From d025c38a426e22b0d1ccfbb4558ff6ce78ac1d0b Mon Sep 17 00:00:00 2001
From: Thomas Lenz <tlenz@iaik.tugraz.at>
Date: Fri, 30 Sep 2016 09:22:29 +0200
Subject: refactor http servlet response processing to prohibit 'chunked'
 transfer encoding

---
 .../moa/id/protocols/oauth20/protocol/OAuth20Protocol.java     |  8 ++++----
 .../moa/id/protocols/oauth20/protocol/OAuth20TokenAction.java  | 10 +++++-----
 2 files changed, 9 insertions(+), 9 deletions(-)

(limited to 'id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment')

diff --git a/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20Protocol.java b/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20Protocol.java
index e6ccc67b7..118c53f6b 100644
--- a/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20Protocol.java
+++ b/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20Protocol.java
@@ -225,14 +225,14 @@ public class OAuth20Protocol extends AbstractAuthProtocolModulController {
 			// create response
 			JsonObject jsonObject = new JsonObject();
 			OAuth20Util.addProperytiesToJsonObject(jsonObject, params);
-			String jsonResponse = jsonObject.toString();
-			Logger.debug("JSON Response: " + jsonResponse);
+			byte[] jsonResponse = jsonObject.toString().getBytes("UTF-8");
+			Logger.debug("JSON Response: " + new String(jsonResponse));
 			
 			// write respone to http response
 			response.setContentType("application/json");
+			response.setContentLength(jsonResponse.length);
 			response.setStatus(HttpServletResponse.SC_BAD_REQUEST);
-			response.getOutputStream().print(jsonResponse);
-			response.getOutputStream().close();
+			response.getOutputStream().write(jsonResponse);
 			
 			return true;
 		}
diff --git a/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20TokenAction.java b/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20TokenAction.java
index 9d78418cd..985e1d1c5 100644
--- a/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20TokenAction.java
+++ b/id/server/modules/moa-id-module-openID/src/main/java/at/gv/egovernment/moa/id/protocols/oauth20/protocol/OAuth20TokenAction.java
@@ -83,14 +83,14 @@ class OAuth20TokenAction implements IAction {
 			// create response
 			JsonObject jsonObject = new JsonObject();
 			OAuth20Util.addProperytiesToJsonObject(jsonObject, auth20SessionObject.getAuthDataSession());
-			String jsonResponse = jsonObject.toString();
-			Logger.debug("JSON Response: " + jsonResponse);
+			byte[] jsonResponse = jsonObject.toString().getBytes("UTF-8");
+			Logger.debug("JSON Response: " + new String(jsonResponse));
 			
 			// write respone to http response
 			httpResp.setContentType("application/json");
-			httpResp.setStatus(HttpServletResponse.SC_OK);
-			httpResp.getOutputStream().print(jsonResponse);
-			httpResp.getOutputStream().close();
+			httpResp.setContentLength(jsonResponse.length);
+			httpResp.setStatus(HttpServletResponse.SC_OK);			
+			httpResp.getOutputStream().write(jsonResponse);
 			
 			return null;
 		}
-- 
cgit v1.2.3