[CXF-6338] Reversed logic in AbstractJwtHandler#validateSignature - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.0.4
Fix Version/s: 3.1, 3.0.5
Component/s: JAX-RS Security
Labels:
None

Estimated Complexity:
Unknown

Description

The logic in the validateSignature method in org.apache.cxf.rs.security.oauth2.grants.jwt.AbstractJwtHandler is reversed - the method throws an OAuthServiceException when the signature is valid and doesn't throw an exception when the signature is not valid.

Attachments

Activity

People

Assignee:: Sergey Beryozkin

Reporter:: Jeffrey Samarziya

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 09/Apr/15 00:02

Updated:: 14/Oct/16 14:24

Resolved:: 09/Apr/15 10:16