[ https://issues.apache.org/jira/browse/OFBIZ-3577?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jacques Le Roux closed OFBIZ-3577. ---------------------------------- Resolution: Fixed Fix Version/s: SVN trunk Release Branch 9.04 Assignee: Jacques Le Roux Thanks Stefan, Your patch is in trunk at r928037, R9.04 at r928040 Actually it's was almost easier to do it by hand since I have to search where the file is :p. Normally we create patches from the root to easily patch. This is detailled [here|http://cwiki.apache.org/confluence/display/OFBADMIN/OFBiz+Contributors+Best+Practices] Also how do you reload the logout page when you are already logged out? I did not find an easy way to do that. > LoginWorker.doBasicLogout does not check userLogin against null > --------------------------------------------------------------- > > Key: OFBIZ-3577 > URL: https://issues.apache.org/jira/browse/OFBIZ-3577 > Project: OFBiz > Issue Type: Bug > Components: framework > Affects Versions: SVN trunk > Reporter: Stefan Roggensack > Assignee: Jacques Le Roux > Fix For: Release Branch 9.04, SVN trunk > > Attachments: LoginWorker.java.patch > > > The method org.ofbiz.webapp.control.LoginWorker.doBasicLogout is use > userLogin without check for against null values. > userLogin is the values of request.getSession().getAttribute("userLogin") > (Line 568) in Line 589 this is value is used. For the use in Line 585 there > is a null pointer test. > This occurs when a user that is allready logout reloads the logout page. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.