[myq] Fixes a serious issue that could wipe out cookies across an ent…

…ire OH instance for bindings using the shared Jetty client (openhab#11343) Signed-off-by: Dan Cunningham <dan@digitaldan.com>
bosch-io · Oct 4, 2021 · 54bd934 · 54bd934
1 parent 3262424
commit 54bd934
Showing 1 changed file with 9 additions and 4 deletions.
diff --git a/...binding.myq/src/main/java/org/openhab/binding/myq/internal/handler/MyQAccountHandler.java b/...binding.myq/src/main/java/org/openhab/binding/myq/internal/handler/MyQAccountHandler.java
@@ -16,6 +16,7 @@
 
 import java.io.IOException;
 import java.io.UnsupportedEncodingException;
+import java.net.CookieStore;
 import java.net.HttpCookie;
 import java.net.URI;
 import java.net.URISyntaxException;
@@ -291,10 +292,14 @@ private synchronized void fetchData() {
      */
     private AccessTokenResponse login()
             throws InterruptedException, MyQCommunicationException, MyQAuthenticationException {
-        // make sure we have a fresh session
-        httpClient.getCookieStore().removeAll();
-
         try {
+            // make sure we have a fresh session
+            URI authUri = new URI(LOGIN_BASE_URL);
+            CookieStore store = httpClient.getCookieStore();
+            store.get(authUri).forEach(cookie -> {
+                store.remove(authUri, cookie);
+            });
+
             String codeVerifier = generateCodeVerifier();
 
             ContentResponse loginPageResponse = getLoginPage(codeVerifier);
@@ -328,7 +333,7 @@ private AccessTokenResponse login()
             }
             getOAuthService().importAccessTokenResponse(accessTokenResponse);
             return accessTokenResponse;
-        } catch (IOException | ExecutionException | TimeoutException | OAuthException e) {
+        } catch (IOException | ExecutionException | TimeoutException | OAuthException | URISyntaxException e) {
             throw new MyQCommunicationException(e.getMessage());
         }
     }