Allow multiple alias domains

- Every alias domain is a own EntityID which is the configured PublicURLPrefix
author: Thomas Lenz <tlenz@iaik.tugraz.at> 2015-08-26 14:03:58 +0200
committer: Thomas Lenz <tlenz@iaik.tugraz.at> 2015-08-26 14:03:58 +0200
commit: 52a855d948a6c3090b5d696774896deac95b621f (patch)
tree: 34975c9f9c151a82efd8b5e23330eb9bbcf4c284 /id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java
parent: bb21974ea69b1705ef574569980a82640ca1de69 (diff)
download: moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.tar.gz
moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.tar.bz2
moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.zip
1 files changed, 5 insertions, 2 deletions
diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java
index 7dd8645c6..a914659b0 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java
@@ -36,6 +36,7 @@ import at.gv.egovernment.moa.id.config.auth.AuthConfigurationProviderFactory;
 import at.gv.egovernment.moa.id.config.auth.OAAuthParameter;
 import at.gv.egovernment.moa.id.moduls.SSOManager;
 import at.gv.egovernment.moa.id.util.FormBuildUtils;
+import at.gv.egovernment.moa.id.util.HTTPUtils;
 import at.gv.egovernment.moa.logging.Logger;
 import at.gv.egovernment.moa.util.MiscUtil;
 import at.gv.egovernment.moa.util.URLEncoder;
@@ -64,8 +65,10 @@ public class RedirectServlet extends AuthServlet{
 		OAAuthParameter oa = null;
 		String redirectTarget = DEFAULT_REDIRECTTARGET;
 		try {
-			oa = AuthConfigurationProviderFactory.getInstance().getOnlineApplicationParameter(url);			
-			if (oa == null && !url.startsWith(AuthConfigurationProviderFactory.getInstance().getPublicURLPrefix())) {		
+			oa = AuthConfigurationProviderFactory.getInstance().getOnlineApplicationParameter(url);
+			String authURL = HTTPUtils.extractAuthURLFromRequest(req);
+			
+			if (oa == null && !AuthConfigurationProviderFactory.getInstance().getPublicURLPrefix().contains(authURL)) {		
 				resp.sendError(HttpServletResponse.SC_FORBIDDEN, "Parameters not valid");
 				return;
author	Thomas Lenz <tlenz@iaik.tugraz.at>	2015-08-26 14:03:58 +0200
committer	Thomas Lenz <tlenz@iaik.tugraz.at>	2015-08-26 14:03:58 +0200
commit	52a855d948a6c3090b5d696774896deac95b621f (patch)
tree	34975c9f9c151a82efd8b5e23330eb9bbcf4c284 /id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/RedirectServlet.java
parent	bb21974ea69b1705ef574569980a82640ca1de69 (diff)
download	moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.tar.gz moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.tar.bz2 moa-id-spss-52a855d948a6c3090b5d696774896deac95b621f.zip