[ https://issues.apache.org/jira/browse/OFBIZ-3577?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Stefan Roggensack updated OFBIZ-3577: ------------------------------------- Attachment: LoginWorker.java.patch The requestst patch. Simple make a null check before use. > LoginWorker.doBasicLogout does not check userLogin against null > --------------------------------------------------------------- > > Key: OFBIZ-3577 > URL: https://issues.apache.org/jira/browse/OFBIZ-3577 > Project: OFBiz > Issue Type: Bug > Components: framework > Affects Versions: SVN trunk > Reporter: Stefan Roggensack > Attachments: LoginWorker.java.patch > > > The method org.ofbiz.webapp.control.LoginWorker.doBasicLogout is use > userLogin without check for against null values. > userLogin is the values of request.getSession().getAttribute("userLogin") > (Line 568) in Line 589 this is value is used. For the use in Line 585 there > is a null pointer test. > This occurs when a user that is allready logout reloads the logout page. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.