Eclipse
/
jetty.project
mirror of https://github.com/jetty/jetty.project.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Issue #6205 - Fix serialization issues in OpenIdAuthenticator 

Signed-off-by: Lachlan Roberts <lachlan@webtide.com>
This commit is contained in:
Lachlan Roberts 2021-05-13 00:53:35 +10:00 committed by Simone Bordet
parent 2e7f5ebd2b
commit 9cb93432b3
1 changed files with 19 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
jetty-openid/src/main/java/org/eclipse/jetty/security/openid/OpenIdAuthenticator.java
View File

@ -526,22 +526,30 @@ public class OpenIdAuthenticator extends LoginAuthenticator
Map<String, UriRedirectInfo> csrfMap = (Map<String, UriRedirectInfo>)session.getAttribute(CSRF_MAP); Map<String, UriRedirectInfo> csrfMap = (Map<String, UriRedirectInfo>)session.getAttribute(CSRF_MAP);
if (csrfMap == null) if (csrfMap == null)
{ {
// Create a custom Map so we can only have a limited number of request URIs saved. csrfMap = new MRUMap(64);
csrfMap = new LinkedHashMap<String, UriRedirectInfo>()
{
private static final int MAX_SIZE = 64;
@Override
protected boolean removeEldestEntry(Map.Entry<String, UriRedirectInfo> eldest)
{
return size() > MAX_SIZE;
}
};
session.setAttribute(CSRF_MAP, csrfMap); session.setAttribute(CSRF_MAP, csrfMap);
} }
return csrfMap; return csrfMap;
} }
private static class MRUMap extends LinkedHashMap<String, UriRedirectInfo>
{
private static final long serialVersionUID = 5375723072014233L;
private final int _size;
private MRUMap(int size)
{
_size = size;
}
@Override
protected boolean removeEldestEntry(Map.Entry<String, UriRedirectInfo> eldest)
{
return size() > _size;
}
}
private static class UriRedirectInfo implements Serializable private static class UriRedirectInfo implements Serializable
{ {
private static final long serialVersionUID = 139567755844461433L; private static final long serialVersionUID = 139567755844461433L;