KEYCLOAK-88

Reset expiration on AccessCode before sending to application
2013-10-09 17:04:25 +01:00 · 2013-10-09 17:04:25 +01:00 · 5ccb557f7c
commit 5ccb557f7c
parent dfcf46b056
2 changed files with 2 additions and 0 deletions
--- a/services/src/main/java/org/keycloak/services/resources/AccountService.java
+++ b/services/src/main/java/org/keycloak/services/resources/AccountService.java
@ -296,6 +296,7 @@ public class AccountService {
            return Flows.forms(realm, request, uriInfo).setAccessCode(accessCode).setUser(user)
                    .forwardToAction(requiredActions.iterator().next());
        } else {
+            accessCode.setExpiration((System.currentTimeMillis() / 1000) + realm.getAccessCodeLifespan());
            return Flows.oauth(realm, request, uriInfo, authManager, tokenManager).redirectAccessCode(accessCode,
                    accessCode.getState(), accessCode.getRedirectUri());
        }
--- a/services/src/main/java/org/keycloak/services/resources/TokenService.java
+++ b/services/src/main/java/org/keycloak/services/resources/TokenService.java
@ -544,6 +544,7 @@ public class TokenService {
            return redirectAccessDenied(redirect, state);
        }

+        accessCodeEntry.setExpiration((System.currentTimeMillis() / 1000) + realm.getAccessCodeLifespan());
        return oauth.redirectAccessCode(accessCodeEntry, state, redirect);
    }