Mercurial > dive4elements > river
comparison gwt-client/src/main/java/org/dive4elements/river/client/server/auth/was/Authenticator.java @ 8839:2c8259176c46
Add configurable time tolerance to SAML ticket validation.
This allows e.g. to account for time skew between the ISP and
the server this servlet is run on.
author | Tom Gottfried <tom@intevation.de> |
---|---|
date | Wed, 28 Jun 2017 20:09:53 +0200 |
parents | ea9eef426962 |
children | d6d5ca6d4af0 cfc0aab9947f |
comparison
equal
deleted
inserted
replaced
8838:1fa03f3c9d3d | 8839:2c8259176c46 |
---|---|
62 return null; | 62 return null; |
63 } | 63 } |
64 else { | 64 else { |
65 String trustedKey = | 65 String trustedKey = |
66 (String)context.getInitParameter("saml-trusted-public-key"); | 66 (String)context.getInitParameter("saml-trusted-public-key"); |
67 String timeEpsilon = context.getInitParameter( | |
68 "saml-time-tolerance"); | |
67 return new Response(entity, username, password, features, | 69 return new Response(entity, username, password, features, |
68 context.getRealPath(trustedKey)); | 70 context.getRealPath(trustedKey), timeEpsilon); |
69 } | 71 } |
70 } | 72 } |
71 catch(GeneralSecurityException e) { | 73 catch(GeneralSecurityException e) { |
72 throw new AuthenticationException(e); | 74 throw new AuthenticationException(e); |
73 } | 75 } |