spring-projects
diff --git a/‎spring-boot-project/spring-boot-actuator-autoconfigure/src/test/java/org/springframework/boot/actuate/autoconfigure/info/InfoContributorAutoConfigurationTests.java
Lines changed: 66 additions & 1 deletion b/‎spring-boot-project/spring-boot-actuator-autoconfigure/src/test/java/org/springframework/boot/actuate/autoconfigure/info/InfoContributorAutoConfigurationTests.java
Lines changed: 66 additions & 1 deletion
diff --git a/‎spring-boot-project/spring-boot-actuator-autoconfigure/src/test/java/org/springframework/boot/actuate/autoconfigure/ssl/SslHealthContributorAutoConfigurationTests.java
Lines changed: 133 additions & 0 deletions b/‎spring-boot-project/spring-boot-actuator-autoconfigure/src/test/java/org/springframework/boot/actuate/autoconfigure/ssl/SslHealthContributorAutoConfigurationTests.java
Lines changed: 133 additions & 0 deletions
diff --git a/‎spring-boot-project/spring-boot-actuator/src/main/java/org/springframework/boot/actuate/info/SslInfoContributor.java
Lines changed: 17 additions & 0 deletions b/‎spring-boot-project/spring-boot-actuator/src/main/java/org/springframework/boot/actuate/info/SslInfoContributor.java
Lines changed: 17 additions & 0 deletions
diff --git a/‎spring-boot-project/spring-boot-actuator/src/main/java/org/springframework/boot/actuate/ssl/SslHealthIndicator.java
Lines changed: 1 addition & 1 deletion b/‎spring-boot-project/spring-boot-actuator/src/main/java/org/springframework/boot/actuate/ssl/SslHealthIndicator.java
Lines changed: 1 addition & 1 deletion
diff --git a/‎spring-boot-project/spring-boot-actuator/src/test/java/org/springframework/boot/actuate/info/SslInfoContributorTests.java
Lines changed: 63 additions & 0 deletions b/‎spring-boot-project/spring-boot-actuator/src/test/java/org/springframework/boot/actuate/info/SslInfoContributorTests.java
Lines changed: 63 additions & 0 deletions
@@ -16,11 +16,13 @@
 
 package org.springframework.boot.actuate.autoconfigure.info;
 
+import java.time.Duration;
 import java.util.Map;
 import java.util.Properties;
 
 import org.junit.jupiter.api.Test;
 
+import org.springframework.boot.actuate.autoconfigure.ssl.SslHealthIndicatorProperties;
 import org.springframework.boot.actuate.info.BuildInfoContributor;
 import org.springframework.boot.actuate.info.EnvironmentInfoContributor;
 import org.springframework.boot.actuate.info.GitInfoContributor;
@@ -29,12 +31,16 @@
 import org.springframework.boot.actuate.info.JavaInfoContributor;
 import org.springframework.boot.actuate.info.OsInfoContributor;
 import org.springframework.boot.actuate.info.ProcessInfoContributor;
+import org.springframework.boot.actuate.info.SslInfoContributor;
 import org.springframework.boot.autoconfigure.AutoConfigurations;
+import org.springframework.boot.autoconfigure.ssl.SslAutoConfiguration;
 import org.springframework.boot.info.BuildProperties;
 import org.springframework.boot.info.GitProperties;
 import org.springframework.boot.info.JavaInfo;
 import org.springframework.boot.info.OsInfo;
 import org.springframework.boot.info.ProcessInfo;
+import org.springframework.boot.info.SslInfo;
+import org.springframework.boot.ssl.SslBundles;
 import org.springframework.boot.test.context.runner.ApplicationContextRunner;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
@@ -60,7 +66,8 @@ void envContributor() {
 
 	@Test
 	void defaultInfoContributorsEnabled() {
-		this.contextRunner.run((context) -> assertThat(context).doesNotHaveBean(InfoContributor.class));
+		this.contextRunner.run(
+				(context) -> assertThat(context).doesNotHaveBean(InfoContributor.class).doesNotHaveBean(SslInfo.class));
 	}
 
 	@Test
@@ -176,6 +183,54 @@ void processInfoContributor() {
 		});
 	}
 
+	@Test
+	void sslInfoContributor() {
+		this.contextRunner.withConfiguration(AutoConfigurations.of(SslAutoConfiguration.class))
+			.withPropertyValues("management.info.ssl.enabled=true", "server.ssl.bundle=ssltest",
+					"spring.ssl.bundle.jks.ssltest.keystore.location=classpath:test.jks")
+			.run((context) -> {
+				assertThat(context).hasSingleBean(SslInfoContributor.class);
+				assertThat(context).hasSingleBean(SslInfo.class);
+				Map<String, Object> content = invokeContributor(context.getBean(SslInfoContributor.class));
+				assertThat(content).containsKey("ssl");
+				assertThat(content.get("ssl")).isInstanceOf(SslInfo.class);
+			});
+	}
+
+	@Test
+	void sslInfoContributorWithWarningThreshold() {
+		this.contextRunner.withConfiguration(AutoConfigurations.of(SslAutoConfiguration.class))
+			.withPropertyValues("management.info.ssl.enabled=true", "server.ssl.bundle=ssltest",
+					"spring.ssl.bundle.jks.ssltest.keystore.location=classpath:test.jks",
+					"management.health.ssl.certificate-validity-warning-threshold=1d")
+			.run((context) -> {
+				assertThat(context).hasSingleBean(SslInfoContributor.class);
+				assertThat(context).hasSingleBean(SslInfo.class);
+				assertThat(context).hasSingleBean(SslHealthIndicatorProperties.class);
+				assertThat(context.getBean(SslHealthIndicatorProperties.class).getCertificateValidityWarningThreshold())
+					.isEqualTo(Duration.ofDays(1));
+				Map<String, Object> content = invokeContributor(context.getBean(SslInfoContributor.class));
+				assertThat(content).containsKey("ssl");
+				assertThat(content.get("ssl")).isInstanceOf(SslInfo.class);
+			});
+	}
+
+	@Test
+	void customSslInfo() {
+		this.contextRunner.withUserConfiguration(CustomSslInfoConfiguration.class)
+			.withConfiguration(AutoConfigurations.of(SslAutoConfiguration.class))
+			.withPropertyValues("management.info.ssl.enabled=true", "server.ssl.bundle=ssltest",
+					"spring.ssl.bundle.jks.ssltest.keystore.location=classpath:test.jks")
+			.run((context) -> {
+				assertThat(context).hasSingleBean(SslInfoContributor.class);
+				assertThat(context).hasSingleBean(SslInfo.class);
+				assertThat(context.getBean(SslInfo.class)).isSameAs(context.getBean("customSslInfo"));
+				Map<String, Object> content = invokeContributor(context.getBean(SslInfoContributor.class));
+				assertThat(content).containsKey("ssl");
+				assertThat(content.get("ssl")).isInstanceOf(SslInfo.class);
+			});
+	}
+
 	private Map<String, Object> invokeContributor(InfoContributor contributor) {
 		Info.Builder builder = new Info.Builder();
 		contributor.contribute(builder);
@@ -241,4 +296,14 @@ BuildInfoContributor customBuildInfoContributor() {
 
 	}
 
+	@Configuration(proxyBeanMethods = false)
+	static class CustomSslInfoConfiguration {
+
+		@Bean
+		SslInfo customSslInfo(SslBundles sslBundles) {
+			return new SslInfo(sslBundles, Duration.ofDays(7));
+		}
+
+	}
+
 }
@@ -0,0 +1,133 @@
+/*
+ * Copyright 2012-2024 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.springframework.boot.actuate.autoconfigure.ssl;
+
+import java.time.Duration;
+import java.util.List;
+
+import org.junit.jupiter.api.Test;
+
+import org.springframework.boot.actuate.autoconfigure.ssl.SslHealthContributorAutoConfigurationTests.CustomSslInfoConfiguration.CustomSslHealthIndicator;
+import org.springframework.boot.actuate.health.Health;
+import org.springframework.boot.actuate.health.HealthIndicator;
+import org.springframework.boot.actuate.health.Status;
+import org.springframework.boot.actuate.ssl.SslHealthIndicator;
+import org.springframework.boot.autoconfigure.AutoConfigurations;
+import org.springframework.boot.autoconfigure.ssl.SslAutoConfiguration;
+import org.springframework.boot.info.SslInfo;
+import org.springframework.boot.info.SslInfo.CertificateInfo;
+import org.springframework.boot.ssl.SslBundles;
+import org.springframework.boot.test.context.runner.ApplicationContextRunner;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+import static org.assertj.core.api.Assertions.assertThat;
+
+/**
+ * Tests for {@link SslHealthContributorAutoConfiguration}.
+ */
+class SslHealthContributorAutoConfigurationTests {
+
+	private final ApplicationContextRunner contextRunner = new ApplicationContextRunner()
+		.withConfiguration(
+				AutoConfigurations.of(SslHealthContributorAutoConfiguration.class, SslAutoConfiguration.class))
+		.withPropertyValues("server.ssl.bundle=ssltest",
+				"spring.ssl.bundle.jks.ssltest.keystore.location=classpath:test.jks");
+
+	@Test
+	void beansShouldNotBeConfigured() {
+		this.contextRunner.withPropertyValues("management.health.ssl.enabled=false")
+			.run((context) -> assertThat(context).doesNotHaveBean(HealthIndicator.class)
+				.doesNotHaveBean(SslInfo.class));
+	}
+
+	@Test
+	@SuppressWarnings("unchecked")
+	void beansShouldBeConfigured() {
+		this.contextRunner.run((context) -> {
+			assertThat(context).hasSingleBean(SslHealthIndicator.class);
+			assertThat(context).hasSingleBean(SslInfo.class);
+			Health health = context.getBean(SslHealthIndicator.class).health();
+			assertThat(health.getStatus()).isSameAs(Status.OUT_OF_SERVICE);
+			assertThat(health.getDetails()).hasSize(1);
+			List<CertificateInfo> certificates = (List<CertificateInfo>) health.getDetails().get("certificates");
+			assertThat(certificates).hasSize(1);
+			assertThat(certificates.get(0)).isInstanceOf(CertificateInfo.class);
+		});
+	}
+
+	@Test
+	@SuppressWarnings("unchecked")
+	void beansShouldBeConfiguredWithWarningThreshold() {
+		this.contextRunner.withPropertyValues("management.health.ssl.certificate-validity-warning-threshold=1d")
+			.run((context) -> {
+				assertThat(context).hasSingleBean(SslHealthIndicator.class);
+				assertThat(context).hasSingleBean(SslInfo.class);
+				assertThat(context).hasSingleBean(SslHealthIndicatorProperties.class);
+				assertThat(context.getBean(SslHealthIndicatorProperties.class).getCertificateValidityWarningThreshold())
+					.isEqualTo(Duration.ofDays(1));
+				Health health = context.getBean(SslHealthIndicator.class).health();
+				assertThat(health.getStatus()).isSameAs(Status.OUT_OF_SERVICE);
+				assertThat(health.getDetails()).hasSize(1);
+				List<CertificateInfo> certificates = (List<CertificateInfo>) health.getDetails().get("certificates");
+				assertThat(certificates).hasSize(1);
+				assertThat(certificates.get(0)).isInstanceOf(CertificateInfo.class);
+			});
+	}
+
+	@Test
+	@SuppressWarnings("unchecked")
+	void customBeansShouldBeConfigured() {
+		this.contextRunner.withUserConfiguration(CustomSslInfoConfiguration.class).run((context) -> {
+			assertThat(context).hasSingleBean(SslHealthIndicator.class);
+			assertThat(context.getBean(SslHealthIndicator.class))
+				.isSameAs(context.getBean(CustomSslHealthIndicator.class));
+			assertThat(context).hasSingleBean(SslInfo.class);
+			assertThat(context.getBean(SslInfo.class)).isSameAs(context.getBean("customSslInfo"));
+			Health health = context.getBean(SslHealthIndicator.class).health();
+			assertThat(health.getStatus()).isSameAs(Status.OUT_OF_SERVICE);
+			assertThat(health.getDetails()).hasSize(1);
+			List<CertificateInfo> certificates = (List<CertificateInfo>) health.getDetails().get("certificates");
+			assertThat(certificates).hasSize(1);
+			assertThat(certificates.get(0)).isInstanceOf(CertificateInfo.class);
+		});
+	}
+
+	@Configuration(proxyBeanMethods = false)
+	static class CustomSslInfoConfiguration {
+
+		@Bean
+		SslHealthIndicator sslHealthIndicator(SslInfo sslInfo) {
+			return new CustomSslHealthIndicator(sslInfo);
+		}
+
+		@Bean
+		SslInfo customSslInfo(SslBundles sslBundles) {
+			return new SslInfo(sslBundles, Duration.ofDays(7));
+		}
+
+		static class CustomSslHealthIndicator extends SslHealthIndicator {
+
+			CustomSslHealthIndicator(SslInfo sslInfo) {
+				super(sslInfo);
+			}
+
+		}
+
+	}
+
+}
@@ -16,15 +16,21 @@
 
 package org.springframework.boot.actuate.info;
 
+import org.springframework.aot.hint.BindingReflectionHintsRegistrar;
+import org.springframework.aot.hint.RuntimeHints;
+import org.springframework.aot.hint.RuntimeHintsRegistrar;
 import org.springframework.boot.actuate.info.Info.Builder;
+import org.springframework.boot.actuate.info.SslInfoContributor.SslInfoContributorRuntimeHints;
 import org.springframework.boot.info.SslInfo;
+import org.springframework.context.annotation.ImportRuntimeHints;
 
 /**
  * An {@link InfoContributor} that exposes {@link SslInfo}.
  *
  * @author Jonatan Ivanov
  * @since 3.4.0
  */
+@ImportRuntimeHints(SslInfoContributorRuntimeHints.class)
 public class SslInfoContributor implements InfoContributor {
 
 	private final SslInfo sslInfo;
@@ -38,4 +44,15 @@ public void contribute(Builder builder) {
 		builder.withDetail("ssl", this.sslInfo);
 	}
 
+	static class SslInfoContributorRuntimeHints implements RuntimeHintsRegistrar {
+
+		private final BindingReflectionHintsRegistrar bindingRegistrar = new BindingReflectionHintsRegistrar();
+
+		@Override
+		public void registerHints(RuntimeHints hints, ClassLoader classLoader) {
+			this.bindingRegistrar.registerReflectionHints(hints.reflection(), SslInfo.class);
+		}
+
+	}
+
 }
@@ -69,7 +69,7 @@ protected void doHealthCheck(Builder builder) throws Exception {
 			}
 			else if (statuses.contains(Validity.Status.WILL_EXPIRE_SOON)) {
 				// TODO: Should we introduce Status.WARNING
-				//  (returns 200 but indicates that something is not right)?
+				// (returns 200 but indicates that something is not right)?
 				builder.status(WILL_EXPIRE_SOON_STATUS);
 			}
 			else {
 
@@ -0,0 +1,63 @@
+/*
+ * Copyright 2012-2024 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.springframework.boot.actuate.info;
+
+import java.time.Duration;
+
+import org.junit.jupiter.api.Test;
+
+import org.springframework.aot.hint.MemberCategory;
+import org.springframework.aot.hint.RuntimeHints;
+import org.springframework.aot.hint.predicate.RuntimeHintsPredicates;
+import org.springframework.boot.actuate.info.SslInfoContributor.SslInfoContributorRuntimeHints;
+import org.springframework.boot.info.SslInfo;
+import org.springframework.boot.ssl.DefaultSslBundleRegistry;
+import org.springframework.boot.ssl.SslBundle;
+import org.springframework.boot.ssl.SslBundles;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.mockito.Mockito.mock;
+
+/**
+ * Tests for {@link SslInfoContributor}.
+ *
+ * @author Jonatan Ivanov
+ */
+class SslInfoContributorTests {
+
+	@Test
+	void sslInfoShouldBeAdded() {
+		SslBundles sslBundles = new DefaultSslBundleRegistry("test", mock(SslBundle.class));
+		SslInfo sslInfo = new SslInfo(sslBundles, Duration.ofDays(14));
+		SslInfoContributor sslInfoContributor = new SslInfoContributor(sslInfo);
+		Info.Builder builder = new Info.Builder();
+		sslInfoContributor.contribute(builder);
+		Info info = builder.build();
+		assertThat(info.getDetails().get("ssl")).isInstanceOf(SslInfo.class);
+	}
+
+	@Test
+	void shouldRegisterHints() {
+		RuntimeHints runtimeHints = new RuntimeHints();
+		new SslInfoContributorRuntimeHints().registerHints(runtimeHints, getClass().getClassLoader());
+		assertThat(RuntimeHintsPredicates.reflection()
+			.onType(SslInfo.class)
+			.withMemberCategories(MemberCategory.INVOKE_DECLARED_CONSTRUCTORS, MemberCategory.DECLARED_FIELDS))
+			.accepts(runtimeHints);
+	}
+
+}
Original file line number	Diff line number	Diff line change
`@@ -69,7 +69,7 @@ protected void doHealthCheck(Builder builder) throws Exception {`
`69`	`69`	`}`
`70`	`70`	`else if (statuses.contains(Validity.Status.WILL_EXPIRE_SOON)) {`
`71`	`71`	`// TODO: Should we introduce Status.WARNING`
`72`		`- // (returns 200 but indicates that something is not right)?`
	`72`	`+ // (returns 200 but indicates that something is not right)?`
`73`	`73`	`builder.status(WILL_EXPIRE_SOON_STATUS);`
`74`	`74`	`}`
`75`	`75`	`else {`