From 84924c05b5fe642d1ceb8bc6e85887a36d1f4af5 Mon Sep 17 00:00:00 2001
From: William Enright <william.enright@savoirfairelinux.com>
Date: Fri, 11 Dec 2020 14:34:29 -0500
Subject: [PATCH] Fixed OCSP endpoint being blocked by api filter

Change-Id: Ib6b2d258777bc5b205b5199c136f003811213a25
---
 .../net/jami/jams/server/servlets/filters/ApiFilter.java     | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/jams-server/src/main/java/net/jami/jams/server/servlets/filters/ApiFilter.java b/jams-server/src/main/java/net/jami/jams/server/servlets/filters/ApiFilter.java
index 5d2384aa..da079d0f 100644
--- a/jams-server/src/main/java/net/jami/jams/server/servlets/filters/ApiFilter.java
+++ b/jams-server/src/main/java/net/jami/jams/server/servlets/filters/ApiFilter.java
@@ -56,9 +56,12 @@ public class ApiFilter implements Filter {
         } else {
             boolean authsuccess = false;
             boolean isLogin = false;
+            boolean isOCSPCheck = false;
+
             if (request.getServletPath().contains("login")) isLogin = true;
+            else if (request.getServletPath().contains("ocsp")) isOCSPCheck = true;
             else authsuccess = doAuthCheck(request);
-            if (authsuccess || isLogin) {
+            if (authsuccess || isLogin || isOCSPCheck) {
                 filterChain.doFilter(servletRequest, servletResponse);
             } else {
                 TomcatCustomErrorHandler.sendCustomError(response,401,"You are not authenticated!");
-- 
GitLab