OF-866: Prevent "session not found" errors

Fixes a race condition by adding a newly authenticated session into the core routing table before removing it from the list of pre-authentication sessions.

OF-866: Prevent "session not found" errors
Fixes a race condition by adding a newly authenticated session into the core routing table before removing it from the list of pre-authentication sessions.
deedc43a · Tom Evans · c30b216a · deedc43a
Commit deedc43a authored Jan 26, 2015 by Tom Evans
Show whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

SessionManager.java src/java/org/jivesoftware/openfire/SessionManager.java +2 -2

No files found.
--- a/src/java/org/jivesoftware/openfire/SessionManager.java
+++ b/src/java/org/jivesoftware/openfire/SessionManager.java
@@ -548,10 +548,10 @@ public class SessionManager extends BasicModule implements ClusterEventListener
     * @param session the session that was authenticated.
     */
    public void addSession(LocalClientSession session) {
-        // Remove the pre-Authenticated session but remember to use the temporary ID as the key
-        localSessionManager.getPreAuthenticatedSessions().remove(session.getStreamID().toString());
        // Add session to the routing table (routing table will know session is not available yet)
        routingTable.addClientRoute(session.getAddress(), session);
+        // Remove the pre-Authenticated session but remember to use the temporary ID as the key
+        localSessionManager.getPreAuthenticatedSessions().remove(session.getStreamID().toString());
        SessionEventDispatcher.EventType event = session.getAuthToken().isAnonymous() ?
                SessionEventDispatcher.EventType.anonymous_session_created :
                SessionEventDispatcher.EventType.session_created;