Inicio Explorar Axuda
Rexistro Iniciar sesión
github
/
spring-security
réplica de https://github.com/spring-projects/spring-security
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

SEC-187: Tidy up URL composition logic basedon default HTTP(S) ports.

Ben Alex %!s(int64=19) %!d(string=hai) anos
pai
307ac99ec5
achega
f6b7429947
Modificáronse 1 ficheiros con 4 adicións e 6 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 4 6
      core/src/main/java/org/acegisecurity/ui/webapp/AuthenticationProcessingFilterEntryPoint.java

+ 4 - 6
core/src/main/java/org/acegisecurity/ui/webapp/AuthenticationProcessingFilterEntryPoint.java
Ver ficheiro 

@@ -98,11 +98,9 @@ public class AuthenticationProcessingFilterEntryPoint
 
 
         boolean includePort = true;
 
 
-        if ("http".equals(scheme.toLowerCase()) && (serverPort == 80)) {
 
+        if (inHttp && (serverPort == 80)) {
 
             includePort = false;
 
-        }
 
-
 
-        if ("https".equals(scheme.toLowerCase()) && (serverPort == 443)) {
 
+        } else if (inHttps && (serverPort == 443)) {
 
             includePort = false;
 
         }
 
 
@@ -111,8 +109,8 @@ public class AuthenticationProcessingFilterEntryPoint
 
             + loginFormUrl;
 
 
         if (forceHttps && inHttp) {
 
-            Integer httpPort = new Integer(portResolver.getServerPort(request));
 
-            Integer httpsPort = (Integer) portMapper.lookupHttpsPort(httpPort);
 
+            Integer httpsPort = (Integer) portMapper.lookupHttpsPort(new Integer(
 
+                        serverPort));
 
 
             if (httpsPort != null) {
 
                 if (httpsPort.intValue() == 443) {