1 files changed, 10 insertions, 14 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java
index 84817ba7a..82273da83 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/SSOManager.java
@@ -61,10 +61,15 @@ public class SSOManager {
 		
 		String moaSessionId =HTTPSessionUtils.getHTTPSessionString(httpReq.getSession(),
 				AuthenticationManager.MOA_SESSION, null);
+		
 		return AuthenticationSessionStoreage.isValidSessionWithSSOID(ssoSessionID, moaSessionId);	
 		
 	}
 	
+	public String getMOASession(String ssoSessionID) {
+		return AuthenticationSessionStoreage.getMOASessionID(ssoSessionID);
+	}
+	
 	public String existsOldSSOSession(String ssoId) {
 		
 		  Logger.trace("Check that the SSOID has already been used");
@@ -136,23 +141,14 @@ public class SSOManager {
 		Cookie[] cookies = httpReq.getCookies();
 		
 		if (cookies != null) {
-			for (Cookie cookie : cookies) {
-				if (cookie.getName().equals(SSOCOOKIE)) {
-					cookie.setValue(ssoId);
-					cookie.setMaxAge(sso_timeout);
-					cookie.setSecure(true);
-					httpResp.addCookie(cookie);
-					return;
-				}
-			}
-			
+			deleteSSOSessionID(httpReq, httpResp);	
 		}
+		
 		Cookie cookie = new Cookie(SSOCOOKIE, ssoId);
 		cookie.setMaxAge(sso_timeout);
 		cookie.setSecure(true);
-		httpResp.addCookie(cookie);
-		return;
-		
+		cookie.setPath(httpReq.getContextPath());		
+		httpResp.addCookie(cookie);		
 	}
 		
 	
@@ -165,7 +161,7 @@ public class SSOManager {
 				
 				//TODO: funktioniert nicht, da Cookie seltsamerweise immer unsecure übertragen wird (firefox) 
 				//if (cookie.getName().equals(SSOCOOKIE) && cookie.getSecure()) {
-				
+								
 				if (cookie.getName().equals(SSOCOOKIE)) {
 					return cookie.getValue();
 				}