Commit 423887b

author

Fridolin Jackstadt

committed

Add timeout parameter to critical remote http call in mutex section

1 parent 6f1232c commit 423887bCopy full SHA for 423887b

File tree

1 file changed

+18

-1

lines changed

oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt
- NimbusJwtDecoder.java

1 file changed

+18

-1

lines changed

`‎oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/NimbusJwtDecoder.java`

Lines changed: 18 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -42,6 +42,7 @@`
`42`	`42`	`import com.nimbusds.jose.jwk.source.JWKSetSource;`
`43`	`43`	`import com.nimbusds.jose.jwk.source.JWKSource;`
`44`	`44`	`import com.nimbusds.jose.jwk.source.JWKSourceBuilder;`
	`45`	`+import com.nimbusds.jose.jwk.source.RemoteJWKSet;`
`45`	`46`	`import com.nimbusds.jose.proc.DefaultJOSEObjectTypeVerifier;`
`46`	`47`	`import com.nimbusds.jose.proc.JOSEObjectTypeVerifier;`
`47`	`48`	`import com.nimbusds.jose.proc.JWSKeySelector;`
`@@ -66,6 +67,7 @@`
`66`	`67`	`import org.springframework.http.MediaType;`
`67`	`68`	`import org.springframework.http.RequestEntity;`
`68`	`69`	`import org.springframework.http.ResponseEntity;`
	`70`	`+import org.springframework.http.client.SimpleClientHttpRequestFactory;`
`69`	`71`	`import org.springframework.security.oauth2.core.OAuth2Error;`
`70`	`72`	`import org.springframework.security.oauth2.core.OAuth2TokenValidator;`
`71`	`73`	`import org.springframework.security.oauth2.core.OAuth2TokenValidatorResult;`
`@@ -293,7 +295,7 @@ public static final class JwkSetUriJwtDecoderBuilder {`
`293`	`295`
`294`	`296`	`private final Set<SignatureAlgorithm> signatureAlgorithms = new HashSet<>();`
`295`	`297`
`296`		`- private RestOperations restOperations = new RestTemplate();`
	`298`	`+ private RestOperations restOperations = new RestTemplateWithTimeouts();`
`297`	`299`
`298`	`300`	`private Cache cache = new NoOpCache("default");`
`299`	`301`
`@@ -545,6 +547,21 @@ public void close() {`
`545`	`547`
`546`	`548`	`}`
`547`	`549`
	`550`	`+ /**`
	`551`	`+ * A RestTemplate with timeouts configured to avoid blocking indefinitely when`
	`552`	`+ * fetching JWK Sets while holding the reentrantLock.`
	`553`	`+ */`
	`554`	`+ private static final class RestTemplateWithTimeouts extends RestTemplate {`
	`555`	`+`
	`556`	`+ private RestTemplateWithTimeouts () {`
	`557`	`+ SimpleClientHttpRequestFactory requestFactory = new SimpleClientHttpRequestFactory();`
	`558`	`+ requestFactory.setConnectTimeout(RemoteJWKSet.DEFAULT_HTTP_CONNECT_TIMEOUT);`
	`559`	`+ requestFactory.setReadTimeout(RemoteJWKSet.DEFAULT_HTTP_READ_TIMEOUT);`
	`560`	`+ setRequestFactory(requestFactory);`
	`561`	`+ }`
	`562`	`+`
	`563`	`+ }`
	`564`	`+`
`548`	`565`	`/**`
`549`	`566`	`* A builder for creating {@link NimbusJwtDecoder} instances based on a public key.`
`550`	`567`	`*/`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit 423887b

File tree

1 file changed

1 file changed

`‎oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/NimbusJwtDecoder.java`

0 commit comments