Merge pull request #3787 from pedroigor/KEYCLOAK-3261

[KEYCLOAK-3261] - Properly handle apps deployed at the ROOT context
2017-01-24 08:37:40 +01:00 · 2017-01-24 08:37:40 +01:00 · 04c4110f76
commit 04c4110f76
parent bd271b2367 13e92cdb35
10 changed files with 48 additions and 2 deletions
--- a/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/authorization/AbstractPolicyEnforcer.java
+++ b/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/authorization/AbstractPolicyEnforcer.java
@ -253,8 +253,7 @@ public abstract class AbstractPolicyEnforcer {
    }
    private String getPath(Request request) {
-        String pathInfo = URI.create(request.getURI()).getPath().substring(1);
+        return request.getRelativePath();
        return pathInfo.substring(pathInfo.indexOf('/'), pathInfo.length());
    }
    private Set<String> getRequiredScopes(PathConfig pathConfig, Request request) {
--- a/adapters/oidc/jaxrs-oauth-client/src/main/java/org/keycloak/jaxrs/JaxrsHttpFacade.java
+++ b/adapters/oidc/jaxrs-oauth-client/src/main/java/org/keycloak/jaxrs/JaxrsHttpFacade.java
@ -66,6 +66,11 @@ public class JaxrsHttpFacade implements OIDCHttpFacade {
            return requestContext.getUriInfo().getRequestUri().toString();
        }
        @Override
        public String getRelativePath() {
            return requestContext.getUriInfo().getPath();
        }
        @Override
        public boolean isSecure() {
            return securityContext.isSecure();
--- a/adapters/oidc/servlet-oauth-client/src/main/java/org/keycloak/servlet/ServletOAuthClient.java
+++ b/adapters/oidc/servlet-oauth-client/src/main/java/org/keycloak/servlet/ServletOAuthClient.java
@ -218,6 +218,11 @@ public class ServletOAuthClient extends KeycloakDeploymentDelegateOAuthClient {
                    return servletRequest.getRequestURL().toString();
                }
                @Override
                public String getRelativePath() {
                    return servletRequest.getServletPath();
                }
                @Override
                public boolean isSecure() {
                    return servletRequest.isSecure();
--- a/adapters/oidc/spring-security/src/main/java/org/keycloak/adapters/springsecurity/facade/WrappedHttpServletRequest.java
+++ b/adapters/oidc/spring-security/src/main/java/org/keycloak/adapters/springsecurity/facade/WrappedHttpServletRequest.java
@ -70,6 +70,11 @@ class WrappedHttpServletRequest implements Request {
        return buf.toString();
    }
    @Override
    public String getRelativePath() {
        return request.getServletPath();
    }
    @Override
    public boolean isSecure() {
        return request.isSecure();
--- a/adapters/spi/adapter-spi/src/main/java/org/keycloak/adapters/spi/HttpFacade.java
+++ b/adapters/spi/adapter-spi/src/main/java/org/keycloak/adapters/spi/HttpFacade.java
@ -43,6 +43,13 @@ public interface HttpFacade {
         */
        String getURI();
        /**
         * Get the request relative path.
         *
         * @return the request relative path
         */
        String getRelativePath();
        /**
         * HTTPS?
         *
--- a/adapters/spi/jetty-adapter-spi/src/main/java/org/keycloak/adapters/jetty/spi/JettyHttpFacade.java
+++ b/adapters/spi/jetty-adapter-spi/src/main/java/org/keycloak/adapters/jetty/spi/JettyHttpFacade.java
@ -78,6 +78,11 @@ public class JettyHttpFacade implements HttpFacade {
            return buf.toString();
        }
        @Override
        public String getRelativePath() {
            return request.getServletPath();
        }
        @Override
        public String getFirstParam(String param) {
            return request.getParameter(param);
--- a/adapters/spi/servlet-adapter-spi/src/main/java/org/keycloak/adapters/servlet/ServletHttpFacade.java
+++ b/adapters/spi/servlet-adapter-spi/src/main/java/org/keycloak/adapters/servlet/ServletHttpFacade.java
@ -65,6 +65,11 @@ public class ServletHttpFacade implements HttpFacade {
            return buf.toString();
        }
        @Override
        public String getRelativePath() {
            return request.getServletPath();
        }
        @Override
        public boolean isSecure() {
            return request.isSecure();
--- a/adapters/spi/tomcat-adapter-spi/src/main/java/org/keycloak/adapters/tomcat/CatalinaHttpFacade.java
+++ b/adapters/spi/tomcat-adapter-spi/src/main/java/org/keycloak/adapters/tomcat/CatalinaHttpFacade.java
@ -78,6 +78,11 @@ public class CatalinaHttpFacade implements HttpFacade {
            return buf.toString();
        }
        @Override
        public String getRelativePath() {
            return request.getServletPath();
        }
        @Override
        public boolean isSecure() {
            return request.isSecure();
--- a/adapters/spi/undertow-adapter-spi/src/main/java/org/keycloak/adapters/undertow/UndertowHttpFacade.java
+++ b/adapters/spi/undertow-adapter-spi/src/main/java/org/keycloak/adapters/undertow/UndertowHttpFacade.java
@ -83,6 +83,11 @@ public class UndertowHttpFacade implements HttpFacade {
            return uriBuilder.build().toString();
        }
        @Override
        public String getRelativePath() {
            return exchange.getRelativePath();
        }
        @Override
        public boolean isSecure() {
            String protocol = exchange.getRequestScheme();
--- a/examples/demo-template/offline-access-app/src/main/java/org/keycloak/example/OfflineAccessPortalServlet.java
+++ b/examples/demo-template/offline-access-app/src/main/java/org/keycloak/example/OfflineAccessPortalServlet.java
@ -181,6 +181,11 @@ public class OfflineAccessPortalServlet extends HttpServlet {
                        return servletRequest.getRequestURL().toString();
                    }
                    @Override
                    public String getRelativePath() {
                        return servletRequest.getServletPath();
                    }
                    @Override
                    public boolean isSecure() {
                        return servletRequest.isSecure();