001/* 002 * (C) Copyright 2006-2013 Nuxeo SA (http://nuxeo.com/) and others. 003 * 004 * Licensed under the Apache License, Version 2.0 (the "License"); 005 * you may not use this file except in compliance with the License. 006 * You may obtain a copy of the License at 007 * 008 * http://www.apache.org/licenses/LICENSE-2.0 009 * 010 * Unless required by applicable law or agreed to in writing, software 011 * distributed under the License is distributed on an "AS IS" BASIS, 012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 013 * See the License for the specific language governing permissions and 014 * limitations under the License. 015 * 016 * Contributors: 017 * Nelson Silva <nelson.silva@inevo.pt> - initial API and implementation 018 * Nuxeo 019 */ 020 021package org.nuxeo.ecm.platform.oauth2.openid; 022 023import javax.servlet.http.HttpServletRequest; 024 025import org.nuxeo.ecm.platform.web.common.vh.VirtualHostHelper; 026 027/** 028 * Default RedirectUriResolver that allows overriding the redirect uri by setting a session attribute By default it will 029 * use a fixed redirect uri since some provider do not support wildcards 030 * 031 * @since 5.7 032 */ 033public class RedirectUriResolverHelper implements RedirectUriResolver { 034 035 public static final String REDIRECT_URI_SESSION_ATTRIBUTE = "OPENID_REDIRECT_URI"; 036 037 @Override 038 public String getRedirectUri(OpenIDConnectProvider openIDConnectProvider, HttpServletRequest request) { 039 String redirectUri = (String) request.getSession().getAttribute(REDIRECT_URI_SESSION_ATTRIBUTE); 040 // TODO - Use the requestedUrl for providers with support for wildcards 041 // String requestedUrl = request.getParameter(NXAuthConstants.REQUESTED_URL); 042 if (redirectUri == null) { 043 redirectUri = VirtualHostHelper.getBaseURL(request) + "nxstartup.faces?" + "" + "provider=" 044 + openIDConnectProvider.oauth2Provider.getServiceName() + "&forceAnonymousLogin=true"; 045 } 046 return redirectUri; 047 } 048 049}