cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From cohei...@apache.org
Subject [1/6] cxf-fediz git commit: [FEDIZ-168] Support SAML Token without Audience Restriction in Fediz Plugin
Date Fri, 03 Jun 2016 13:10:23 GMT
Repository: cxf-fediz
Updated Branches:
  refs/heads/1.2.x-fixes 89fd6cc4e -> b132fb846


[FEDIZ-168] Support SAML Token without Audience Restriction in Fediz Plugin


Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/174059ca
Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/174059ca
Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/174059ca

Branch: refs/heads/1.2.x-fixes
Commit: 174059ca8c80aaf51938498734a85eb3553e542e
Parents: 89fd6cc
Author: Jan Bernhardt <jbernhardt@talend.com>
Authored: Wed Jun 1 11:21:49 2016 +0200
Committer: Colm O hEigeartaigh <coheigea@apache.org>
Committed: Fri Jun 3 14:04:49 2016 +0100

----------------------------------------------------------------------
 .../java/org/apache/cxf/fediz/core/handler/SigninHandler.java  | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/174059ca/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
----------------------------------------------------------------------
diff --git a/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
b/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
index edd7302..7da25cb 100644
--- a/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
+++ b/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
@@ -104,9 +104,9 @@ public class SigninHandler<T> implements RequestHandler<T>
{
 
     protected boolean validateAudienceRestrictions(String audience, String requestURL) {
         // Validate the AudienceRestriction in Security Token (e.g. SAML) 
-        // against the configured list of audienceURIs
-        boolean validAudience = false;
-        if (audience != null) {
+        boolean validAudience = audience == null;
+        if (validAudience) {
+            // validate against the configured list of audienceURIs
             List<String> audienceURIs = fedizContext.getAudienceUris();
             for (String a : audienceURIs) {
                 if (audience.startsWith(a)) {


Mime
View raw message