[SYNCOPE-217] SyncopeUser.hasTokenExpired() can easily cause nullpointer exception - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 1.0.2-incubating
Fix Version/s: 1.0.3-incubating, 1.1.0
Component/s: core
Labels:
None

Description

public boolean hasTokenExpired() {
return tokenExpireTime.before(new Date());
}

should be changed to:

public boolean hasTokenExpired() {
return tokenExpireTime == null
? false
: tokenExpireTime.before(new Date());
}

A token set to null should never expire to be consistent with the behavior that a token will always be vaild valid (in checkToken method) if it is null.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SyncopeUser.java.patch
09/Oct/12 15:57
0.6 kB
Jan Bernhardt
SyncopeUser.java.patch
09/Oct/12 15:31
0.7 kB
Jan Bernhardt

Activity

People

Assignee:: Francesco Chicchiriccò

Reporter:: Jan Bernhardt

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 09/Oct/12 12:59

Updated:: 30/Oct/12 10:56

Resolved:: 09/Oct/12 16:00