Nullability and Checkstyle

jzheaux · jzheaux · commit a399b9f2017b · 2025-09-09T15:06:59.000-06:00
diff --git a/config/src/test/java/org/springframework/security/config/annotation/web/configurers/FormLoginConfigurerTests.java b/config/src/test/java/org/springframework/security/config/annotation/web/configurers/FormLoginConfigurerTests.java
@@ -21,6 +21,7 @@
 import java.util.List;
 import java.util.function.Supplier;
 
+import org.jspecify.annotations.Nullable;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.extension.ExtendWith;
 
@@ -934,7 +935,8 @@ public <T> AuthorizationManager<T> hasAuthority(String authority) {
 			return AuthorizationManagers.allOf(new AuthorizationDecision(false), this::factors, authorized);
 		}
 
-		private <T> AuthorizationResult factors(Supplier<Authentication> authentication, T context) {
+		private AuthorizationResult factors(Supplier<? extends @Nullable Authentication> authentication,
+				Object context) {
 			List<String> authorities = authentication.get()
 				.getAuthorities()
 				.stream()
diff --git a/core/src/main/java/org/springframework/security/authentication/dao/AbstractUserDetailsAuthenticationProvider.java b/core/src/main/java/org/springframework/security/authentication/dao/AbstractUserDetailsAuthenticationProvider.java
@@ -18,6 +18,7 @@
 
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
+
 import org.springframework.beans.factory.InitializingBean;
 import org.springframework.context.MessageSource;
 import org.springframework.context.MessageSourceAware;
diff --git a/core/src/main/java/org/springframework/security/authorization/method/ExpressionUtils.java b/core/src/main/java/org/springframework/security/authorization/method/ExpressionUtils.java
@@ -36,11 +36,11 @@ private ExpressionUtils() {
 	}
 
 	static @Nullable AuthorizationResult evaluate(Expression expr, EvaluationContext ctx) {
-		return evaluate(expr, ctx, null, null);
+		return evaluate(expr, ctx, () -> null, null);
 	}
 
 	static <T> @Nullable AuthorizationResult evaluate(Expression expr, EvaluationContext ctx,
-			@Nullable Supplier<Authentication> authentication, @Nullable T context) {
+			Supplier<? extends @Nullable Authentication> authentication, @Nullable T context) {
 		try {
 			Object result = expr.getValue(ctx);
 			if (result instanceof AuthorizationManager<?> manager) {
diff --git a/ldap/src/main/java/org/springframework/security/ldap/authentication/AbstractLdapAuthenticationProvider.java b/ldap/src/main/java/org/springframework/security/ldap/authentication/AbstractLdapAuthenticationProvider.java
@@ -20,6 +20,7 @@
 
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
+
 import org.springframework.context.MessageSource;
 import org.springframework.context.MessageSourceAware;
 import org.springframework.context.support.MessageSourceAccessor;

Original file line number	Diff line number	Diff line change
`@@ -36,11 +36,11 @@ private ExpressionUtils() {`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`static @Nullable AuthorizationResult evaluate(Expression expr, EvaluationContext ctx) {`
`39`		`- return evaluate(expr, ctx, null, null);`
	`39`	`+ return evaluate(expr, ctx, () -> null, null);`
`40`	`40`	`}`
`41`	`41`
`42`	`42`	`static <T> @Nullable AuthorizationResult evaluate(Expression expr, EvaluationContext ctx,`
`43`		`- @Nullable Supplier<Authentication> authentication, @Nullable T context) {`
	`43`	`+ Supplier<? extends @Nullable Authentication> authentication, @Nullable T context) {`
`44`	`44`	`try {`
`45`	`45`	`Object result = expr.getValue(ctx);`
`46`	`46`	`if (result instanceof AuthorizationManager<?> manager) {`