer.java

@@ -1009,13 +1009,13 @@ public ContentSecurityPolicyConfig nonceAttributeName(String nonceAttributeName)
 		 * @return the {@link ContentSecurityPolicyConfig} for additional configuration
 		 * @throws IllegalArgumentException if {@code requestMatcher} is null
 		 * @throws IllegalStateException if a {@link RequestMatcher} is already configured
-		 * by a previous call of this method or {@link #requireCspMatchers(String...)}
+		 * by a previous call of this method or {@link #requestMatchers(String...)}
 		 * @since 7.1
-		 * @see #requireCspMatchers(String...)
+		 * @see #requestMatchers(String...)
 		 */
-		public ContentSecurityPolicyConfig requireCspMatcher(RequestMatcher requestMatcher) {
+		public ContentSecurityPolicyConfig requestMatcher(RequestMatcher requestMatcher) {
 			Assert.notNull(requestMatcher, "RequestMatcher cannot be null");
-			Assert.state(this.requestMatcher == null, "RequireCspMatcher(s) is already configured");
+			Assert.state(this.requestMatcher == null, "RequestMatcher(s) is already configured");
 			this.requestMatcher = requestMatcher;
 			return this;
 		}
@@ -1030,14 +1030,14 @@ public ContentSecurityPolicyConfig requireCspMatcher(RequestMatcher requestMatch
 		 * @throws IllegalArgumentException if any path pattern if rejected by
 		 * {@link PathPatternRequestMatcher.Builder#matcher(String)}
 		 * @throws IllegalStateException if a {@link RequestMatcher} is already configured
-		 * by a previous call of this method or {@link #requireCspMatcher(RequestMatcher)}
+		 * by a previous call of this method or {@link #requestMatcher(RequestMatcher)}
 		 * @since 7.1
-		 * @see #requireCspMatcher(RequestMatcher)
+		 * @see #requestMatcher(RequestMatcher)
 		 */
-		public ContentSecurityPolicyConfig requireCspMatchers(String... pathPatterns) {
+		public ContentSecurityPolicyConfig requestMatchers(String... pathPatterns) {
 			PathPatternRequestMatcher.Builder builder = HeadersConfigurer.this.getRequestMatcherBuilder();
 			OrRequestMatcher matcher = new OrRequestMatcher(Arrays.stream(pathPatterns).map(builder::matcher).toList());
-			return this.requireCspMatcher(matcher);
+			return this.requestMatcher(matcher);
 		}
 
 		HeaderWriter getWriter() {

config/src/main/java/org/springframework/security/config/web/server/ServerHttpSecurity.java

@@ -2897,15 +2897,15 @@ public ContentSecurityPolicySpec nonceAttributeName(String nonceAttributeName) {
 			 * @throws IllegalArgumentException if {@code matcher} is {@code null}
 			 * @throws IllegalStateException if a {@link ServerWebExchangeMatcher} is
 			 * already configured by a previous call of this method or
-			 * {@link #requireCspMatchers(String...)}
+			 * {@link #exchangeMatchers(String...)}
 			 * @since 7.1
-			 * @see #requireCspMatchers(String...)
+			 * @see #exchangeMatchers(String...)
 			 */
-			public ContentSecurityPolicySpec requireCspMatcher(ServerWebExchangeMatcher matcher) {
+			public ContentSecurityPolicySpec exchangeMatcher(ServerWebExchangeMatcher matcher) {
 				Assert.notNull(matcher, "Matcher must not be null");
 				// Replace the CSP writer in the list with a matcher-decorated writer
 				int idx = HeaderSpec.this.writers.indexOf(HeaderSpec.this.contentSecurityPolicy);
-				Assert.state(idx >= 0, "RequireCspMatcher(s) is already configured");
+				Assert.state(idx >= 0, "ExchangeMatcher(s) is already configured");
 				HeaderSpec.this.writers.set(idx, new ServerWebExchangeDelegatingServerHttpHeadersWriter(matcher,
 						HeaderSpec.this.contentSecurityPolicy));
 				return this;
@@ -2922,12 +2922,12 @@ public ContentSecurityPolicySpec requireCspMatcher(ServerWebExchangeMatcher matc
 			 * {@link PathPatternParserServerWebExchangeMatcher}
 			 * @throws IllegalStateException if a {@link ServerWebExchangeMatcher} is
 			 * already configured by a previous call of this method or
-			 * {@link #requireCspMatcher(ServerWebExchangeMatcher)}
+			 * {@link #exchangeMatcher(ServerWebExchangeMatcher)}
 			 * @since 7.1
-			 * @see #requireCspMatcher(ServerWebExchangeMatcher)
+			 * @see #exchangeMatcher(ServerWebExchangeMatcher)
 			 */
-			public ContentSecurityPolicySpec requireCspMatchers(String... pathPatterns) {
-				return this.requireCspMatcher(ServerWebExchangeMatchers.pathMatchers(pathPatterns));
+			public ContentSecurityPolicySpec exchangeMatchers(String... pathPatterns) {
+				return this.exchangeMatcher(ServerWebExchangeMatchers.pathMatchers(pathPatterns));
 			}
 
 			private ContentSecurityPolicySpec(String policyDirectives) {

config/src/main/kotlin/org/springframework/security/config/annotation/web/headers/ContentSecurityPolicyDsl.kt

@@ -52,11 +52,11 @@ class ContentSecurityPolicyDsl {
      * The default is to enable CSP in every response if
      * [org.springframework.security.config.annotation.web.HeadersDsl.contentSecurityPolicy]
      * is configured.
-     * You can configure either this property or [requireCspMatchers], but not both.
+     * You can configure either this property or [requestMatchers], but not both.
      * @since 7.1
-     * @see requireCspMatchers
+     * @see requestMatchers
      */
-    var requireCspMatcher: RequestMatcher? = null
+    var requestMatcher: RequestMatcher? = null
 
     private var requireCspPathPatterns: Array<out String>? = null
 
@@ -65,13 +65,13 @@ class ContentSecurityPolicyDsl {
      * The default is to write CSP header in every response if
      * [org.springframework.security.config.annotation.web.HeadersDsl.contentSecurityPolicy]
      * is configured.
-     * You can configure either this method or [requireCspMatcher], but not both.
+     * You can configure either this method or [requestMatcher], but not both.
      * @param pathPatterns the path patterns to be matched with a
      * [org.springframework.security.web.servlet.util.matcher.PathPatternRequestMatcher]
      * @since 7.1
-     * @see requireCspMatcher
+     * @see requestMatcher
      */
-    fun requireCspMatchers(vararg pathPatterns: String) {
+    fun requestMatchers(vararg pathPatterns: String) {
         requireCspPathPatterns = pathPatterns
     }
 
@@ -86,8 +86,8 @@ class ContentSecurityPolicyDsl {
                 }
             }
             nonceAttributeName?.also(contentSecurityPolicy::nonceAttributeName)
-            requireCspMatcher?.also(contentSecurityPolicy::requireCspMatcher)
-            requireCspPathPatterns?.also(contentSecurityPolicy::requireCspMatchers)
+            requestMatcher?.also(contentSecurityPolicy::requestMatcher)
+            requireCspPathPatterns?.also(contentSecurityPolicy::requestMatchers)
         }
     }
 }

config/src/main/kotlin/org/springframework/security/config/web/server/ServerContentSecurityPolicyDsl.kt

@@ -49,25 +49,25 @@ class ServerContentSecurityPolicyDsl {
      * The [ServerWebExchangeMatcher] to use for determining when CSP should be applied.
      * The default is to enable CSP in every response if [ServerHeadersDsl.contentSecurityPolicy]
      * is configured.
-     * You can configure either this property or [requireCspMatchers], but not both.
+     * You can configure either this property or [exchangeMatchers], but not both.
      * @since 7.1
-     * @see requireCspMatchers
+     * @see exchangeMatchers
      */
-    var requireCspMatcher: ServerWebExchangeMatcher? = null
+    var exchangeMatcher: ServerWebExchangeMatcher? = null
 
     private var requireCspPathPatterns: Array<out String>? = null
 
     /**
      * Specify the matching path patterns for determining when CSP should be applied.
      * The default is to enable CSP in every response if [ServerHeadersDsl.contentSecurityPolicy]
      * is configured.
-     * You can configure either this method or [requireCspMatcher], but not both.
+     * You can configure either this method or [exchangeMatcher], but not both.
      * @param pathPatterns the path patterns to be matched with a
      * [org.springframework.security.web.server.util.matcher.PathPatternParserServerWebExchangeMatcher]
      * @since 7.1
-     * @see requireCspMatcher
+     * @see exchangeMatcher
      */
-    fun requireCspMatchers(vararg pathPatterns: String) {
+    fun exchangeMatchers(vararg pathPatterns: String) {
         requireCspPathPatterns = pathPatterns
     }
 
@@ -80,8 +80,8 @@ class ServerContentSecurityPolicyDsl {
                 contentSecurityPolicy.reportOnly(reportOnly!!)
             }
             nonceAttributeName?.also(contentSecurityPolicy::nonceAttributeName)
-            requireCspMatcher?.also(contentSecurityPolicy::requireCspMatcher)
-            requireCspPathPatterns?.also(contentSecurityPolicy::requireCspMatchers)
+            exchangeMatcher?.also(contentSecurityPolicy::exchangeMatcher)
+            requireCspPathPatterns?.also(contentSecurityPolicy::exchangeMatchers)
         }
     }
 }

config/src/test/java/org/springframework/security/config/annotation/web/configurers/HeadersConfigurerTests.java

@@ -486,7 +486,7 @@ public void configureWhenContentSecurityPolicyWithOverriddenMatchersThenThrows()
 			.isThrownBy(() -> this.spring.register(ContentSecurityPolicyOverriddenMatchersConfig.class).autowire())
 			.havingRootCause()
 			.isInstanceOf(IllegalStateException.class)
-			.withMessage("RequireCspMatcher(s) is already configured");
+			.withMessage("RequestMatcher(s) is already configured");
 	}
 
 	@Test
@@ -1246,7 +1246,7 @@ SecurityFilterChain filterChain(HttpSecurity http) {
 					.defaultsDisabled()
 					.contentSecurityPolicy((csp) -> csp
 						.policyDirectives("default-src 'self'")
-						.requireCspMatcher((request) -> {
+						.requestMatcher((request) -> {
 							var accepted = MediaType.parseMediaTypes(request.getHeader(HttpHeaders.ACCEPT));
 							return MediaType.TEXT_HTML.isPresentIn(accepted);
 						})));
@@ -1268,7 +1268,7 @@ SecurityFilterChain filterChain(HttpSecurity http) {
 					.defaultsDisabled()
 					.contentSecurityPolicy((csp) -> csp
 						.policyDirectives("default-src 'self'")
-						.requireCspMatchers("/foo/**", "/bar/**")));
+						.requestMatchers("/foo/**", "/bar/**")));
 			// @formatter:on
 			return http.build();
 		}
@@ -1287,8 +1287,8 @@ SecurityFilterChain filterChain(HttpSecurity http) {
 					.defaultsDisabled()
 					.contentSecurityPolicy((csp) -> csp
 						.policyDirectives("default-src 'self'")
-						.requireCspMatcher(AnyRequestMatcher.INSTANCE)
-						.requireCspMatchers("/**")));
+						.requestMatcher(AnyRequestMatcher.INSTANCE)
+						.requestMatchers("/**")));
 			// @formatter:on
 			return http.build();
 		}

config/src/test/java/org/springframework/security/config/web/server/HeaderSpecTests.java

@@ -463,7 +463,7 @@ public void headersWhenContentSecurityPolicyEnabledWithMatcherThenHeaderInRespon
 		// @formatter:off
 		this.http.headers((headers) -> headers
 			.contentSecurityPolicy((csp) -> csp
-				.requireCspMatcher((exchange) ->
+				.exchangeMatcher((exchange) ->
 					(MediaType.TEXT_HTML.isPresentIn(exchange.getRequest().getHeaders().getAccept()) ?
 						ServerWebExchangeMatcher.MatchResult.match() :
 						ServerWebExchangeMatcher.MatchResult.notMatch()))
@@ -491,7 +491,7 @@ public void headersWhenContentSecurityPolicyEnabledWithPathMatchersThenHeaderInR
 		// @formatter:off
 		this.http.headers((headers) -> headers
 			.contentSecurityPolicy((csp) -> csp
-				.requireCspMatchers("/foo/**", "/bar/**")
+				.exchangeMatchers("/foo/**", "/bar/**")
 				.policyDirectives(policyDirectives)));
 		// @formatter:on
 		WebTestClient client = WebTestClientBuilder.bindToWebFilters(this.http.build()).build();
@@ -518,10 +518,10 @@ public void headersWhenContentSecurityPolicyWithOverriddenMatchersThenFailToConf
 			.isThrownBy(() -> this.http
 				.headers((headers) -> headers
 					.contentSecurityPolicy((csp) -> csp
-						.requireCspMatcher(ServerWebExchangeMatchers.anyExchange())
-						.requireCspMatchers("/**")
+						.exchangeMatcher(ServerWebExchangeMatchers.anyExchange())
+						.exchangeMatchers("/**")
 						.policyDirectives("default-src 'self'"))))
-			.withMessage("RequireCspMatcher(s) is already configured");
+			.withMessage("ExchangeMatcher(s) is already configured");
 		// @formatter:on
 	}
 

config/src/test/kotlin/org/springframework/security/config/annotation/web/headers/ContentSecurityPolicyDslTests.kt

@@ -233,7 +233,7 @@ class ContentSecurityPolicyDslTests {
                     defaultsDisabled = true
                     contentSecurityPolicy {
                         policyDirectives = "default-src 'self'"
-                        requireCspMatcher = RequestMatcher { request ->
+                        requestMatcher = RequestMatcher { request ->
                             val accepted = MediaType.parseMediaTypes(request.getHeader(HttpHeaders.ACCEPT))
                             MediaType.TEXT_HTML.isPresentIn(accepted)
                         }
@@ -281,7 +281,7 @@ class ContentSecurityPolicyDslTests {
                     defaultsDisabled = true
                     contentSecurityPolicy {
                         policyDirectives = "default-src 'self'"
-                        requireCspMatchers("/foo/**", "/bar/**")
+                        requestMatchers("/foo/**", "/bar/**")
                     }
                 }
             }
@@ -294,7 +294,7 @@ class ContentSecurityPolicyDslTests {
         assertThatThrownBy {
             this.spring.register(ContentSecurityPolicyOverriddenMatchersConfig::class.java).autowire()
         }.hasRootCauseInstanceOf(IllegalStateException::class.java)
-            .hasRootCauseMessage("RequireCspMatcher(s) is already configured")
+            .hasRootCauseMessage("RequestMatcher(s) is already configured")
     }
 
     @Configuration
@@ -307,8 +307,8 @@ class ContentSecurityPolicyDslTests {
                     defaultsDisabled = true
                     contentSecurityPolicy {
                         policyDirectives = "default-src 'self'"
-                        requireCspMatcher = AnyRequestMatcher.INSTANCE
-                        requireCspMatchers("/**")
+                        requestMatcher = AnyRequestMatcher.INSTANCE
+                        requestMatchers("/**")
                     }
                 }
             }

config/src/test/kotlin/org/springframework/security/config/web/server/ServerContentSecurityPolicyDslTests.kt

@@ -212,7 +212,7 @@ class ServerContentSecurityPolicyDslTests {
             headers {
                 contentSecurityPolicy {
                     policyDirectives = "default-src 'self'"
-                    requireCspMatcher = ServerWebExchangeMatcher { exchange ->
+                    exchangeMatcher = ServerWebExchangeMatcher { exchange ->
                         if (MediaType.TEXT_HTML.isPresentIn(exchange.request.headers.accept))
                             ServerWebExchangeMatcher.MatchResult.match()
                         else
@@ -251,7 +251,7 @@ class ServerContentSecurityPolicyDslTests {
             headers {
                 contentSecurityPolicy {
                     policyDirectives = "default-src 'self'"
-                    requireCspMatchers("/foo/**", "/bar/**")
+                    exchangeMatchers("/foo/**", "/bar/**")
                 }
             }
         }
@@ -262,7 +262,7 @@ class ServerContentSecurityPolicyDslTests {
         assertThatThrownBy {
             this.spring.register(CspPathOverriddenMatchersConfig::class.java).autowire()
         }.hasRootCauseInstanceOf(IllegalStateException::class.java)
-            .hasRootCauseMessage("RequireCspMatcher(s) is already configured")
+            .hasRootCauseMessage("ExchangeMatcher(s) is already configured")
     }
 
     @Configuration
@@ -274,8 +274,8 @@ class ServerContentSecurityPolicyDslTests {
             headers {
                 contentSecurityPolicy {
                     policyDirectives = "default-src 'self'"
-                    requireCspMatcher = ServerWebExchangeMatchers.anyExchange()
-                    requireCspMatchers("/**")
+                    exchangeMatcher = ServerWebExchangeMatchers.anyExchange()
+                    exchangeMatchers("/**")
                 }
             }
         }