KEYCLOAK-2592 Set secure on OAuth_Token_Request_State cookie

This commit is contained in:
Stian Thorgersen 2016-03-04 14:22:48 +01:00 committed by Bill Burke
parent 0519f0fed5
commit 4e0e4df630
2 changed files with 10 additions and 0 deletions

View file

@ -110,6 +110,14 @@ public class AbstractOAuthClient {
this.publicClient = publicClient; this.publicClient = publicClient;
} }
public boolean isSecure() {
return isSecure;
}
public void setSecure(boolean secure) {
isSecure = secure;
}
public RelativeUrlsUsed getRelativeUrlsUsed() { public RelativeUrlsUsed getRelativeUrlsUsed() {
return relativeUrlsUsed; return relativeUrlsUsed;
} }

View file

@ -177,6 +177,8 @@ public abstract class AbstractSecuredLocalService {
oauth.setClientId(client.getClientId()); oauth.setClientId(client.getClientId());
oauth.setSecure(realm.getSslRequired().isRequired(clientConnection));
UriBuilder uriBuilder = UriBuilder.fromUri(getBaseRedirectUri()).path("login-redirect"); UriBuilder uriBuilder = UriBuilder.fromUri(getBaseRedirectUri()).path("login-redirect");
if (path != null) { if (path != null) {