Uploaded image for project: 'camunda BPM'
  1. camunda BPM
  2. CAM-9725

Null check user in AuthenticationService in webapps

    XMLWordPrintable

    Details

      Description

      Steps to reproduce:

      1. Enable Container Based Authentication following [1]
      2. Open for example Cockpit in any browser

      Expected behavior:
      As a user I don't need to login and have access to Cockpit.

      Observed Behavior:
      The following NullPointerException is thrown:

      java.lang.NullPointerException
      	at org.camunda.bpm.webapp.impl.security.auth.AuthenticationService.createAuthenticate(AuthenticationService.java:58)
      	at org.camunda.bpm.webapp.impl.security.auth.ContainerBasedAuthenticationFilter.createAuthentication(ContainerBasedAuthenticationFilter.java:166)
      	at org.camunda.bpm.webapp.impl.security.auth.ContainerBasedAuthenticationFilter.doFilter(ContainerBasedAuthenticationFilter.java:104)
      ...
      

      Hints:

      • In [2] the user query returns no user.

      [1]: https://github.com/camunda-consulting/code/tree/master/snippets/springboot-security-sso
      [2]: https://github.com/camunda/camunda-bpm-webapp/blob/8a94016e312c1295b65681fb27028c104f7421b4/src/main/java/org/camunda/bpm/webapp/impl/security/auth/AuthenticationService.java#L57

        Attachments

          Activity

            People

            Assignee:
            yana.vasileva Yana Vasileva
            Reporter:
            roman.smirnov Smirnov Roman
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: