[
https://issues.apache.org/jira/browse/OFBIZ-3577?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Stefan Roggensack updated OFBIZ-3577:
-------------------------------------
Attachment: LoginWorker.java.patch
The requestst patch. Simple make a null check before use.
> LoginWorker.doBasicLogout does not check userLogin against null
> ---------------------------------------------------------------
>
> Key: OFBIZ-3577
> URL: https://issues.apache.org/jira/browse/OFBIZ-3577
> Project: OFBiz
> Issue Type: Bug
> Components: framework
> Affects Versions: SVN trunk
> Reporter: Stefan Roggensack
> Attachments: LoginWorker.java.patch
>
>
> The method org.ofbiz.webapp.control.LoginWorker.doBasicLogout is use
> userLogin without check for against null values.
> userLogin is the values of request.getSession().getAttribute("userLogin")
> (Line 568) in Line 589 this is value is used. For the use in Line 585 there
> is a null pointer test.
> This occurs when a user that is allready logout reloads the logout page.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
