Fix null pointer exception when security scheme doesn't exist

Author: quen2404

src/main/java/com/qdesrame/openapi/diff/compare/SecurityRequirementsDiff.java

@@ -56,7 +56,13 @@ public boolean same(SecurityRequirement left, SecurityRequirement right) {
 
     private List<Pair<SecurityScheme.Type, SecurityScheme.In>> getListOfSecuritySchemes(Components components, SecurityRequirement securityRequirement) {
         return securityRequirement.keySet().stream()
-                .map(x -> components.getSecuritySchemes().get(x))
+                .map(x -> {
+                    SecurityScheme result = components.getSecuritySchemes().get(x);
+                    if (result == null) {
+                        throw new IllegalArgumentException("Impossible to find security scheme: " + x);
+                    }
+                    return result;
+                })
                 .map(this::getPair)
                 .distinct()
                 .collect(Collectors.toList());

src/test/java/com/qdesrame/openapi/test/SecurityDiffTest.java

@@ -13,6 +13,7 @@
 public class SecurityDiffTest {
     private final String OPENAPI_DOC1 = "security_diff_1.yaml";
     private final String OPENAPI_DOC2 = "security_diff_2.yaml";
+    private final String OPENAPI_DOC3 = "security_diff_3.yaml";
 
 
     @Test
@@ -59,4 +60,9 @@ public void testDiffDifferent() {
         assertTrue(securityRequirement3.size() == 1);
         assertTrue(securityRequirement3.get("petstore_auth").size() == 2);
     }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void testWithUnknownSecurityScheme() {
+        OpenApiCompare.fromLocations(OPENAPI_DOC3, OPENAPI_DOC3);
+    }
 }

src/test/resources/security_diff_3.yaml

@@ -0,0 +1,241 @@
+openapi: 3.0.0
+servers:
+  - url: 'http://petstore.swagger.io/v2'
+info:
+  description: >-
+    This is a sample server Petstore server.  You can find out more about
+    Swagger at [http://swagger.io](http://swagger.io) or on [irc.freenode.net,
+    #swagger](http://swagger.io/irc/).  For this sample, you can use the api key
+    `special-key` to test the authorization filters.
+  version: 1.0.0
+  title: Swagger Petstore
+  termsOfService: 'http://swagger.io/terms/'
+  contact:
+    email: apiteam@swagger.io
+  license:
+    name: Apache 2.0
+    url: 'http://www.apache.org/licenses/LICENSE-2.0.html'
+tags:
+  - name: pet
+    description: Everything about your Pets
+    externalDocs:
+      description: Find out more
+      url: 'http://swagger.io'
+  - name: store
+    description: Access to Petstore orders
+  - name: user
+    description: Operations about user
+    externalDocs:
+      description: Find out more about our store
+      url: 'http://swagger.io'
+security:
+  - petstore_auth:
+      - 'write:pets'
+      - 'read:pets'
+  - unknown: []
+paths:
+  '/pet/{petId}':
+    parameters:
+      - name: newHeaderParam
+        in: header
+        required: false
+        schema:
+          type: integer
+    delete:
+      tags:
+        - pet
+      summary: Deletes a pet
+      description: ''
+      operationId: deletePet
+      parameters:
+        - name: api_key
+          in: header
+          required: false
+          schema:
+            type: string
+        - name: newHeaderParam
+          in: header
+          required: false
+          schema:
+            type: string
+        - name: petId
+          in: path
+          description: Pet id to delete
+          required: true
+          schema:
+            type: integer
+            format: int64
+      responses:
+        '400':
+          description: Invalid ID supplied
+        '404':
+          description: Pet not found
+      security:
+      - petstore_auth:
+        - 'write:pets'
+  /pet:
+    post:
+      tags:
+        - pet
+      summary: Add a new pet to the store
+      description: ''
+      operationId: addPet
+      responses:
+        '405':
+          description: Invalid input
+      requestBody:
+        $ref: '#/components/requestBodies/Pet'
+  /pet2:
+    post:
+      tags:
+        - pet
+      summary: Add a new pet to the store
+      description: ''
+      operationId: addPet
+      responses:
+        '405':
+          description: Invalid input
+      requestBody:
+        $ref: '#/components/requestBodies/Pet'
+  /pet3:
+    post:
+      tags:
+        - pet
+      summary: Add a new pet to the store
+      description: ''
+      operationId: addPet
+      responses:
+        '405':
+          description: Invalid input
+      requestBody:
+        $ref: '#/components/requestBodies/Pet'
+      security:
+      - petstore_auth:
+        - 'write:pets'
+        - 'read:pets'
+  /pet/findByStatus2:
+    get:
+      tags:
+        - pet
+      summary: Finds Pets by status
+      description: Multiple status values can be provided with comma separated strings
+      operationId: findPetsByStatus
+      parameters:
+        - name: status
+          in: query
+          deprecated: true
+          description: Status values that need to be considered for filter
+          required: true
+          explode: true
+          schema:
+            type: array
+            items:
+              type: string
+              enum:
+                - available
+                - pending
+                - sold
+              default: available
+      security:
+      - tenant: []
+        user: []
+      responses:
+        '200':
+          description: successful operation
+          content:
+            application/xml:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/Pet'
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/Pet'
+        '400':
+          description: Invalid status value
+externalDocs:
+  description: Find out more about Swagger
+  url: 'http://swagger.io'
+components:
+  requestBodies:
+    Pet:
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/Pet'
+        application/xml:
+          schema:
+            $ref: '#/components/schemas/Pet'
+      description: Pet object that needs to be added to the store
+      required: true
+  securitySchemes:
+    petstore_auth:
+      type: oauth2
+      flows:
+        implicit:
+          authorizationUrl: 'http://petstore.swagger.io/oauth/dialog'
+          scopes:
+            'write:pets': modify pets in your account
+            'read:pets': read your pets
+    tenant:
+      type: apiKey
+      name: tenant
+      in: header
+    user:
+      type: apiKey
+      name: user
+      in: header
+  schemas:
+    Tag:
+      type: object
+      properties:
+        id:
+          type: integer
+          format: int64
+        name:
+          type: string
+      xml:
+        name: Tag
+    Pet:
+      type: object
+      required:
+        - name
+        - photoUrls
+      properties:
+        id:
+          type: integer
+          format: int64
+        category:
+          type: string
+        name:
+          type: string
+          example: doggie
+        newField:
+          type: string
+          example: a field demo
+          description: a field demo
+        photoUrls:
+          type: array
+          xml:
+            name: photoUrl
+            wrapped: true
+          items:
+            type: string
+        tags:
+          type: array
+          xml:
+            name: tag
+            wrapped: true
+          items:
+            $ref: '#/components/schemas/Tag'
+        status:
+          type: string
+          description: pet status in the store
+          enum:
+            - available
+            - pending
+            - sold
+      xml:
+        name: Pet