<artifactId>encoder</artifactId>
<version>1.2.1</version>
</dependency>
- <dependency>
- <groupId>org.owasp.esapi</groupId>
- <artifactId>esapi</artifactId>
- <version>2.0.1</version>
- </dependency>
</dependencies>
<build>
import org.onap.aaf.cadi.register.Registrant;
import org.onap.aaf.cadi.register.RemoteRegistrant;
-import org.owasp.esapi.reference.DefaultHTTPUtilities;
-
public class AAF_FS extends AbsService<AuthzEnv, AuthzTrans> {
public AAF_FS(final AuthzEnv env) throws IOException, CadiException {
@Override
public void handle(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp) throws Exception {
trans.info().printf("Redirecting %s to HTTP/S %s", req.getRemoteAddr(), req.getLocalAddr());
- DefaultHTTPUtilities util = new DefaultHTTPUtilities();
- util.sendRedirect(url);
+ resp.sendRedirect(url);
}
};
<artifactId>encoder</artifactId>
<version>1.2.1</version>
</dependency>
- <dependency>
- <groupId>org.owasp.esapi</groupId>
- <artifactId>esapi</artifactId>
- <version>2.0.1</version>
- </dependency>
</dependencies>
import org.onap.aaf.misc.env.APIException;
import org.onap.aaf.misc.env.Env;
import org.onap.aaf.misc.env.TimeTaken;
-import org.owasp.esapi.errors.AccessControlException;
-import org.owasp.esapi.reference.DefaultHTTPUtilities;
import org.owasp.encoder.Encode;
public class API_AAFAccess {
});
}
- private static void redirect(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp, LocateFacade context, Locator<URI> loc, String path) throws IOException, AccessControlException {
+ private static void redirect(AuthzTrans trans, HttpServletRequest req, HttpServletResponse resp, LocateFacade context, Locator<URI> loc, String path) throws IOException {
try {
if (loc.hasItems()) {
Item item = loc.best();
redirectURL.append('?');
redirectURL.append(str);
}
- trans.info().log("Redirect to",redirectURL);
- DefaultHTTPUtilities util = new DefaultHTTPUtilities();
- util.sendRedirect(redirectURL.toString());
- //resp.sendRedirect(redirectURL.toString());
+ trans.info().log("Redirect to",redirectURL);
+ resp.sendRedirect(redirectURL.toString());
} else {
context.error(trans, resp, Result.err(Result.ERR_NotFound,"No Locations found for redirection"));
}