Bug 129672 - Timeout of user Session still results in null pointer error
Summary: Timeout of user Session still results in null pointer error
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Network
Classification: Retired
Component: RHN/R&D
Version: RHN Devel
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Jesus M. Rodriguez
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks: rhnMilestone1
TreeView+ depends on / blocked
 
Reported: 2004-08-11 18:53 UTC by Mike McCune
Modified: 2007-04-18 17:10 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2004-08-20 02:49:47 UTC
Embargoed:


Attachments (Terms of Use)

Description Mike McCune 2004-08-11 18:53:12 UTC
Bookmark a page specific to a User (for example:
http://localhost:8080/Addresses.do?uid=2266493) and let your session
timeout.

Then hit the URL again and you get:

[ServletException in:/WEB-INF/pages/addresses.jsp]
IllegalInvocationException calling aclOrgEntitlement
("org_entitlement(rhn_monitor)"): null'

Comment 1 Jesus M. Rodriguez 2004-08-19 22:26:12 UTC
The culprit is in the NavMenuTag.java file.  If the request attribute
"session" is null, we set the user to null.  Then we proceed to call
the AclGuard with a null user.  Bad idea.

Comment 2 Jesus M. Rodriguez 2004-08-20 02:46:43 UTC
Reassigning to jesusr

Comment 3 Jesus M. Rodriguez 2004-08-20 02:49:47 UTC
Fixed in Access.java.  Rather than fix the tag, I fixed the acl.  It
should return false if it can't access the user.


Note You need to log in before you can comment on or make changes to this bug.