Commit 47f4f26a authored by Matija Obreza's avatar Matija Obreza
Browse files

Merge branch 'oauth-client-origin-check-updates' into 'master'

OAuthClientOriginCheckFilter: extra Origin header check

See merge request genesys-pgr/application-blocks!81
parents 7ba4c203 0f294763
......@@ -120,6 +120,14 @@ public class OAuthClientOriginCheckFilter extends OncePerRequestFilter {
logger.info("No origin/referrer match: " + reqOrigin + " or " + reqReferrer + " in " + allowedOrigins.toString());
}
return false;
} else {
if (reqOrigin != null || reqReferrer != null) {
if (logger.isInfoEnabled()) {
logger.info(clientId + " may not be used from browsers. Denying.");
}
return false;
}
return true;
}
} catch (ExecutionException e) {
logger.warn("Error loading client origins", e);
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment