mirror of https://github.com/jacekkow/keycloak-protocol-cas
blame | history | patch | commit | commitdiff | ignore whitespace
Jacek Kowalski
2023-11-24 f3460d82f87591ebf1260e02ef7565f5e8eb00f3 
 src/main/java/org/keycloak/protocol/cas/endpoints/LogoutEndpoint.java


@@ -1,10 +1,10 @@


package org.keycloak.protocol.cas.endpoints;




import jakarta.ws.rs.GET;


import jakarta.ws.rs.QueryParam;


import jakarta.ws.rs.core.Response;


import org.jboss.logging.Logger;


import org.jboss.resteasy.annotations.cache.NoCache;


import org.jboss.resteasy.spi.HttpRequest;


import org.keycloak.common.ClientConnection;


import org.keycloak.events.EventBuilder;


import org.keycloak.models.ClientModel;


import org.keycloak.models.KeycloakSession;


import org.keycloak.models.RealmModel;


@@ -15,35 +15,20 @@


import org.keycloak.services.managers.AuthenticationManager;


import org.keycloak.services.messages.Messages;




import javax.ws.rs.GET;


import javax.ws.rs.QueryParam;


import javax.ws.rs.core.Context;


import javax.ws.rs.core.HttpHeaders;


import javax.ws.rs.core.Response;


import java.net.URI;




public class LogoutEndpoint {


    private static final Logger logger = Logger.getLogger(LogoutEndpoint.class);




    @Context


    private KeycloakSession session;




    @Context


    private ClientConnection clientConnection;




    @Context


    private HttpRequest request;




    @Context


    private HttpHeaders headers;




    private RealmModel realm;


    private EventBuilder event;


    private ClientModel client;


    private String redirectUri;




    public LogoutEndpoint(RealmModel realm, EventBuilder event) {


    public LogoutEndpoint(KeycloakSession session, RealmModel realm) {


        this.session = session;


        this.realm = realm;


        this.event = event;


    }




    @GET


@@ -55,13 +40,22 @@


        if (authResult != null) {


            UserSessionModel userSession = authResult.getSession();


            userSession.setNote(AuthenticationManager.KEYCLOAK_LOGOUT_PROTOCOL, CASLoginProtocol.LOGIN_PROTOCOL);


            if (redirectUri != null) userSession.setNote(CASLoginProtocol.LOGOUT_REDIRECT_URI, redirectUri);




            if (redirectUri != null) {


                userSession.setNote(CASLoginProtocol.LOGOUT_REDIRECT_URI, redirectUri);


            }




            logger.debug("Initiating CAS browser logout");


            Response response =  AuthenticationManager.browserLogout(session, realm, authResult.getSession(), session.getContext().getUri(), clientConnection, headers);


            Response response = AuthenticationManager.browserLogout(session, realm, authResult.getSession(), session.getContext().getUri(), session.getContext().getConnection(), session.getContext().getRequestHeaders());


            logger.debug("finishing CAS browser logout");


            return response;


        }




        if (redirectUri != null) {


            logger.debugv("no active session, redirecting to {0}", redirectUri);


            return Response.status(302).location(URI.create(redirectUri)).build();


        }




        return ErrorPage.error(session, null, Response.Status.BAD_REQUEST, Messages.FAILED_LOGOUT);


    }




@@ -70,7 +64,7 @@


            return;


        }




        client = realm.getClients().stream()


        client = realm.getClientsStream()


                .filter(c -> CASLoginProtocol.LOGIN_PROTOCOL.equals(c.getProtocol()))


                .filter(c -> RedirectUtils.verifyRedirectUri(session, service, c) != null)


                .findFirst().orElse(null);