safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-09-06 21:27:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

GUAC-1364: Invalidate session after token has been invalidated.

Browse Source
This commit is contained in:
Michael Jumper
2015-10-16 12:00:15 -07:00
parent 6dc4adf6c9
commit c606d72c8a
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
guacamole/src/main/java/org/glyptodon/guacamole/net/basic/rest/RESTExceptionWrapper.java
View File

@@ -35,6 +35,7 @@ import org.glyptodon.guacamole.GuacamoleSecurityException;
import org.glyptodon.guacamole.GuacamoleUnauthorizedException;
import org.glyptodon.guacamole.net.auth.credentials.GuacamoleInsufficientCredentialsException;
import org.glyptodon.guacamole.net.auth.credentials.GuacamoleInvalidCredentialsException;
import org.glyptodon.guacamole.net.basic.GuacamoleSession;
import org.glyptodon.guacamole.net.basic.rest.auth.TokenSessionMap;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
@@ -177,8 +178,11 @@ public class RESTExceptionWrapper implements MethodInterceptor {
String token = getAuthenticationToken(invocation);
// If there is an associated auth token, invalidate it
if (token != null && tokenSessionMap.remove(token) != null)
logger.debug("Implicitly invalidated token \"{}\" due to GuacamoleUnauthorizedException.", token);
GuacamoleSession session = tokenSessionMap.remove(token);
if (session != null) {
session.invalidate();
logger.debug("Implicitly invalidated session for token \"{}\".", token);
}
// Continue with exception processing
throw e;