From 6ca3e0f1fb7444ff76c0584aa3d8bea17e93ef08 Mon Sep 17 00:00:00 2001
From: srosse <none@none>
Date: Tue, 27 Feb 2018 15:28:57 +0100
Subject: [PATCH] OO-3344: check the token with equals() method

---
 src/main/java/org/olat/admin/AdminModule.java | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/main/java/org/olat/admin/AdminModule.java b/src/main/java/org/olat/admin/AdminModule.java
index e04438f1aea..82f7767ab43 100644
--- a/src/main/java/org/olat/admin/AdminModule.java
+++ b/src/main/java/org/olat/admin/AdminModule.java
@@ -127,12 +127,11 @@ public class AdminModule extends AbstractSpringModule {
 		PropertyManager pm = PropertyManager.getInstance();
 		Property p = pm.findProperty(null, null, null, AdminModule.SYSTEM_PROPERTY_CATEGORY, tokenPropertyName);
 		String token = (p == null ? "" : p.getStringValue());
-		if (token.matches(submittedToken)) { // limit access to token
+		if (token.equals(submittedToken)) { // limit access to token
 			return true;
-		} else {
-			log.audit("Trying to set maintenance message using a wrong token. Remote address::" + request.getRemoteAddr());
-			return false;
 		}
+		log.audit("Trying to set maintenance message using a wrong token. Remote address::" + request.getRemoteAddr());
+		return false;
 	}
 	
 	/**
-- 
GitLab