TitleNullPointerException in Upload when jspwiki security is off
Date12-Jan-2007 16:26:55 EET
Version2.4.87
Submitter83.138.0.70
Bug criticalityLightBug
Browser versionie, firefox
Bug statusNotReallyBug
PageProvider usedVersioningFileProvider
Servlet Containerresin 2.1.16
Operating Systemwin XP
URL
Java version1.4.2

Uploading a newer version of an attachtment while jspwiki.securiry=off results in a NullPointerException. Apparently a check is done for non-existent admin permissions.

The stacktrace is:

java.lang.NullPointerException
	at com.ecyrd.jspwiki.auth.AuthorizationManager.checkPermission(AuthorizationManager.java:160)
	at com.ecyrd.jspwiki.WikiContext.hasAdminPermissions(WikiContext.java:784)
	at com.ecyrd.jspwiki.attachment.AttachmentServlet.executeUpload(AttachmentServlet.java:611)
	at com.ecyrd.jspwiki.attachment.AttachmentServlet.upload(AttachmentServlet.java:545)
	at com.ecyrd.jspwiki.attachment.AttachmentServlet.doPost(AttachmentServlet.java:412)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:165)
	at com.ecyrd.jspwiki.dav.WebdavServlet.service(WebdavServlet.java:152)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:103)
	at com.caucho.server.http.FilterChainServlet.doFilter(FilterChainServlet.java:96)
	at com.ecyrd.jspwiki.ui.WikiServletFilter.doFilter(WikiServletFilter.java:99)
	at com.caucho.server.http.FilterChainFilter.doFilter(FilterChainFilter.java:88)


Setting JSPWiki's security to off is neither supported nor tested. We provided the option to help system administrators to get their wikis up and running, but not to be used in regular operations. This particular issue is not something we will investigate or fix.

--Andrew Jaquith, 13-Jan-2007

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-3) was last changed on 13-Jan-2007 05:45 by 76.19.8.139