From 8560e4a392962f6b1bdd40f444f091f6a36cdbd4 Mon Sep 17 00:00:00 2001 From: Jacek Kowalski <Jacek@jacekk.info> Date: Fri, 24 Nov 2023 15:24:58 +0000 Subject: [PATCH] CASLoginProtocol: close Response resource in backchannelLogout --- src/main/java/org/keycloak/protocol/cas/endpoints/AbstractValidateEndpoint.java | 12 +++--------- 1 files changed, 3 insertions(+), 9 deletions(-) diff --git a/src/main/java/org/keycloak/protocol/cas/endpoints/AbstractValidateEndpoint.java b/src/main/java/org/keycloak/protocol/cas/endpoints/AbstractValidateEndpoint.java index 0b965d9..2620eb3 100644 --- a/src/main/java/org/keycloak/protocol/cas/endpoints/AbstractValidateEndpoint.java +++ b/src/main/java/org/keycloak/protocol/cas/endpoints/AbstractValidateEndpoint.java @@ -27,26 +27,20 @@ public abstract class AbstractValidateEndpoint { protected final Logger logger = Logger.getLogger(getClass()); - @Context protected KeycloakSession session; - @Context - protected ClientConnection clientConnection; - @Context - protected HttpRequest request; - @Context - protected HttpHeaders headers; protected RealmModel realm; protected EventBuilder event; protected ClientModel client; protected AuthenticatedClientSessionModel clientSession; - public AbstractValidateEndpoint(RealmModel realm, EventBuilder event) { + public AbstractValidateEndpoint(KeycloakSession session, RealmModel realm, EventBuilder event) { + this.session = session; this.realm = realm; this.event = event; } protected void checkSsl() { - if (!session.getContext().getUri().getBaseUri().getScheme().equals("https") && realm.getSslRequired().isRequired(clientConnection)) { + if (!session.getContext().getUri().getBaseUri().getScheme().equals("https") && realm.getSslRequired().isRequired(session.getContext().getConnection())) { throw new CASValidationException(CASErrorCode.INVALID_REQUEST, "HTTPS required", Response.Status.FORBIDDEN); } } -- Gitblit v1.9.1