1 files changed, 10 insertions, 3 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/PEPSConnectorServlet.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/PEPSConnectorServlet.java
index 3c8892e33..63bc2a8cc 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/PEPSConnectorServlet.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/PEPSConnectorServlet.java
@@ -196,9 +196,15 @@ public class PEPSConnectorServlet extends AuthServlet {
 			Logger.debug("Starting to assemble MOA assertion");

 			//produce MOA-Assertion and artifact			

 			String samlArtifactBase64 = 

-	    		AuthenticationServer.getInstance().getForeignAuthenticationData(moaSessionID);

+	    		AuthenticationServer.getInstance().getForeignAuthenticationData(moaSession);

 			Logger.info("MOA assertion assembled and SAML Artifact generated.");

 			

+    		//session is implicit stored in changeSessionID!!!! 

+    		String newMOASessionID = AuthenticationSessionStoreage.changeSessionID(moaSession);

+    		

+    		Logger.info("Changed MOASession " + moaSessionID + " to Session " + newMOASessionID);

+    		Logger.info("Daten angelegt zu MOASession " + newMOASessionID);

+			

 			//redirect

 			String redirectURL = null;

 	    	if (!samlArtifactBase64.equals("Redirect to Input Processor")) {

@@ -209,10 +215,11 @@ public class PEPSConnectorServlet extends AuthServlet {
 	    		redirectURL = addURLParameter(redirectURL, PARAM_SAMLARTIFACT, URLEncoder.encode(samlArtifactBase64, "UTF-8"));

 	    		redirectURL = response.encodeRedirectURL(redirectURL);*/

 	    		redirectURL = new DataURLBuilder().buildDataURL(moaSession.getAuthURL(), 

-						ModulUtils.buildAuthURL(moaSession.getModul(), moaSession.getAction()), samlArtifactBase64);

+						ModulUtils.buildAuthURL(moaSession.getModul(), moaSession.getAction()), newMOASessionID);

 	    		redirectURL = response.encodeRedirectURL(redirectURL);

 	    	} else {

-	    		redirectURL = new DataURLBuilder().buildDataURL(moaSession.getAuthURL(), AuthenticationServer.REQ_PROCESS_VALIDATOR_INPUT, moaSession.getSessionID());

+	    		

+	    		redirectURL = new DataURLBuilder().buildDataURL(moaSession.getAuthURL(), AuthenticationServer.REQ_PROCESS_VALIDATOR_INPUT, newMOASessionID);

 	    	}

 	    	

 	        try {