Merge 492b5d1c76 into 5893ba5a8c

2026-05-12 16:39:20 +05:30 · 2026-05-12 16:39:20 +05:30 · a7cb341c3b
parent 5893ba5a8c 492b5d1c76
commit a7cb341c3b
1 changed files with 15 additions and 3 deletions
--- a/server/src/main/java/com/cloud/user/AccountManagerImpl.java
+++ b/server/src/main/java/com/cloud/user/AccountManagerImpl.java
@ -3202,7 +3202,7 @@ public class AccountManagerImpl extends ManagerBase implements AccountManager, M
        ApiKeyPair keyPair;
        if (accessingApiKey != null) {
            ApiKeyPair accessingKeyPair = apiKeyPairService.findByApiKey(accessingApiKey);
-            if (userId == accessingKeyPair.getUserId()) {
+            if (accessingKeyPair != null && userId == accessingKeyPair.getUserId()) {
                keyPair = apiKeyPairService.findByApiKey(accessingApiKey);
            } else {
                keyPair = _accountService.getLatestUserKeyPair(userId);
@ -3320,6 +3320,10 @@ public class AccountManagerImpl extends ManagerBase implements AccountManager, M
            return Boolean.TRUE;
        }
        ApiKeyPair accessingKeyPair = apiKeyPairService.findByApiKey(apiKey);
+        if (accessingKeyPair == null) {
+            logger.warn("Unable to find API key pair for the accessing API key: {}", apiKey);
+            return Boolean.TRUE;
+        }
        return isApiKeySupersetOfPermission(new ArrayList<>(getAllKeypairPermissions(accessingKeyPair.getApiKey())), new ArrayList<>(getAllKeypairPermissions(accessedKeyPair.getApiKey())));
    }

@ -3335,7 +3339,7 @@ public class AccountManagerImpl extends ManagerBase implements AccountManager, M
                return accessingApiKey;
            }
        } catch (NullPointerException e) {
-            logger.info("Accessing API through session.");
+            logger.info("Accessing API through session.", e);
        }
        return null;
    }
@ -3582,6 +3586,10 @@ public class AccountManagerImpl extends ManagerBase implements AccountManager, M
            throw new InvalidParameterValueException("API key not present in the request's URL and, thus, unable to fetch API key rules.");
        }
        ApiKeyPair apiKeyPair = keyPairManager.findByApiKey(apiKey);
+        if (apiKeyPair == null) {
+            logger.warn("Unable to find API key pair by API key: {}", apiKey);
+            return new ArrayList<>();
+        }
        Account account = _accountDao.findById(apiKeyPair.getAccountId());
        List<ApiKeyPairPermission> keyPairPermissions = keyPairManager.findAllPermissionsByKeyPairId(apiKeyPair.getId(), account.getRoleId());
        return new ArrayList<>(keyPairPermissions);
@ -3848,7 +3856,11 @@ public class AccountManagerImpl extends ManagerBase implements AccountManager, M
    @Override
    public UserAccount getUserByApiKey(String apiKey) {
        ApiKeyPairVO keyPair = apiKeyPairDao.findByApiKey(apiKey);
-        return userAccountDao.findById(keyPair.getUserId());
+        if (keyPair != null) {
+            return userAccountDao.findById(keyPair.getUserId());
+        }
+
+        return null;
    }

    @Override