You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Daniel Baumann (Jira)" <ji...@apache.org> on 2019/10/28 13:44:00 UTC

[jira] [Created] (CXF-8139) SecurityToken, parsing the lifetime may cause a NullPointerException

Daniel Baumann created CXF-8139:
-----------------------------------

             Summary: SecurityToken, parsing the lifetime may cause a NullPointerException
                 Key: CXF-8139
                 URL: https://issues.apache.org/jira/browse/CXF-8139
             Project: CXF
          Issue Type: Bug
          Components: STS
            Reporter: Daniel Baumann


According to [http://docs.oasis-open.org/ws-sx/ws-trust/200512/ws-trust-1.3-os.html] the wsu:Created and wsu:Expires are optional elements in /wst:RequestSecurityToken/wst:Lifetime.

When creating the org.apache.cxf.ws.security.tokenstore.SecurityToken using a lifetime Element where not both (created and expired) elements are set, a NullPointerException is thrown as there is no null-check on the child elements of the lifetime element.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)