Merge pull request #1141 from dbarentine/master

[KEYCLOAK-1205] Fix BearerAuthFilter refreshing token
2015-04-15 11:09:26 +02:00 · 2015-04-15 11:09:26 +02:00 · 29ea24c8fb
commit 29ea24c8fb
parent 47da227809 4fe328002a
4 changed files with 16 additions and 6 deletions
--- a/integration/admin-client/src/main/java/org/keycloak/admin/client/Keycloak.java
+++ b/integration/admin-client/src/main/java/org/keycloak/admin/client/Keycloak.java
@ -26,7 +26,7 @@ public class Keycloak {

        target = client.target(config.getServerUrl());

-        target.register(new BearerAuthFilter(tokenManager.getAccessTokenString()));
+        target.register(new BearerAuthFilter(tokenManager));
    }

    public static Keycloak getInstance(String serverUrl, String realm, String username, String password, String clientId, String clientSecret){
--- a/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/BearerAuthFilter.java
+++ b/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/BearerAuthFilter.java
@ -1,5 +1,7 @@
 package org.keycloak.admin.client.resource;

+import org.keycloak.admin.client.token.TokenManager;
+
 import javax.ws.rs.client.ClientRequestContext;
 import javax.ws.rs.client.ClientRequestFilter;
 import javax.ws.rs.core.HttpHeaders;
@ -11,14 +13,23 @@ import java.io.IOException;
 public class BearerAuthFilter implements ClientRequestFilter {

    private final String tokenString;
+    private final TokenManager tokenManager;

    public BearerAuthFilter(String tokenString) {
        this.tokenString = tokenString;
+        this.tokenManager = null;
    }

+    public BearerAuthFilter(TokenManager tokenManager) {
+        this.tokenManager = tokenManager;
+        this.tokenString = null;
+    }
+
+
    @Override
    public void filter(ClientRequestContext requestContext) throws IOException {
-        String authHeader = "Bearer " + tokenString;
+        String authHeader = "Bearer " + (tokenManager != null ? tokenManager.getAccessTokenString() : tokenString);
+
        requestContext.getHeaders().add(HttpHeaders.AUTHORIZATION, authHeader);
    }

--- a/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/RoleMappingResource.java
+++ b/integration/admin-client/src/main/java/org/keycloak/admin/client/resource/RoleMappingResource.java
@ -22,7 +22,7 @@ public interface RoleMappingResource {
    @Path("realm")
    public RoleScopeResource realmLevel();

-    @Path("applications/{appName}")
-    public RoleScopeResource applicationLevel(@PathParam("appName") String appName);
+    @Path("clients/{clientId}")
+    public RoleScopeResource clientLevel(@PathParam("clientId") String clientId);

 }
--- a/integration/admin-client/src/main/java/org/keycloak/admin/client/token/TokenManager.java
+++ b/integration/admin-client/src/main/java/org/keycloak/admin/client/token/TokenManager.java
@ -66,8 +66,7 @@ public class TokenManager {

        Form form = new Form()
                .param("grant_type", "refresh_token")
-                .param("username", config.getUsername())
-                .param("password", config.getPassword());
+                .param("refresh_token", currentToken.getRefreshToken());

        if(config.isPublicClient()){
            form.param("client_id", config.getClientId());