[
https://issues.jboss.org/browse/WFLY-9902?page=com.atlassian.jira.plugin....
]
Sergey Beryozkin updated WFLY-9902:
-----------------------------------
Description:
If a principal is created with the roles set to null then NPE is reported back to the user
during the authentication process:
{noformat}
java.lang.RuntimeException: java.lang.NullPointerException
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verifyCredential(JAASIdentityManagerImpl.java:140)
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verify(JAASIdentityManagerImpl.java:94)
at
io.undertow.security.impl.BasicAuthenticationMechanism.authenticate(BasicAuthenticationMechanism.java:167)
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.transition(SecurityContextImpl.java:245)
....
Caused by: java.lang.NullPointerException
at org.jboss.security.identity.plugins.SimpleRole.hashCode(SimpleRole.java:106)
{noformat}
was:
If a principal is created with the roles set to null then NPE is is reported during the
authentication process:
{noformat}
java.lang.RuntimeException: java.lang.NullPointerException
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verifyCredential(JAASIdentityManagerImpl.java:140)
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verify(JAASIdentityManagerImpl.java:94)
at
io.undertow.security.impl.BasicAuthenticationMechanism.authenticate(BasicAuthenticationMechanism.java:167)
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.transition(SecurityContextImpl.java:245)
....
Caused by: java.lang.NullPointerException
at org.jboss.security.identity.plugins.SimpleRole.hashCode(SimpleRole.java:106)
{noformat}
SimpleRole.hashCode NPE when a principal has the roles set to null
------------------------------------------------------------------
Key: WFLY-9902
URL:
https://issues.jboss.org/browse/WFLY-9902
Project: WildFly
Issue Type: Bug
Components: Security
Environment: Wild Fly Swarm 2018.2.0
Reporter: Sergey Beryozkin
Assignee: Darran Lofthouse
Priority: Minor
If a principal is created with the roles set to null then NPE is reported back to the
user during the authentication process:
{noformat}
java.lang.RuntimeException: java.lang.NullPointerException
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verifyCredential(JAASIdentityManagerImpl.java:140)
at
org.wildfly.extension.undertow.security.JAASIdentityManagerImpl.verify(JAASIdentityManagerImpl.java:94)
at
io.undertow.security.impl.BasicAuthenticationMechanism.authenticate(BasicAuthenticationMechanism.java:167)
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.transition(SecurityContextImpl.java:245)
....
Caused by: java.lang.NullPointerException
at org.jboss.security.identity.plugins.SimpleRole.hashCode(SimpleRole.java:106)
{noformat}
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)