commit | 3077275d227a45a606aecc77d28007d339c57cb6 | [log] [tgz] |
---|---|---|
author | Benjamin Marwell <bmarwell@apache.org> | Thu Aug 12 08:46:40 2021 +0200 |
committer | Benjamin Marwell <bmarwell@apache.org> | Fri Aug 13 12:47:58 2021 +0200 |
tree | 5f750f49421e3a7a328ea7a77a3191b60a847419 | |
parent | 0c0d9da2d81a4b24de6e02bc1c8a2ad1b5ef32d7 [diff] |
[SHIRO-678] only query parameters for sessionID if found - getParameters() will also parse the body, which in turn decodes the content. avoid calling this method unless we know the sessionID can be in the query part. - getQueryString() can return null. - refactor out one level of nesting
Apache Shiro is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. With Shiro’s easy-to-understand API, you can quickly and easily secure any application – from the smallest mobile applications to the largest web and enterprise applications.