From 578f88516c9b2b3d61d19cd82a821b9c85a573d1 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <tlenz@iaik.tugraz.at>
Date: Mon, 31 Mar 2014 13:06:30 +0200
Subject: redirect to MOA-ID-Auth if redirectURL is not valid.

---
 .../java/at/gv/egovernment/moa/id/auth/servlet/LogOutServlet.java     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'id/server')

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/LogOutServlet.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/LogOutServlet.java
index a11601daa..fc4ec305d 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/LogOutServlet.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/LogOutServlet.java
@@ -94,8 +94,8 @@ public class LogOutServlet extends AuthServlet {
 			//return an error if RedirectURL is not a active Online-Applikation
 			OnlineApplication oa = ConfigurationDBRead.getActiveOnlineApplication(redirectUrl);			
 			if (oa == null) {		
-				resp.sendError(HttpServletResponse.SC_FORBIDDEN, "Parameters not valid");
-				return;
+				Logger.info("RedirctURL does not match to OA configuration. Set default RedirectURL back to MOA-ID-Auth");
+				redirectUrl = AuthConfigurationProvider.getInstance().getPublicURLPrefix();
 				
 			}
 			
-- 
cgit v1.2.3