Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

SEC-1820: Added null check for attributesToFetch in OpenID4JavaConsumer.

Luke Taylor 14 years ago
parent
4a000d040c
commit
a573e7b395
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      openid/src/main/java/org/springframework/security/openid/OpenID4JavaConsumer.java

+ 1 - 1
openid/src/main/java/org/springframework/security/openid/OpenID4JavaConsumer.java
View File 

@@ -195,7 +195,7 @@ public class OpenID4JavaConsumer implements OpenIDConsumer {
 
     List<OpenIDAttribute> fetchAxAttributes(Message authSuccess, List<OpenIDAttribute> attributesToFetch)
 
             throws OpenIDConsumerException {
 
 
-        if (!authSuccess.hasExtension(AxMessage.OPENID_NS_AX)) {
 
+        if (attributesToFetch == null || !authSuccess.hasExtension(AxMessage.OPENID_NS_AX)) {
 
             return Collections.emptyList();
 
         }