Mercurial > dive4elements > river
comparison gwt-client/src/main/java/org/dive4elements/river/client/server/auth/was/Authenticator.java @ 8839:2c8259176c46
Add configurable time tolerance to SAML ticket validation.
This allows e.g. to account for time skew between the ISP and
the server this servlet is run on.
| author | Tom Gottfried <tom@intevation.de> |
|---|---|
| date | Wed, 28 Jun 2017 20:09:53 +0200 |
| parents | ea9eef426962 |
| children | d6d5ca6d4af0 cfc0aab9947f |
comparison
equal
deleted
inserted
replaced
| 8838:1fa03f3c9d3d | 8839:2c8259176c46 |
|---|---|
| 62 return null; | 62 return null; |
| 63 } | 63 } |
| 64 else { | 64 else { |
| 65 String trustedKey = | 65 String trustedKey = |
| 66 (String)context.getInitParameter("saml-trusted-public-key"); | 66 (String)context.getInitParameter("saml-trusted-public-key"); |
| 67 String timeEpsilon = context.getInitParameter( | |
| 68 "saml-time-tolerance"); | |
| 67 return new Response(entity, username, password, features, | 69 return new Response(entity, username, password, features, |
| 68 context.getRealPath(trustedKey)); | 70 context.getRealPath(trustedKey), timeEpsilon); |
| 69 } | 71 } |
| 70 } | 72 } |
| 71 catch(GeneralSecurityException e) { | 73 catch(GeneralSecurityException e) { |
| 72 throw new AuthenticationException(e); | 74 throw new AuthenticationException(e); |
| 73 } | 75 } |