MaDgIK
/
authorization-library
13
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

[Trunk | Authorization Library]: 

AuthorizationService.java: [Bug fix] Added "authentication.getPrincipal() instanceof User" check before casting authentication.getPrincipal() to User - if user is not logged in, it is String.
This commit is contained in:
Konstantina Galouni 2021-02-14 22:55:31 +00:00
parent 89e87dea27
commit 5f9cb6c970
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/main/java/eu/dnetlib/uoaauthorizationlibrary/security/AuthorizationService.java
View File

@ -70,7 +70,7 @@ public class AuthorizationService {
public String getAaiId() { public String getAaiId() {
Authentication authentication = SecurityContextHolder.getContext().getAuthentication(); Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
if (authentication != null) { if (authentication != null && (authentication.getPrincipal() instanceof User)) {
User user = (User) authentication.getPrincipal(); User user = (User) authentication.getPrincipal();
return user.getPassword(); return user.getPassword();
} }