[Fix] Handle null authorization
This commit is contained in:
parent
fc5000d00f
commit
4f52c1852f
|
@ -155,7 +155,7 @@ public class AuthenticationRequestFilter implements ContainerRequestFilter {
|
||||||
protected Certificate validateSession(ContainerRequestContext requestContext, String remoteIp) {
|
protected Certificate validateSession(ContainerRequestContext requestContext, String remoteIp) {
|
||||||
|
|
||||||
String authorization = requestContext.getHeaderString(HttpHeaders.AUTHORIZATION);
|
String authorization = requestContext.getHeaderString(HttpHeaders.AUTHORIZATION);
|
||||||
authorization = authorization.trim();
|
authorization = authorization == null ? "" : authorization.trim();
|
||||||
|
|
||||||
if (isEmpty(authorization) || (authorization.startsWith("Basic ") && !getRestful().isBasicAuthEnabled())) {
|
if (isEmpty(authorization) || (authorization.startsWith("Basic ") && !getRestful().isBasicAuthEnabled())) {
|
||||||
return validateCookie(requestContext, remoteIp);
|
return validateCookie(requestContext, remoteIp);
|
||||||
|
|
Loading…
Reference in New Issue