Skip to content

Commit b8f9789

Browse files
R-SandorR-Sandor
committed
ArrayIndexBound check
1 parent 48a719e commit b8f9789

1 file changed

Lines changed: 7 additions & 6 deletions

File tree

server/src/main/java/dev/findfirst/users/service/UserManagementService.java

Lines changed: 7 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -211,11 +211,12 @@ public SigninTokens signinUser(String authorization) throws NoUserFoundException
211211
String credentials = new String(credDecoded, StandardCharsets.UTF_8);
212212
// credentials = username:password
213213
final String[] values = credentials.split(":", 2);
214-
215-
User user = getUserByUsername(values[0]);
216-
final RefreshToken refreshToken = refreshTokenService.createRefreshToken(user);
217-
String jwt = generateTokenFromUser(user.getUserId());
218-
219-
return new SigninTokens(jwt, refreshToken.getToken());
214+
if (values.length == 2) {
215+
User user = getUserByUsername(values[0]);
216+
final RefreshToken refreshToken = refreshTokenService.createRefreshToken(user);
217+
String jwt = generateTokenFromUser(user.getUserId());
218+
return new SigninTokens(jwt, refreshToken.getToken());
219+
}
220+
throw new NoUserFoundException();
220221
}
221222
}

0 commit comments

Comments
 (0)