cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From serg...@apache.org
Subject cxf git commit: Minor update to OIDC service
Date Fri, 30 Oct 2015 16:08:48 GMT
Repository: cxf
Updated Branches:
  refs/heads/master d21d47f63 -> d58695e24


Minor update to OIDC service


Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/d58695e2
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/d58695e2
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/d58695e2

Branch: refs/heads/master
Commit: d58695e24fa0cc7f951ba4894f0dc946fdfb27f6
Parents: d21d47f
Author: Sergey Beryozkin <sberyozkin@gmail.com>
Authored: Fri Oct 30 16:08:30 2015 +0000
Committer: Sergey Beryozkin <sberyozkin@gmail.com>
Committed: Fri Oct 30 16:08:30 2015 +0000

----------------------------------------------------------------------
 .../cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf/blob/d58695e2/rt/rs/security/sso/oidc/src/main/java/org/apache/cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java
----------------------------------------------------------------------
diff --git a/rt/rs/security/sso/oidc/src/main/java/org/apache/cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java
b/rt/rs/security/sso/oidc/src/main/java/org/apache/cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java
index bb3b27e..e1e7c3f 100644
--- a/rt/rs/security/sso/oidc/src/main/java/org/apache/cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java
+++ b/rt/rs/security/sso/oidc/src/main/java/org/apache/cxf/rs/security/oidc/idp/OidcAuthorizationCodeService.java
@@ -37,7 +37,7 @@ public class OidcAuthorizationCodeService extends AuthorizationCodeGrantService
         // No need to challenge the authenticated user with the authorization form 
         // if all the client application redirecting a user needs is to get this user authenticated
         // with OIDC IDP
-        return requestedScope.size() == 1 && skipAuthorizationWithOidcScope
+        return requestedScope.size() == 1 && permissions.size() == 1 && skipAuthorizationWithOidcScope
             && OPEN_ID_CONNECT_SCOPE.equals(requestedScope.get(0));
     }
     public void setSkipAuthorizationWithOidcScope(boolean skipAuthorizationWithOidcScope)
{


Mime
View raw message