Skip to content

Commit 0c60f30

Browse files
zlamalpzlamalp
authored
Merge pull request #4038 from zlamalp/fix
fix(core): handle missing referer header
2 parents 00b936b + 23f36c8 commit 0c60f30

File tree

1 file changed

+6
-4
lines changed

1 file changed

+6
-4
lines changed

perun-core/src/main/java/cz/metacentrum/perun/core/blImpl/AuthzResolverBlImpl.java

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2599,10 +2599,12 @@ public static synchronized void refreshAuthz(PerunSession sess) {
25992599
Map<String, List<String>> appAllowedRoles = BeansUtils.getCoreConfig().getAppAllowedRoles();
26002600
for (String reg : appAllowedRoles.keySet()) {
26012601
Pattern pattern = Pattern.compile(reg);
2602-
if (pattern.matcher(sess.getPerunPrincipal().getReferer()).matches()) {
2603-
for (String role : roles.getRolesNames()) {
2604-
if (!appAllowedRoles.get(reg).contains(role)) {
2605-
roles.remove(role);
2602+
if (!isBlank(sess.getPerunPrincipal().getReferer())) {
2603+
if (pattern.matcher(sess.getPerunPrincipal().getReferer()).matches()) {
2604+
for (String role : roles.getRolesNames()) {
2605+
if (!appAllowedRoles.get(reg).contains(role)) {
2606+
roles.remove(role);
2607+
}
26062608
}
26072609
}
26082610
}

0 commit comments

Comments
 (0)