Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Add Null Guard for Authorization Result

Josh Cummings 4 months ago
parent
a683a3a730
commit
7d6bdfedc8
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      web/src/main/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilter.java

+ 1 - 1
web/src/main/java/org/springframework/security/web/webauthn/registration/PublicKeyCredentialCreationOptionsFilter.java
View File 

@@ -105,7 +105,7 @@ public class PublicKeyCredentialCreationOptionsFilter extends OncePerRequestFilt
 
 		Supplier<SecurityContext> context = this.securityContextHolderStrategy.getDeferredContext();
 
 		Supplier<Authentication> authentication = () -> context.get().getAuthentication();
 
 		AuthorizationResult result = this.authorization.authorize(authentication, request);
 
-		if (!result.isGranted()) {
 
+		if (result == null || !result.isGranted()) {
 
 			response.setStatus(HttpServletResponse.SC_BAD_REQUEST);
 
 			return;
 
 		}