KEYCLOAK-2731: Improve thread safety of TokenManager

This commit guards access to the non-final fields of TokenManager by its intrinsic lock.
2016-04-05 15:01:37 +02:00 · 2016-04-05 15:01:37 +02:00 · 804dd13abd
commit 804dd13abd
parent 0d6c72a378
1 changed files with 11 additions and 8 deletions
--- a/integration/admin-client/src/main/java/org/keycloak/admin/client/token/TokenManager.java
+++ b/integration/admin-client/src/main/java/org/keycloak/admin/client/token/TokenManager.java
@ -52,7 +52,7 @@ public class TokenManager {
        return getAccessToken().getToken();
    }

-    public AccessTokenResponse getAccessToken(){
+    public synchronized AccessTokenResponse getAccessToken(){
        if(currentToken == null){
            grantToken();
        }else if(tokenExpired()){
@ -78,9 +78,10 @@ public class TokenManager {
        TokenService tokenService = target.proxy(TokenService.class);

        int requestTime = Time.currentTime();
-        currentToken = tokenService.grantToken(config.getRealm(), form.asMap());
-        expirationTime = requestTime + currentToken.getExpiresIn();
-
+        synchronized (this) {
+            currentToken = tokenService.grantToken( config.getRealm(), form.asMap() );
+            expirationTime = requestTime + currentToken.getExpiresIn();
+        }
        return currentToken;
    }

@ -101,20 +102,22 @@ public class TokenManager {

        try {
            int requestTime = Time.currentTime();
-            currentToken = tokenService.refreshToken(config.getRealm(), form.asMap());
-            expirationTime = requestTime + currentToken.getExpiresIn();

+            synchronized (this) {
+                currentToken = tokenService.refreshToken( config.getRealm(), form.asMap() );
+                expirationTime = requestTime + currentToken.getExpiresIn();
+            }
            return currentToken;
        } catch (BadRequestException e) {
            return grantToken();
        }
    }

-    public void setMinTokenValidity(long minTokenValidity) {
+    public synchronized void setMinTokenValidity(long minTokenValidity) {
        this.minTokenValidity = minTokenValidity;
    }

-    private boolean tokenExpired() {
+    private synchronized boolean tokenExpired() {
        return (Time.currentTime() + minTokenValidity) >= expirationTime;
    }