Change check of token.getUsername() in doGetAuthenticationInfo by using StringUtils::isBlank instead of checking only null.

2026-05-24 09:38:26 +00:00 · 2016-07-13 12:39:33 +09:00 · 2016-07-13 12:39:33 +09:00 · c207b5e402
commit c207b5e402
parent 38683e17a3
1 changed files with 2 additions and 2 deletions
--- a/zeppelin-server/src/main/java/org/apache/zeppelin/realm/ZeppelinHubRealm.java
+++ b/zeppelin-server/src/main/java/org/apache/zeppelin/realm/ZeppelinHubRealm.java
@ -77,8 +77,8 @@ public class ZeppelinHubRealm extends AuthorizingRealm {
  protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken authToken)
      throws AuthenticationException {
    UsernamePasswordToken token = (UsernamePasswordToken) authToken;
-    if (token.getUsername() == null) {
-      throw new AccountException("Null usernames are not allowed by this realm.");
+    if (StringUtils.isBlank(token.getUsername())) {
+      throw new AccountException("Empty usernames are not allowed by this realm.");
    }
    String loginPayload = createLoginPayload(token.getUsername(), token.getPassword());
    User user = authenticateUser(loginPayload);