cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jbernha...@apache.org
Subject cxf-fediz git commit: [FEDIZ-168] Support SAML Token without Audience Restriction in Fediz Plugin
Date Wed, 01 Jun 2016 09:44:16 GMT
Repository: cxf-fediz
Updated Branches:
  refs/heads/master c1a294b7a -> 2d8d8e64e


[FEDIZ-168] Support SAML Token without Audience Restriction in Fediz Plugin


Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/2d8d8e64
Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/2d8d8e64
Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/2d8d8e64

Branch: refs/heads/master
Commit: 2d8d8e64ee67932f406131d6a754317acad49aae
Parents: c1a294b
Author: Jan Bernhardt <jbernhardt@talend.com>
Authored: Wed Jun 1 11:21:49 2016 +0200
Committer: Jan Bernhardt <jbernhardt@talend.com>
Committed: Wed Jun 1 11:21:49 2016 +0200

----------------------------------------------------------------------
 .../java/org/apache/cxf/fediz/core/handler/SigninHandler.java  | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/2d8d8e64/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
----------------------------------------------------------------------
diff --git a/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
b/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
index 5119196..00f3559 100644
--- a/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
+++ b/plugins/core/src/main/java/org/apache/cxf/fediz/core/handler/SigninHandler.java
@@ -111,9 +111,9 @@ public class SigninHandler<T> implements RequestHandler<T>
{
 
     protected boolean validateAudienceRestrictions(String audience, String requestURL) {
         // Validate the AudienceRestriction in Security Token (e.g. SAML) 
-        // against the configured list of audienceURIs
-        boolean validAudience = false;
-        if (audience != null) {
+        boolean validAudience = audience == null;
+        if (validAudience) {
+            // validate against the configured list of audienceURIs
             List<String> audienceURIs = fedizContext.getAudienceUris();
             for (String a : audienceURIs) {
                 if (audience.startsWith(a)) {


Mime
View raw message