oltu-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Stein Welberg (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (OLTU-138) Passing "Basic " as Authorization causes an ArrayIndexOutOfBoundsException
Date Thu, 06 Mar 2014 10:22:46 GMT

    [ https://issues.apache.org/jira/browse/OLTU-138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13922261#comment-13922261
] 

Stein Welberg commented on OLTU-138:
------------------------------------

Simone,

I'm afraid that it our trunk is affected by this issue. I already fixed it. :-)

> Passing "Basic " as Authorization causes an ArrayIndexOutOfBoundsException
> --------------------------------------------------------------------------
>
>                 Key: OLTU-138
>                 URL: https://issues.apache.org/jira/browse/OLTU-138
>             Project: Apache Oltu
>          Issue Type: Bug
>          Components: oauth2-common
>    Affects Versions: 0.31
>            Reporter: Ransom Briggs
>            Priority: Trivial
>
> I wrote some tests around my use of the oltu framework, and when I upgraded to 0.31 I
started getting an error when passing "Basic " as the Authorization parameter.  This happens
because there is no check on how many tokens Authorization is split into.  This is very low
priority as I cannot imagine this will be hit in production.
>         String[] tokens = authenticationHeader.split(" ");
>         // several lines of checking, then array out of bound happens here
>         if (tokens[1] != null && !"".equals(tokens[1])) {



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message