[jboss-jira] [JBoss JIRA] (WFLY-5958) NPE in principal-to-group group searching
Ondrej Lukas (JIRA)
issues at jboss.org
Fri Jan 8 03:55:00 EST 2016
Ondrej Lukas created WFLY-5958:
----------------------------------
Summary: NPE in principal-to-group group searching
Key: WFLY-5958
URL: https://issues.jboss.org/browse/WFLY-5958
Project: WildFly
Issue Type: Bug
Components: Domain Management, Security
Reporter: Ondrej Lukas
Assignee: Brian Stansberry
In case when ldap authorization with principal-to-group group searching is used in security realm and LDAP entry found by value of 'group-attribute' does not include attribute mentioned in 'group-name-attribute' then it causes authentication fail. It is caused by missing null check for groupNameAttr and hidden NPE thrown from [1].
[1] https://github.com/wildfly/wildfly-core/blob/18393273a1c9e464fb0cc959795118fd5a453904/domain-management/src/main/java/org/jboss/as/domain/management/security/LdapGroupSearcherFactory.java#L301
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list