[39/50] git commit: updated refs/heads/master to 97ed5ff

Thu, 28 Aug 2014 10:58:52 -0700 

SAML2LogoutAPIAuthenticatorCmd: if session is null, redirect to login page

If session is null, probably logout (local) happened removing the name id and
session index which is needed for global logout. The limitation by design is 
that
local logout will void possibility of global logout. To globally logout, one
use the SLO api which would logout locally as well.

Signed-off-by: Rohit Yadav <rohit.ya...@shapeblue.com>


Project: http://git-wip-us.apache.org/repos/asf/cloudstack/repo
Commit: http://git-wip-us.apache.org/repos/asf/cloudstack/commit/0402f68b
Tree: http://git-wip-us.apache.org/repos/asf/cloudstack/tree/0402f68b
Diff: http://git-wip-us.apache.org/repos/asf/cloudstack/diff/0402f68b

Branch: refs/heads/master
Commit: 0402f68b127df1ae7bdb0b299e462711db8d8030
Parents: de4e74b
Author: Rohit Yadav <rohit.ya...@shapeblue.com>
Authored: Tue Aug 26 23:06:17 2014 +0200
Committer: Rohit Yadav <rohit.ya...@shapeblue.com>
Committed: Thu Aug 28 19:45:26 2014 +0200

----------------------------------------------------------------------
 .../api/command/SAML2LogoutAPIAuthenticatorCmd.java          | 8 ++++++++
 1 file changed, 8 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cloudstack/blob/0402f68b/plugins/user-authenticators/saml2/src/org/apache/cloudstack/api/command/SAML2LogoutAPIAuthenticatorCmd.java
----------------------------------------------------------------------
diff --git 
a/plugins/user-authenticators/saml2/src/org/apache/cloudstack/api/command/SAML2LogoutAPIAuthenticatorCmd.java
 
b/plugins/user-authenticators/saml2/src/org/apache/cloudstack/api/command/SAML2LogoutAPIAuthenticatorCmd.java
index 5b94766..4fa7fb3 100644
--- 
a/plugins/user-authenticators/saml2/src/org/apache/cloudstack/api/command/SAML2LogoutAPIAuthenticatorCmd.java
+++ 
b/plugins/user-authenticators/saml2/src/org/apache/cloudstack/api/command/SAML2LogoutAPIAuthenticatorCmd.java
@@ -90,6 +90,14 @@ public class SAML2LogoutAPIAuthenticatorCmd extends BaseCmd 
implements APIAuthen
         response.setResponseName(getCommandName());
         String responseString = 
ApiResponseSerializer.toSerializedString(response, responseType);
 
+        if (session == null) {
+            try {
+                
resp.sendRedirect(_configDao.getValue(Config.SAMLCloudStackRedirectionUrl.key()));
+            } catch (IOException ignored) {
+            }
+            return responseString;
+        }
+
         try {
             DefaultBootstrap.bootstrap();
         } catch (ConfigurationException | FactoryConfigurationError e) {

Reply via email to