Fix Azure#30354. (Azure#30375)

rujche · web-flow · commit f270af322e94 · 2022-08-11T09:31:48.000+08:00
diff --git a/sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/aad/properties/AadAuthenticationProperties.java b/sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/aad/properties/AadAuthenticationProperties.java
@@ -664,8 +664,7 @@ private void validateAuthorizationGrantType(String registrationId, Authorization
                 + " is valid.", registrationId);
         }
 
-        if (AZURE_CLIENT_REGISTRATION_ID.equals(registrationId)
-            && AUTHORIZATION_CODE != grantType) {
+        if (AZURE_CLIENT_REGISTRATION_ID.equals(registrationId) && !AUTHORIZATION_CODE.equals(grantType)) {
             throw new IllegalStateException("spring.cloud.azure.active-directory.authorization-clients."
                 + AZURE_CLIENT_REGISTRATION_ID
                 + ".authorization-grant-type must be configured to 'authorization_code'.");
diff --git a/sdk/spring/spring-cloud-azure-autoconfigure/src/test/java/com/azure/spring/cloud/autoconfigure/aad/properties/AadAuthenticationPropertiesTests.java b/sdk/spring/spring-cloud-azure-autoconfigure/src/test/java/com/azure/spring/cloud/autoconfigure/aad/properties/AadAuthenticationPropertiesTests.java
@@ -377,6 +377,29 @@ void applicationTypeWithWebApplicationAndResourceServer() {
             });
     }
 
+    @Test
+    void applicationTypeWithWebApplicationAndResourceServerWithWrongAuthorizationGrantTypeConfigured() {
+        resourceServerWithOboContextRunner()
+                .withPropertyValues(
+                        "spring.cloud.azure.active-directory.application-type=web_application_and_resource_server",
+                        "spring.cloud.azure.active-directory.authorization-clients.azure.authorization-grant-type=client_credential"
+                )
+                .run(context -> assertThrows(IllegalStateException.class, () -> context.getBean(AadAuthenticationProperties.class)));
+    }
+
+    @Test
+    void applicationTypeWithWebApplicationAndResourceServerWithRightAuthorizationGrantTypeConfigured() {
+        resourceServerWithOboContextRunner()
+                .withPropertyValues(
+                        "spring.cloud.azure.active-directory.application-type=web_application_and_resource_server",
+                        "spring.cloud.azure.active-directory.authorization-clients.azure.authorization-grant-type=authorization_code"
+                )
+                .run(context -> {
+                    AadAuthenticationProperties properties = context.getBean(AadAuthenticationProperties.class);
+                    assertEquals(properties.getApplicationType(), AadApplicationType.WEB_APPLICATION_AND_RESOURCE_SERVER);
+                });
+    }
+
     @Test
     void testInvalidApplicationType() {
         resourceServerContextRunner()

Original file line number	Diff line number	Diff line change
`@@ -664,8 +664,7 @@ private void validateAuthorizationGrantType(String registrationId, Authorization`
`664`	`664`	`+ " is valid.", registrationId);`
`665`	`665`	`}`
`666`	`666`
`667`		`- if (AZURE_CLIENT_REGISTRATION_ID.equals(registrationId)`
`668`		`- && AUTHORIZATION_CODE != grantType) {`
	`667`	`+ if (AZURE_CLIENT_REGISTRATION_ID.equals(registrationId) && !AUTHORIZATION_CODE.equals(grantType)) {`
`669`	`668`	`throw new IllegalStateException("spring.cloud.azure.active-directory.authorization-clients."`
`670`	`669`	`+ AZURE_CLIENT_REGISTRATION_ID`
`671`	`670`	`+ ".authorization-grant-type must be configured to 'authorization_code'.");`