libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions

[KEYCLOAK-6928] - Selecting first bearer if multiple values exists in authorization header

Browse source
This commit is contained in:
Pedro Igor 2018-09-28 12:44:13 -03:00
parent efe6a38648
commit 2da758ac86
1 changed files with 7 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/BearerTokenRequestAuthenticator.java
View file

@ -72,8 +72,13 @@ public class BearerTokenRequestAuthenticator {
for (String authHeader : authHeaders) { for (String authHeader : authHeaders) {
String[] split = authHeader.trim().split("\\s+"); String[] split = authHeader.trim().split("\\s+");
if (split == null || split.length != 2) continue; if (split == null || split.length != 2) continue;
if (!split[0].equalsIgnoreCase("Bearer")) continue; if (split[0].equalsIgnoreCase("Bearer")) {
tokenString = split[1]; tokenString = split[1];
if (log.isDebugEnabled()) {
log.debugf("Found [%s] values in authorization header, selecting the first value for Bearer.", authHeaders.size());
}
break;
};
} }
if (tokenString == null) { if (tokenString == null) {