From eff7a2c5048bbb80e05c1ab22fd529acb34377f4 Mon Sep 17 00:00:00 2001
From: Mike Derryberry <derryberry@mitre.org>
Date: Fri, 10 Aug 2012 10:56:22 -0400
Subject: [PATCH] changed nonce claim addition

---
 .../mitre/openid/connect/client/OIDCSignedRequestFilter.java   | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCSignedRequestFilter.java b/openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCSignedRequestFilter.java
index fa0225e7e..16d8598b1 100644
--- a/openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCSignedRequestFilter.java
+++ b/openid-connect-client/src/main/java/org/mitre/openid/connect/client/OIDCSignedRequestFilter.java
@@ -15,7 +15,6 @@ import javax.servlet.http.HttpServletResponse;
 import org.apache.commons.lang.StringUtils;
 import org.mitre.jwt.model.Jwt;
 import org.mitre.jwt.model.JwtClaims;
-import org.mitre.jwt.model.JwtHeader;
 import org.mitre.jwt.signer.service.JwtSigningAndValidationService;
 import org.mitre.openid.connect.config.OIDCServerConfiguration;
 import org.springframework.security.core.Authentication;
@@ -119,7 +118,7 @@ public class OIDCSignedRequestFilter extends AbstractOIDCAuthenticationFilter {
 		
 		response.addCookie(nonceCookie);
 		
-		claims.setClaim("nonce", response);
+		claims.setClaim("nonce", nonceCookie);
 		
 		try {
 			signingAndValidationService.signJwt(jwt);