fix(jans-auth-server): npe - regression in token endpoint

Native SSO #2518 #2762
JanssenProject · Oct 28, 2022 · e4064a9 · e4064a9
1 parent c368a02
commit e4064a9
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/...-auth-server/server/src/main/java/io/jans/as/server/token/ws/rs/TokenExchangeService.java b/...-auth-server/server/src/main/java/io/jans/as/server/token/ws/rs/TokenExchangeService.java
@@ -173,10 +173,10 @@ public JSONObject processTokenExchange(String scope, Function<JsonWebResponse, V
     }
 
     public void putNewDeviceSecret(JSONObject jsonObj, String sessionDn, Client client, String scope) {
-        if (!scope.contains(ScopeConstants.DEVICE_SSO)) {
+        if (StringUtils.isBlank(scope) || !scope.contains(ScopeConstants.DEVICE_SSO)) {
             return;
         }
-        if (!ArrayUtils.contains(client.getGrantTypes(), GrantType.TOKEN_EXCHANGE)) {
+        if (client == null || !ArrayUtils.contains(client.getGrantTypes(), GrantType.TOKEN_EXCHANGE)) {
             log.debug("Skip device secret. Scope has {} value but client does not have Token Exchange Grant Type enabled ('urn:ietf:params:oauth:grant-type:token-exchange')", ScopeConstants.DEVICE_SSO);
             return;
         }