0ct0pu5/fess
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

improve logging

Browse source
This commit is contained in:
Shinsuke Sugaya 2016-07-25 22:51:14 +09:00
parent 89d0a413d2
commit 20fabe3e78
1 changed files with 13 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
src/main/java/org/codelibs/fess/sso/oic/OpenIdConnectAuthenticator.java
View file

@ -100,9 +100,15 @@ public class OpenIdConnectAuthenticator implements SsoAuthenticator {
final TokenResponse tr = getTokenUrl(code);
final String[] jwt = ((String) tr.get("id_token")).split("\\.");
final byte[] jwtHeader = Base64.decodeBase64(jwt[0]);
final byte[] jwtClaim = Base64.decodeBase64(jwt[1]);
final byte[] jwtSigniture = Base64.decodeBase64(jwt[2]);
final String jwtHeader = new String(Base64.decodeBase64(jwt[0]), Constants.UTF_8_CHARSET);
final String jwtClaim = new String(Base64.decodeBase64(jwt[1]), Constants.UTF_8_CHARSET);
final String jwtSigniture = new String(Base64.decodeBase64(jwt[2]), Constants.UTF_8_CHARSET);
if (logger.isDebugEnabled()) {
logger.debug("jwtHeader: " + jwtHeader);
logger.debug("jwtClaim: " + jwtClaim);
logger.debug("jwtSigniture: " + jwtSigniture);
}
// TODO validate signiture
@ -111,11 +117,11 @@ public class OpenIdConnectAuthenticator implements SsoAuthenticator {
attributes.put("refreshtoken", tr.getRefreshToken() == null ? "null" : tr.getRefreshToken());
attributes.put("tokentype", tr.getTokenType());
attributes.put("expire", tr.getExpiresInSeconds());
attributes.put("jwtheader", new String(jwtHeader, Constants.UTF_8_CHARSET));
attributes.put("jwtclaim", new String(jwtClaim, Constants.UTF_8_CHARSET));
attributes.put("jwtsign", new String(jwtSigniture, Constants.UTF_8_CHARSET));
attributes.put("jwtheader", jwtHeader);
attributes.put("jwtclaim", jwtClaim);
attributes.put("jwtsign", jwtSigniture);
parseJwtClaim(new String(jwtClaim, Constants.UTF_8_CHARSET), attributes);
parseJwtClaim(jwtClaim, attributes);
return new OpenIdConnectLoginCredential(attributes);
} catch (final IOException e) {