GitHub-Spring
/
spring-boot
mirror of https://github.com/spring-projects/spring-boot.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Improve null-safety of module/spring-boot-cloudfoundry 

See gh-46926
pull/46973/head
Moritz Halbritter 4 months ago
parent
31a9958a06
commit
05ba546a09
1 changed files with 6 additions and 4 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 10
      module/spring-boot-cloudfoundry/src/main/java/org/springframework/boot/cloudfoundry/actuate/autoconfigure/endpoint/servlet/TokenValidator.java

10
module/spring-boot-cloudfoundry/src/main/java/org/springframework/boot/cloudfoundry/actuate/autoconfigure/endpoint/servlet/TokenValidator.java
Unescape View File

@ -70,14 +70,16 @@ class TokenValidator { @@ -70,14 +70,16 @@ class TokenValidator {
private void validateKeyIdAndSignature(Token token) {
String keyId = token.getKeyId();
if (this.tokenKeys == null || !hasValidKeyId(this.tokenKeys, keyId)) {
this.tokenKeys = this.securityService.fetchTokenKeys();
if (!hasValidKeyId(this.tokenKeys, keyId)) {
Map<String, String> tokenKeys = this.tokenKeys;
if (tokenKeys == null || !hasValidKeyId(tokenKeys, keyId)) {
tokenKeys = this.securityService.fetchTokenKeys();
if (!hasValidKeyId(tokenKeys, keyId)) {
throw new CloudFoundryAuthorizationException(Reason.INVALID_KEY_ID,
"Key Id present in token header does not match");
}
this.tokenKeys = tokenKeys;
}
String key = this.tokenKeys.get(keyId);
String key = tokenKeys.get(keyId);
Assert.state(key != null, "'key' must not be null");
if (!hasValidSignature(token, key)) {
throw new CloudFoundryAuthorizationException(Reason.INVALID_SIGNATURE,

Write Preview
Loading…
Cancel
Save