Author: markt
Date: Thu Jan 17 14:30:39 2013
New Revision: 1434685
URL: http://svn.apache.org/viewvc?rev=1434685&view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=54438
Fix a regression in the fix for BZ 52953 that triggered an NPE when digested
passwords were used and an authentication attempt was made for a user that did
not exist in the realm.
Modified:
tomcat/trunk/java/org/apache/catalina/realm/RealmBase.java
Modified: tomcat/trunk/java/org/apache/catalina/realm/RealmBase.java
URL:
http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/catalina/realm/RealmBase.java?rev=1434685&r1=1434684&r2=1434685&view=diff
==============================================================================
--- tomcat/trunk/java/org/apache/catalina/realm/RealmBase.java (original)
+++ tomcat/trunk/java/org/apache/catalina/realm/RealmBase.java Thu Jan 17
14:30:39 2013
@@ -376,9 +376,10 @@ public abstract class RealmBase extends
String md5a2) {
// In digest auth, digests are always lower case
- String md5a1 = getDigest(username, realm).toLowerCase(Locale.ENGLISH);
+ String md5a1 = getDigest(username, realm);
if (md5a1 == null)
return null;
+ md5a1 = md5a1.toLowerCase(Locale.ENGLISH);
String serverDigestValue;
if (qop == null) {
serverDigestValue = md5a1 + ":" + nonce + ":" + md5a2;
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
