Home Explore Help
Sign In
RONCC
/
Big-Data-HPC-Platform
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

HPCC-19119 Checking for signature should use isEmptyString

When checking a StringBuffer for the existence of a digital signature,
should is isEmptyString instead of  just checking for buffer ptr

Signed-off-by: Russ Whitehead <william.whitehead@lexisnexis.com>
Russ Whitehead 7 years ago
parent
19c7302ac3
commit
846b2ede4f
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      system/security/LdapSecurity/ldapsecurity.cpp
  2. 1 1
      system/security/plugins/htpasswdSecurity/htpasswdSecurity.cpp

+ 1 - 1
system/security/LdapSecurity/ldapsecurity.cpp
View File 

@@ -663,7 +663,7 @@ bool CLdapSecManager::authenticate(ISecUser* user)
 
         return true;
 
     }
 
 
-    if ((user->credentials().getSessionToken() != 0) || user->credentials().getSignature())//Already authenticated it token or signature exist
 
+    if ((user->credentials().getSessionToken() != 0) || !isEmptyString(user->credentials().getSignature()))//Already authenticated it token or signature exist
 
     {
 
         user->setAuthenticateStatus(AS_AUTHENTICATED);
 
         if(m_permissionsCache->isCacheEnabled() && !m_usercache_off)

+ 1 - 1
system/security/plugins/htpasswdSecurity/htpasswdSecurity.cpp
View File 

@@ -158,7 +158,7 @@ protected:
 
 		if (0 == user.length())
 
 			throw MakeStringException(-1, "htpasswd User name is NULL");
 
 
-        if (sec_user.credentials().getSessionToken() != 0  || sec_user.credentials().getSignature())//Already authenticated it token or signature exist
 
+        if (sec_user.credentials().getSessionToken() != 0  || !isEmptyString(sec_user.credentials().getSignature()))//Already authenticated it token or signature exist
 
 		    return true;
 
 
 		CriticalBlock block(crit);