Add check for tokenRefreshed in JWTFilter

Fix related unit test as well.
hms-dbmi · Jul 26, 2024 · 149629f · 149629f
1 parent 339a407
commit 149629f
Show file tree

Hide file tree

Showing 2 changed files with 245 additions and 258 deletions.
diff --git a/pic-sure-api-war/src/main/java/edu/harvard/dbmi/avillach/security/JWTFilter.java b/pic-sure-api-war/src/main/java/edu/harvard/dbmi/avillach/security/JWTFilter.java
@@ -261,7 +261,7 @@ private AuthUser callTokenIntroEndpoint(ContainerRequestContext requestContext,
                 throw new NotAuthorizedException("Token invalid or expired");
             }
 
-            if (responseContent.get("tokenRefreshed").asBoolean()) {
+            if (responseContent.has("tokenRefreshed") && responseContent.get("tokenRefreshed").asBoolean()) {
                 requestContext.setProperty("refreshedToken", responseContent.get("token"));
             }