keycloak-aplcache
Changes
pom.xml 2(+1 -1)
Details
diff --git a/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java b/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java
index 72a0493..349ba11 100755
--- a/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java
+++ b/integration/adapter-core/src/main/java/org/keycloak/adapters/RequestAuthenticator.java
@@ -32,10 +32,6 @@ public abstract class RequestAuthenticator {
public AuthOutcome authenticate() {
log.info("--> authenticate()");
- if (!facade.getRequest().isSecure() && deployment.isSslRequired()) {
- log.warn("SSL is required to authenticate");
- return AuthOutcome.FAILED;
- }
BearerTokenRequestAuthenticator bearer = createBearerTokenAuthenticator();
log.info("try bearer");
AuthOutcome outcome = bearer.authenticate(facade);
@@ -44,6 +40,7 @@ public abstract class RequestAuthenticator {
log.info("Bearer FAILED");
return AuthOutcome.FAILED;
} else if (outcome == AuthOutcome.AUTHENTICATED) {
+ if (verifySSL()) return AuthOutcome.FAILED;
completeAuthentication(bearer);
log.info("Bearer AUTHENTICATED");
return AuthOutcome.AUTHENTICATED;
@@ -55,6 +52,7 @@ public abstract class RequestAuthenticator {
log.info("try oauth");
if (isCached()) {
+ if (verifySSL()) return AuthOutcome.FAILED;
log.info("AUTHENTICATED: was cached");
return AuthOutcome.AUTHENTICATED;
}
@@ -70,6 +68,8 @@ public abstract class RequestAuthenticator {
}
+ if (verifySSL()) return AuthOutcome.FAILED;
+
completeAuthentication(oauth);
// redirect to strip out access code and state query parameters
@@ -81,6 +81,14 @@ public abstract class RequestAuthenticator {
return AuthOutcome.AUTHENTICATED;
}
+ protected boolean verifySSL() {
+ if (!facade.getRequest().isSecure() && deployment.isSslRequired()) {
+ log.warn("SSL is required to authenticate");
+ return true;
+ }
+ return false;
+ }
+
protected abstract OAuthRequestAuthenticator createOAuthAuthenticator();
protected BearerTokenRequestAuthenticator createBearerTokenAuthenticator() {
diff --git a/model/invalidation-cache/model-adapters/pom.xml b/model/invalidation-cache/model-adapters/pom.xml
index ff704e9..c6b12f5 100755
--- a/model/invalidation-cache/model-adapters/pom.xml
+++ b/model/invalidation-cache/model-adapters/pom.xml
@@ -67,19 +67,6 @@
</dependency>
<dependency>
- <groupId>org.keycloak</groupId>
- <artifactId>keycloak-model-tests</artifactId>
- <version>${project.version}</version>
- <scope>test</scope>
- </dependency>
- <dependency>
- <groupId>org.keycloak</groupId>
- <artifactId>keycloak-model-tests</artifactId>
- <version>${project.version}</version>
- <classifier>tests</classifier>
- <scope>test</scope>
- </dependency>
- <dependency>
<groupId>com.h2database</groupId>
<artifactId>h2</artifactId>
<scope>test</scope>
pom.xml 2(+1 -1)
diff --git a/pom.xml b/pom.xml
index 95d0478..0eb88f0 100755
--- a/pom.xml
+++ b/pom.xml
@@ -18,7 +18,7 @@
<resteasy.version>2.3.7.Final</resteasy.version>
<resteasy.version.eap.6.3>2.3.7.Final</resteasy.version.eap.6.3>
<resteasy.version.latest>3.0.8.Final</resteasy.version.latest>
- <undertow.version>1.0.0.Final</undertow.version>
+ <undertow.version>1.0.15.Final</undertow.version>
<picketlink.version>2.6.0.CR2</picketlink.version>
<picketbox.ldap.version>1.0.2.Final</picketbox.ldap.version>
<mongo.driver.version>2.11.3</mongo.driver.version>