Skip to content
Snippets Groups Projects
Commit 4255957e authored by srosse's avatar srosse
Browse files

no-jira: reduce error message to info

parent befa4e9b
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
src/main/java/org/olat/login/oauth/spi/OpenIdConnectApi.java
+ 4
4
View file @ 4255957e
...@@ -103,21 +103,21 @@ public class OpenIdConnectApi extends DefaultApi20 { ...@@ -103,21 +103,21 @@ public class OpenIdConnectApi extends DefaultApi20 {
if(!oauthModule.getOpenIdConnectIFIssuer().equals(idJson.get("iss")) if(!oauthModule.getOpenIdConnectIFIssuer().equals(idJson.get("iss"))
|| !oauthModule.getOpenIdConnectIFIssuer().equals(accessJson.get("iss"))) { || !oauthModule.getOpenIdConnectIFIssuer().equals(accessJson.get("iss"))) {
allOk &= false; allOk &= false;
log.error("iss don't match issuer"); log.info("iss don't match issuer");
} }
if(!getApiKey().equals(idJson.get("aud"))) { if(!getApiKey().equals(idJson.get("aud"))) {
allOk &= false; allOk &= false;
log.error("aud don't match application key"); log.info("aud don't match application key");
} }
if(!oVerifier.getState().equals(oVerifier.getSessionState())) { if(!oVerifier.getState().equals(oVerifier.getSessionState())) {
allOk &= false; allOk &= false;
log.error("state doesn't match session state"); log.info("state doesn't match session state");
} }
if(!oVerifier.getSessionNonce().equals(idJson.get("nonce"))) { if(!oVerifier.getSessionNonce().equals(idJson.get("nonce"))) {
allOk &= false; allOk &= false;
log.error("session nonce don't match verifier nonce"); log.info("session nonce don't match verifier nonce");
} }
return allOk ? new OAuth2AccessToken(idToken, oVerifier.getState()) : null; return allOk ? new OAuth2AccessToken(idToken, oVerifier.getState()) : null;
......
src/main/java/org/olat/login/oauth/spi/OpenIdConnectFullConfigurableApi.java
+ 4
4
View file @ 4255957e
...@@ -100,22 +100,22 @@ public class OpenIdConnectFullConfigurableApi extends DefaultApi20 { ...@@ -100,22 +100,22 @@ public class OpenIdConnectFullConfigurableApi extends DefaultApi20 {
if(!provider.getIssuer().equals(idJson.get("iss")) if(!provider.getIssuer().equals(idJson.get("iss"))
|| !provider.getIssuer().equals(accessJson.get("iss"))) { || !provider.getIssuer().equals(accessJson.get("iss"))) {
allOk &= false; allOk &= false;
log.error("iss don't match issuer"); log.info("iss don't match issuer");
} }
if(!provider.getAppKey().equals(idJson.get("aud"))) { if(!provider.getAppKey().equals(idJson.get("aud"))) {
allOk &= false; allOk &= false;
log.error("aud don't match application key"); log.info("aud don't match application key");
} }
if(!oVerifier.getState().equals(oVerifier.getSessionState())) { if(!oVerifier.getState().equals(oVerifier.getSessionState())) {
allOk &= false; allOk &= false;
log.error("state doesn't match session state"); log.info("state doesn't match session state");
} }
if(!oVerifier.getSessionNonce().equals(idJson.get("nonce"))) { if(!oVerifier.getSessionNonce().equals(idJson.get("nonce"))) {
allOk &= false; allOk &= false;
log.error("session nonce don't match verifier nonce"); log.info("session nonce don't match verifier nonce");
} }
return allOk ? new OAuth2AccessToken(idToken, oVerifier.getState()) : null; return allOk ? new OAuth2AccessToken(idToken, oVerifier.getState()) : null;
} catch (JSONException e) { } catch (JSONException e) {
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment