From 5f9cb6c9700fecaea8f9ccfa6498610168a151e4 Mon Sep 17 00:00:00 2001
From: "konstantina.galouni" <kgalouni@di.uoa.gr>
Date: Sun, 14 Feb 2021 22:55:31 +0000
Subject: [PATCH] [Trunk | Authorization Library]: AuthorizationService.java:
 [Bug fix] Added "authentication.getPrincipal() instanceof User" check before
 casting authentication.getPrincipal() to User - if user is not logged in, it
 is String.

---
 .../uoaauthorizationlibrary/security/AuthorizationService.java  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/java/eu/dnetlib/uoaauthorizationlibrary/security/AuthorizationService.java b/src/main/java/eu/dnetlib/uoaauthorizationlibrary/security/AuthorizationService.java
index 41664b2..42bdda9 100644
--- a/src/main/java/eu/dnetlib/uoaauthorizationlibrary/security/AuthorizationService.java
+++ b/src/main/java/eu/dnetlib/uoaauthorizationlibrary/security/AuthorizationService.java
@@ -70,7 +70,7 @@ public class AuthorizationService {
 
     public String getAaiId() {
         Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
-        if (authentication != null) {
+        if (authentication != null && (authentication.getPrincipal() instanceof User)) {
             User user = (User) authentication.getPrincipal();
             return user.getPassword();
         }