Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-285

RelationshipManager allows null group to be added to identity. NullPointerException results upon subsequent access to user's groups

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • PLINK_2.5.3.Beta1
    • PLINK_2.5.2.FInal
    • None
    • None

    Description

            Group users = identityManager.lookupIdentityById(Group.class, "users");
      RelationshipManager relationshipManager = this.partitionManager.createRelationshipManager();
      BasicModel.addToGroup(relationshipManager, user, users);

      If 'users' is null, a null group will be added, which later causes problems checking authorizations:

      19:41:47,996 ERROR [org.apache.catalina.core.ContainerBase.[jboss.web].[default-host].[/redoculous-io].[default]] (http-localhost/127.0.0.1:8080-4) JBWEB000236: Servlet.service() for servlet default threw exception: java.lang.NullPointerException
	at org.picketlink.idm.model.basic.BasicModel.isMember(BasicModel.java:188) [picketlink-idm-api-2.5.1.Final.jar:]
	at org.ocpsoft.redoculous.io.security.AuthorizationChecker.isMember(AuthorizationChecker.java:46) [classes:]
	at org.ocpsoft.redoculous.io.rewrite.SecurityConfiguration$1.evaluate(SecurityConfiguration.java:45) [classes:]

      Relevant code:

      Attachments

        Activity

          People

            psilva@redhat.com Pedro Igor Craveiro
            lincolnthree Lincoln Baxter III (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: