Skip to content

Commit 54d8d89

Browse files
jricherjricher
committed
restricted access to /authorize to ROLE_USER accounts, closes mitreid-connect#892 
1 parent 22c05ec commit 54d8d89

File tree

2 files changed

+2
-0
lines changed

2 files changed

+2
-0
lines changed

openid-connect-server-webapp/src/main/webapp/WEB-INF/user-context.xml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -43,6 +43,7 @@
4343

4444
<security:http disable-url-rewriting="true" use-expressions="true">
4545
<security:form-login login-page="/login" authentication-failure-url="/login?error=failure" authentication-success-handler-ref="authenticationTimeStamper" />
46+
<security:intercept-url pattern="/authorize" access="hasRole('ROLE_USER')" />
4647
<security:intercept-url pattern="/**" access="permitAll" />
4748
<security:custom-filter ref="authRequestFilter" after="SECURITY_CONTEXT_FILTER" />
4849
<security:logout logout-url="/logout" />

uma-server-webapp/src/main/webapp/WEB-INF/user-context.xml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -125,6 +125,7 @@
125125

126126
<security:http disable-url-rewriting="true" use-expressions="true">
127127
<security:form-login login-page="/login" authentication-failure-url="/login?error=failure" authentication-success-handler-ref="authenticationTimeStamper" />
128+
<security:intercept-url pattern="/authorize" access="hasRole('ROLE_USER')" />
128129
<security:intercept-url pattern="/**" access="permitAll" />
129130
<security:custom-filter before="PRE_AUTH_FILTER" ref="externalAuthenticationFilter" />
130131
<security:custom-filter ref="authRequestFilter" after="SECURITY_CONTEXT_FILTER" />

0 commit comments

Comments
 (0)