Retrieve ClientConnection by invoking getConnection() instead of getC…

…ontextObject()

Closes #25231

(cherry picked from commit 0e535d2)

Signed-off-by: Fouad Almalki <me@fouad.io>
Co-authored-by: Fouad Almalki <me@fouad.io>

services/src/main/java/org/keycloak/protocol/oidc/grants/ciba/endpoints/AbstractCibaEndpoint.java

@@ -67,7 +67,7 @@ protected ClientModel authenticateClient() {
     }
 
     protected void checkSsl() {
-        ClientConnection clientConnection = session.getContext().getContextObject(ClientConnection.class);
+        ClientConnection clientConnection = session.getContext().getConnection();
         RealmModel realm = session.getContext().getRealm();
 
         if (!session.getContext().getUri().getBaseUri().getScheme().equals("https") && realm.getSslRequired().isRequired(clientConnection)) {

services/src/main/java/org/keycloak/protocol/oidc/par/endpoints/AbstractParEndpoint.java

@@ -48,7 +48,7 @@ public AbstractParEndpoint(KeycloakSession session, EventBuilder event) {
     }
 
     protected void checkSsl() {
-        ClientConnection clientConnection = session.getContext().getContextObject(ClientConnection.class);
+        ClientConnection clientConnection = session.getContext().getConnection();
 
         if (!session.getContext().getUri().getBaseUri().getScheme().equals("https") && realm.getSslRequired().isRequired(clientConnection)) {
             throw new CorsErrorResponseException(cors.allowAllOrigins(), OAuthErrorException.INVALID_REQUEST, "HTTPS required", Response.Status.FORBIDDEN);