[JBoss JIRA] (ELY-1272) Missing null checks in auth client lead to NPEs later on

Sunday, 2 July 2017



     [
https://issues.jboss.org/browse/ELY-1272?page=com.atlassian.jira.plugin.s...
]

Darran Lofthouse updated ELY-1272:
----------------------------------
    Fix Version/s: 1.1.0.CR3
                       (was: 1.1.0.CR2)


...
 Missing null checks in auth client lead to NPEs later on
 --------------------------------------------------------

                 Key: ELY-1272
                 URL: https://issues.jboss.org/browse/ELY-1272
             Project: WildFly Elytron
          Issue Type: Bug
          Components: API / SPI, Authentication Client
            Reporter: David Lloyd
            Assignee: Stuart Douglas
             Fix For: 1.1.0.CR3


 There are missing null checks in at least the following places:
 * The constructor of org.wildfly.security.auth.principal.NamePrincipal which should
require "name" to be non-null
 * The name argument to
org.wildfly.security.auth.client.AuthenticationConfiguration#useName
 In addition, the following places handle null wrongly:
 * org.wildfly.security.auth.client.AuthenticationConfiguration#useAuthorizationName
should check name for null, and if it is null, pass null in to useAuthorizationPrincipal


--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006