Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
reg-app
Regapp
Commits
540714d4
Commit
540714d4
authored
Mar 16, 2021
by
michael.simon
Browse files
Add CORS Headers for PKCE SPA OIDC Code flow apps
parent
f2e51110
Changes
3
Hide whitespace changes
Inline
Side-by-side
bwreg-service/src/main/java/edu/kit/scc/webreg/service/oidc/OidcOpLoginImpl.java
View file @
540714d4
...
...
@@ -326,7 +326,14 @@ public class OidcOpLoginImpl implements OidcOpLogin {
throw
new
OidcAuthenticationException
(
"cannot create hash at the moment. This is bad."
);
}
}
if
(
clientConfig
.
getGenericStore
().
containsKey
(
"cors_allow_regex"
))
{
String
origin
=
request
.
getHeader
(
"Origin"
);
if
(
origin
.
matches
(
clientConfig
.
getGenericStore
().
get
(
"cors_allow_regex"
)))
{
response
.
setHeader
(
"Access-Control-Allow-Origin"
,
origin
);
}
}
IdentityEntity
identity
=
flowState
.
getIdentity
();
if
(
identity
==
null
)
{
...
...
bwreg-webapp/src/main/java/edu/kit/scc/webreg/oauth/OidcCertsController.java
View file @
540714d4
...
...
@@ -51,6 +51,8 @@ public class OidcCertsController {
@Produces
(
MediaType
.
APPLICATION_JSON
)
public
String
auth
(
@PathParam
(
"realm"
)
String
realm
,
@Context
HttpServletRequest
request
,
@Context
HttpServletResponse
response
)
throws
IOException
,
OidcAuthenticationException
{
response
.
setHeader
(
"Access-Control-Allow-Origin"
,
"*"
);
try
{
logger
.
debug
(
"certs called for {}"
,
realm
);
...
...
bwreg-webapp/src/main/java/edu/kit/scc/webreg/oauth/OidcWellknownController.java
View file @
540714d4
...
...
@@ -47,6 +47,8 @@ public class OidcWellknownController {
public
JSONObject
wellknown
(
@PathParam
(
"realm"
)
String
realm
,
@Context
HttpServletRequest
request
,
@Context
HttpServletResponse
response
)
throws
ServletException
{
response
.
setHeader
(
"Access-Control-Allow-Origin"
,
"*"
);
OidcOpConfigurationEntity
opConfig
=
opService
.
findByRealmAndHost
(
realm
,
request
.
getServerName
());
if
(
opConfig
==
null
)
{
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment