oltu-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Simone Tripodi (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (OLTU-138) Passing "Basic " as Authorization causes an ArrayIndexOutOfBoundsException
Date Thu, 06 Mar 2014 09:22:43 GMT

    [ https://issues.apache.org/jira/browse/OLTU-138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13922197#comment-13922197
] 

Simone Tripodi commented on OLTU-138:
-------------------------------------

Thanks for reporting!
I have two kind favours to ask you:

 * can you verify if current trunk is affected by the same issue?

 * could you submit a testcase + patch?

TIA, all the best!

> Passing "Basic " as Authorization causes an ArrayIndexOutOfBoundsException
> --------------------------------------------------------------------------
>
>                 Key: OLTU-138
>                 URL: https://issues.apache.org/jira/browse/OLTU-138
>             Project: Apache Oltu
>          Issue Type: Bug
>          Components: oauth2-common
>    Affects Versions: 0.31
>            Reporter: Ransom Briggs
>            Priority: Trivial
>
> I wrote some tests around my use of the oltu framework, and when I upgraded to 0.31 I
started getting an error when passing "Basic " as the Authorization parameter.  This happens
because there is no check on how many tokens Authorization is split into.  This is very low
priority as I cannot imagine this will be hit in production.
>         String[] tokens = authenticationHeader.split(" ");
>         // several lines of checking, then array out of bound happens here
>         if (tokens[1] != null && !"".equals(tokens[1])) {



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message