KEYCLOAK-2592 Set secure on OAuth_Token_Request_State cookie
This commit is contained in:
parent
bf38ec040f
commit
57b6ddbace
2 changed files with 10 additions and 0 deletions
8
core/src/main/java/org/keycloak/AbstractOAuthClient.java
Executable file → Normal file
8
core/src/main/java/org/keycloak/AbstractOAuthClient.java
Executable file → Normal file
|
@ -110,6 +110,14 @@ public class AbstractOAuthClient {
|
|||
this.publicClient = publicClient;
|
||||
}
|
||||
|
||||
public boolean isSecure() {
|
||||
return isSecure;
|
||||
}
|
||||
|
||||
public void setSecure(boolean secure) {
|
||||
isSecure = secure;
|
||||
}
|
||||
|
||||
public RelativeUrlsUsed getRelativeUrlsUsed() {
|
||||
return relativeUrlsUsed;
|
||||
}
|
||||
|
|
|
@ -177,6 +177,8 @@ public abstract class AbstractSecuredLocalService {
|
|||
|
||||
oauth.setClientId(client.getClientId());
|
||||
|
||||
oauth.setSecure(realm.getSslRequired().isRequired(clientConnection));
|
||||
|
||||
UriBuilder uriBuilder = UriBuilder.fromUri(getBaseRedirectUri()).path("login-redirect");
|
||||
|
||||
if (path != null) {
|
||||
|
|
Loading…
Reference in a new issue