[
https://issues.apache.org/jira/browse/CXF-5275?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13765470#comment-13765470
]
mustafa commented on CXF-5275:
------------------------------
This was found in via JBossWS CXF so once we've pulled it in to JBoss and
tested I'll let you know if there's any issues. Thanks for the quick response
Colm.
> NullPointerException when using Kerberos Delegation
> ---------------------------------------------------
>
> Key: CXF-5275
> URL: https://issues.apache.org/jira/browse/CXF-5275
> Project: CXF
> Issue Type: Bug
> Components: Core
> Affects Versions: 2.6.6
> Reporter: mustafa
> Assignee: Colm O hEigeartaigh
> Fix For: 2.6.10
>
>
> We are on Jboss 6.1.0 the version of CXF is 2.6.6 and has a bug when
> delegation is used:
> AbstractSpnegoAuthSupplier (v 2.6.6) has this method call:
> [...]
> return getToken(delegatedCred == null ? authPolicy : null, context);
> [...]
> here if we have delegatedCred with a value the statment passes null to the
> method:
> private byte[] getToken(AuthorizationPolicy authPolicy,
> final GSSContext context) throws GSSException,
> LoginException {
>
> String contextName = authPolicy.getAuthorization();
> if (contextName == null) {
> contextName = "";
> }
>
> [...]
> }
> if authPolicy is null (our case) the method throws a NullPointerException.
> So I got the fixed AbstractSpnegoAuthSupplier and SpnegoAuthSupplier from cxf
> 2.7.1 copied/renamed in my project and programmatically set on HTTPConduit:
> [...]
> HTTPConduit http = (HTTPConduit) client.getConduit();
> http.setAuthorization(authorization);
> http.setAuthSupplier(new CustomSpnegoAuthSupplier());
> [...]
> And now it works fine.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
