Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-1272

Missing null checks in auth client lead to NPEs later on

    XMLWordPrintable

Details

    Description

      There are missing null checks in at least the following places:

      • The constructor of org.wildfly.security.auth.principal.NamePrincipal which should require "name" to be non-null
      • The name argument to org.wildfly.security.auth.client.AuthenticationConfiguration#useName

      In addition, the following places handle null wrongly:

      • org.wildfly.security.auth.client.AuthenticationConfiguration#useAuthorizationName should check name for null, and if it is null, pass null in to useAuthorizationPrincipal

      Attachments

        Issue Links

          is related to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-11822 Second remote EJB client connection prevents server from shutting down (Elytron, Remoting)

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Verified

          Activity

            People

              sdouglas1@redhat.com Stuart Douglas
              dlloyd@redhat.com David Lloyd
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: