ElytronSessionTokenStore#logoutHttpSessions() does not work as expected due to UNDERTOW-2159 (#16501)

Closes #16465
2023-01-19 19:52:29 +01:00 · 2023-01-19 19:52:29 +01:00 · 3b6dc5152e
commit 3b6dc5152e
parent 7d6e22bedd
1 changed files with 26 additions and 20 deletions
--- a/adapters/oidc/wildfly-elytron/src/main/java/org/keycloak/adapters/elytron/ElytronSessionTokenStore.java
+++ b/adapters/oidc/wildfly-elytron/src/main/java/org/keycloak/adapters/elytron/ElytronSessionTokenStore.java
@ -220,35 +220,41 @@ public class ElytronSessionTokenStore implements ElytronTokeStore, UserSessionMa
        HttpServerExchange exchange = ProtectedHttpServerExchange.class.cast(httpFacade.getScope(Scope.EXCHANGE).getAttachment(UNDERTOW_EXCHANGE)).getExchange();
        ServletRequestContext servletRequestContext = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY);
        SessionManager sessionManager = servletRequestContext.getDeployment().getSessionManager();
+        final boolean isDistributableSessionManager = sessionManager.getClass().getName().equals("org.wildfly.clustering.web.undertow.session.DistributableSessionManager");

        for (String id : ids) {
            // TODO: Workaround for WFLY-3345. Remove this once we fix KEYCLOAK-733. Same applies to legacy wildfly adapter.
-            Session session = sessionManager.getSession(null, new SessionConfig() {
+            Session session;
+            if (isDistributableSessionManager) {
+                session = sessionManager.getSession(exchange, new SessionConfig() {

-                @Override
-                public void setSessionId(HttpServerExchange exchange, String sessionId) {
-                }
+                    @Override
+                    public void setSessionId(HttpServerExchange exchange, String sessionId) {
+                    }

-                @Override
-                public void clearSession(HttpServerExchange exchange, String sessionId) {
-                }
+                    @Override
+                    public void clearSession(HttpServerExchange exchange, String sessionId) {
+                    }

-                @Override
-                public String findSessionId(HttpServerExchange exchange) {
-                    return id;
-                }
+                    @Override
+                    public String findSessionId(HttpServerExchange exchange) {
+                        return id;
+                    }

-                @Override
-                public SessionCookieSource sessionCookieSource(HttpServerExchange exchange) {
-                    return null;
-                }
+                    @Override
+                    public SessionCookieSource sessionCookieSource(HttpServerExchange exchange) {
+                        return null;
+                    }

-                @Override
-                public String rewriteUrl(String originalUrl, String sessionId) {
-                    return null;
-                }
+                    @Override
+                    public String rewriteUrl(String originalUrl, String sessionId) {
+                        return null;
+                    }

-            });
+                });
+            } else {
+                session = sessionManager.getSession(id);
+            }

            if (session != null) {
                session.invalidate(exchange);