Ensure timestamp on clientSession is updated in AccountService when linking identity broker

2015-02-09 09:05:39 +01:00 · 2015-02-09 09:05:39 +01:00 · d523d7f202
commit d523d7f202
parent 988832e388
1 changed files with 2 additions and 3 deletions
--- a/services/src/main/java/org/keycloak/services/resources/AccountService.java
+++ b/services/src/main/java/org/keycloak/services/resources/AccountService.java
@ -679,11 +679,10 @@ public class AccountService {

                try {
                    ClientSessionModel clientSession = auth.getClientSession();
-                    clientSession.setAction(ClientSessionModel.Action.AUTHENTICATE);
+                    ClientSessionCode clientSessionCode = new ClientSessionCode(realm, clientSession);
+                    clientSessionCode.setAction(ClientSessionModel.Action.AUTHENTICATE);
                    clientSession.setRedirectUri(redirectUri);
                    clientSession.setNote(OpenIDConnect.STATE_PARAM, UUID.randomUUID().toString());
-                    clientSession.setNote(ClientSessionCode.ACTION_KEY, KeycloakModelUtils.generateCodeSecret());
-                    ClientSessionCode clientSessionCode = new ClientSessionCode(realm, clientSession);

                    URI url = UriBuilder.fromUri(this.uriInfo.getBaseUri())
                            .path(AuthenticationBrokerResource.class)