RoleUserInterceptor.java

package edu.ucsb.cs156.organic.interceptors;

import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;

import edu.ucsb.cs156.organic.repositories.UserRepository;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.context.SecurityContext;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken;
import org.springframework.security.oauth2.core.user.OAuth2User;

import java.util.Optional;
import java.util.HashSet;
import java.util.Set;
import java.util.Collection;
import edu.ucsb.cs156.organic.entities.User;



@Component
public class RoleUserInterceptor implements HandlerInterceptor {

   @Autowired
   UserRepository userRepository;

   @Override
   public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        // Update user's security context on server each time the user makes HTTP request to the backend
        // If user has admin status in database we will keep ROLE_ADMIN in security context
        // Otherwise interceptor will remove ROLE_ADMIN before the incoming request is processed by backend API
        SecurityContext securityContext = SecurityContextHolder.getContext();
        Authentication authentication = securityContext.getAuthentication();

        

        if (authentication instanceof OAuth2AuthenticationToken ) {
            OAuth2User oAuthUser = ((OAuth2AuthenticationToken) authentication).getPrincipal();
            Integer githubId = oAuthUser.getAttribute("id");
            Optional<User> optionalUser = userRepository.findByGithubId(githubId);
            if (optionalUser.isPresent()){
                User user = optionalUser.get();

                Set<GrantedAuthority> newAuthorities = new HashSet<>();
                Collection<? extends GrantedAuthority> currentAuthorities = authentication.getAuthorities();
                currentAuthorities.stream()
                .filter(authority -> !authority.getAuthority().equals("ROLE_ADMIN")
                 && !authority.getAuthority().equals("ROLE_INSTRUCTOR"))
                .forEach(authority -> {
                    newAuthorities.add(authority);
                });

                if (user.isAdmin()){
                    newAuthorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
                }

                if (user.isInstructor()){
                    newAuthorities.add(new SimpleGrantedAuthority("ROLE_INSTRUCTOR"));
                }
                
                Authentication newAuth = new OAuth2AuthenticationToken(oAuthUser, newAuthorities,(((OAuth2AuthenticationToken)authentication).getAuthorizedClientRegistrationId()));
                SecurityContextHolder.getContext().setAuthentication(newAuth);
            }
        }

      return true;
   }
    
}











Active mutators

CONDITIONALS_BOUNDARY
EMPTY_RETURNS
FALSE_RETURNS
INCREMENTS
INVERT_NEGS
MATH
NEGATE_CONDITIONALS
NULL_RETURNS
PRIMITIVE_RETURNS
TRUE_RETURNS
VOID_METHOD_CALLS

Tests examined

edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:admin_cannot_get_all_students_for_a_non_existing_course()] (9 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:an_admin_user_can_post_a_new_school()] (18 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:test_that_logged_in_user_can_get_by_id_when_the_id_exists()] (10 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:admin_tries_to_delete_non_existant_school_and_gets_right_error_message()] (14 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_can_get_all_jobs()] (17 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:logged_out_users_cannot_get_by_id()] (22 ms)
edu.ucsb.cs156.organic.controllers.UserInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UserInfoControllerTests]/[method:currentUser__get_staffed_courses()] (15 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:logged_in_user_can_get_all_schools()] (14 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:a_user_cannot_delete_a_course()] (38 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:logged_in_users_can_get_all()] (12 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_cannot_get_staff_for_a_non_existing_course()] (26 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_launch_test_job_with_invalid_parameter_60001()] (12 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_can_launch_test_job()] (2025 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:test_that_logged_in_user_can_get_by_id_when_the_id_does_not_exist()] (13 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:admin_tries_to_delete_non_existant_course_staff_and_gets_right_error_message()] (56 ms)
edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests]/[method:systemInfo__user_logged_in()] (11 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:test_that_non_admin_non_instructor_cannot_get_an_existing_course()] (21 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:updateSchool_fails_whenSchoolDoesNotExist()] (14 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:admin_can_get_all_courses()] (45 ms)
edu.ucsb.cs156.organic.controllers.CSRFControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CSRFControllerTests]/[method:csrf_returns_ok()] (18 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_cannot_add_non_existing_user_to_staff_of_an_existing_course()] (34 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:test_that_instructor_can_get_by_id_when_the_id_exists()] (30 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:admin_can_toggle_admin_status_of_a_user_from_true_to_false()] (17 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_launch_test_job_with_boundary_parameter_60000()] (11 ms)
edu.ucsb.cs156.organic.controllers.UserInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UserInfoControllerTests]/[method:currentUser__update_last_online()] (17 ms)
edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests]/[method:systemInfo__logged_out()] (8 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:logged_out_users_cannot_get_all()] (11 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_can_post_a_new_course()] (54 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:admin_cannot_upload_students_for_a_non_existing_course()] (9 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:user_can_get_only_courses_for_which_they_are_staff()] (16 ms)
edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests]/[method:systemInfo__admin_logged_in()] (9 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_instructor_user_cannot_delete_a_course_if_they_are_not_staff()] (36 ms)
edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] (13 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_can_get_staff_for_a_course()] (35 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:user_can_post_student_only_if_they_are_instructor()] (11 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_user_cannot_post_a_new_course()] (28 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:user_can_not_post_student_if_not_instructor()] (13 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_cannot_add_staff_to_a_non_existing_course()] (29 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_instructor_can_post_a_new_course()] (31 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:admin_can_post_student()] (13 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:admin_tries_to_toggleAdmin_non_existant_user_and_gets_right_error_message()] (21 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:a_user_cannot_update_a_course()] (20 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_can_get_all_jobs_paged()] (16 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:admin_can_toggle_admin_status_of_a_user_from_false_to_true()] (15 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_launch_test_job_with_boundary_parameter_0()] (10 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_cannot_delete_non_existing_course()] (52 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_instructor_user_can_delete_a_course_if_they_are_staff()] (23 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_can_update_a_course()] (44 ms)
edu.ucsb.cs156.organic.controllers.UserInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UserInfoControllerTests]/[method:currentUser__get_emails()] (13 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_instructor_user_can_update_a_course_if_they_are_staff()] (23 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:can_not_post_student_course_dne()] (12 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_can_add_a_staff_member_to_a_course()] (25 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_can_launch_test_job_that_fails()] (219 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:users__admin_logged_in()] (19 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:admin_can_delete_a_school()] (14 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_cannot_update_non_existing_course()] (25 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:an_admin_user_can_post_a_new_school_bad_format_abbrev()] (14 ms)
edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:user_not_present_in_db_and_no_role_update_by_interceptor()] (12 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:admin_can_get_all_students_for_a_course()] (10 ms)
edu.ucsb.cs156.organic.controllers.JobsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.JobsControllerTests]/[method:admin_launch_test_job_with_invalid_parameter_minus_1()] (17 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_admin_user_can_delete_a_course()] (27 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:an_instructor_user_cannot_update_a_course_if_they_are_not_staff()] (35 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:users__instructor_toggle_true_to_false()] (12 ms)
edu.ucsb.cs156.organic.controllers.StudentsControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.StudentsControllerTests]/[method:admin_can_upload_students_for_an_existing_course()] (13 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:test_that_admin_can_get_by_id_when_the_id_exists()] (32 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:users__admin_toggles_nonexistent_user()] (21 ms)
edu.ucsb.cs156.organic.controllers.UsersControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UsersControllerTests]/[method:users__instructor_toggle_false_to_true()] (17 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:test_that_admin_cannot_get_by_id_when_the_id_does_not_exist()] (31 ms)
edu.ucsb.cs156.organic.controllers.CoursesControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.CoursesControllerTests]/[method:admin_can_delete_a_staff()] (45 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:an_instructor_user_can_update_a_school_if_they_are_admin()] (21 ms)
edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_admin_role_when_admin_field_in_db_is_false()] (25 ms)
edu.ucsb.cs156.organic.controllers.UserInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.UserInfoControllerTests]/[method:currentUser__logged_in()] (30 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:logged_out_users_cannot_get_by_id()] (11 ms)
edu.ucsb.cs156.organic.controllers.SchoolControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SchoolControllerTests]/[method:an_admin_user_can_post_a_new_school_bad_format_termRegex()] (24 ms)

Report generated by PIT 1.7.3

1		package edu.ucsb.cs156.organic.interceptors;
2
3		import jakarta.servlet.http.HttpServletRequest;
4		import jakarta.servlet.http.HttpServletResponse;
5
6		import org.springframework.beans.factory.annotation.Autowired;
7		import org.springframework.stereotype.Component;
8		import org.springframework.web.servlet.HandlerInterceptor;
9		import org.springframework.web.servlet.ModelAndView;
10
11		import edu.ucsb.cs156.organic.repositories.UserRepository;
12		import org.springframework.security.core.authority.SimpleGrantedAuthority;
13		import org.springframework.beans.factory.annotation.Autowired;
14		import org.springframework.beans.factory.annotation.Value;
15		import org.springframework.security.core.Authentication;
16		import org.springframework.security.core.GrantedAuthority;
17		import org.springframework.security.core.context.SecurityContext;
18		import org.springframework.security.core.context.SecurityContextHolder;
19		import org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken;
20		import org.springframework.security.oauth2.core.user.OAuth2User;
21
22		import java.util.Optional;
23		import java.util.HashSet;
24		import java.util.Set;
25		import java.util.Collection;
26		import edu.ucsb.cs156.organic.entities.User;
27
28
29
30		@Component
31		public class RoleUserInterceptor implements HandlerInterceptor {
32
33		@Autowired
34		UserRepository userRepository;
35
36		@Override
37		public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
38		// Update user's security context on server each time the user makes HTTP request to the backend
39		// If user has admin status in database we will keep ROLE_ADMIN in security context
40		// Otherwise interceptor will remove ROLE_ADMIN before the incoming request is processed by backend API
41		SecurityContext securityContext = SecurityContextHolder.getContext();
42		Authentication authentication = securityContext.getAuthentication();
43
44
45
46	1 1. preHandle : negated conditional → KILLED	if (authentication instanceof OAuth2AuthenticationToken ) {
47		OAuth2User oAuthUser = ((OAuth2AuthenticationToken) authentication).getPrincipal();
48		Integer githubId = oAuthUser.getAttribute("id");
49		Optional<User> optionalUser = userRepository.findByGithubId(githubId);
50	1 1. preHandle : negated conditional → KILLED	if (optionalUser.isPresent()){
51		User user = optionalUser.get();
52
53		Set<GrantedAuthority> newAuthorities = new HashSet<>();
54		Collection<? extends GrantedAuthority> currentAuthorities = authentication.getAuthorities();
55		currentAuthorities.stream()
56	2 1. lambda$preHandle$0 : negated conditional → KILLED 2. lambda$preHandle$0 : replaced boolean return with true for edu/ucsb/cs156/organic/interceptors/RoleUserInterceptor::lambda$preHandle$0 → KILLED	.filter(authority -> !authority.getAuthority().equals("ROLE_ADMIN")
57	1 1. lambda$preHandle$0 : negated conditional → KILLED	&& !authority.getAuthority().equals("ROLE_INSTRUCTOR"))
58	1 1. preHandle : removed call to java/util/stream/Stream::forEach → KILLED	.forEach(authority -> {
59		newAuthorities.add(authority);
60		});
61
62	1 1. preHandle : negated conditional → KILLED	if (user.isAdmin()){
63		newAuthorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));
64		}
65
66	1 1. preHandle : negated conditional → KILLED	if (user.isInstructor()){
67		newAuthorities.add(new SimpleGrantedAuthority("ROLE_INSTRUCTOR"));
68		}
69
70		Authentication newAuth = new OAuth2AuthenticationToken(oAuthUser, newAuthorities,(((OAuth2AuthenticationToken)authentication).getAuthorizedClientRegistrationId()));
71	1 1. preHandle : removed call to org/springframework/security/core/context/SecurityContext::setAuthentication → KILLED	SecurityContextHolder.getContext().setAuthentication(newAuth);
72		}
73		}
74
75	1 1. preHandle : replaced boolean return with false for edu/ucsb/cs156/organic/interceptors/RoleUserInterceptor::preHandle → KILLED	return true;
76		}
77
78		}
		Mutations
46		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests]/[method:systemInfo__logged_out()] negated conditional → KILLED
50		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:user_not_present_in_db_and_no_role_update_by_interceptor()] negated conditional → KILLED
56		1.1 Location : lambda$preHandle$0 Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] negated conditional → KILLED 2.2 Location : lambda$preHandle$0 Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] replaced boolean return with true for edu/ucsb/cs156/organic/interceptors/RoleUserInterceptor::lambda$preHandle$0 → KILLED
57		1.1 Location : lambda$preHandle$0 Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] negated conditional → KILLED
58		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] removed call to java/util/stream/Stream::forEach → KILLED
62		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] negated conditional → KILLED
66		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] negated conditional → KILLED
71		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.interceptors.RoleUserInterceptorTests]/[method:interceptor_removes_instructor_role_when_instructor_field_in_db_is_false()] removed call to org/springframework/security/core/context/SecurityContext::setAuthentication → KILLED
75		1.1 Location : preHandle Killed by : edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests.[engine:junit-jupiter]/[class:edu.ucsb.cs156.organic.controllers.SystemInfoControllerTests]/[method:systemInfo__logged_out()] replaced boolean return with false for edu/ucsb/cs156/organic/interceptors/RoleUserInterceptor::preHandle → KILLED

RoleUserInterceptor.java

Mutations

Active mutators

Tests examined