Make retrieval of secret keys more robust

author Mathieu Baudier <mbaudier@argeo.org>

Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)

committer Mathieu Baudier <mbaudier@argeo.org>

Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)
author Mathieu Baudier <mbaudier@argeo.org>
Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)
committer Mathieu Baudier <mbaudier@argeo.org>
Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)
diff --git a/org.argeo.cms/src/org/argeo/cms/auth/CmsAuthUtils.java b/org.argeo.cms/src/org/argeo/cms/auth/CmsAuthUtils.java

index aa313ee0a954e6b2b1fa088f9c1881d9e093de72..e6c63a4de030edfed46be5a206b05643dd0e588d 100644 (file)
--- a/org.argeo.cms/src/org/argeo/cms/auth/CmsAuthUtils.java
+++ b/org.argeo.cms/src/org/argeo/cms/auth/CmsAuthUtils.java
@@ -145,7 +145,8 @@ class CmsAuthUtils {
                                                                 + " for existing CMS session " + cmsSession);
                                         }
                                         // keyring
-                                       subject.getPrivateCredentials().addAll(cmsSession.getSecretKeys());
+                                       if (cmsSession != null)
+                                               subject.getPrivateCredentials().addAll(cmsSession.getSecretKeys());
                                 } else {// anonymous
                                         if (cmsSession.getAuthorization().getName() != null) {
                                                 cmsSession.close();
author	Mathieu Baudier <mbaudier@argeo.org>
	Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)
committer	Mathieu Baudier <mbaudier@argeo.org>
	Wed, 7 Feb 2018 11:16:07 +0000 (12:16 +0100)