proper null check for client's preferred signature method

Justin Richer · Justin Richer · commit 897e4cbfedea · 2013-08-20T16:45:26.000-04:00
diff --git a/openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java b/openid-connect-server/src/main/java/org/mitre/openid/connect/token/ConnectTokenEnhancer.java
@@ -84,12 +84,9 @@ public OAuth2AccessToken enhance(OAuth2AccessToken accessToken,	OAuth2Authentica
 
 		claims.setJWTID(UUID.randomUUID().toString()); // set a random NONCE in the middle of it
 
-		JWSAlgorithm signingAlg; 
-		JWSAlgorithm clientAlg = client.getIdTokenSignedResponseAlg().getAlgorithm();
-		if (clientAlg != null) {
-			signingAlg = clientAlg;
-		} else {
-			signingAlg = jwtService.getDefaultSigningAlgorithm();
+		JWSAlgorithm signingAlg = jwtService.getDefaultSigningAlgorithm();
+		if (client.getIdTokenSignedResponseAlg() != null) {
+			signingAlg = client.getIdTokenSignedResponseAlg().getAlgorithm();
 		}
 		
 		SignedJWT signed = new SignedJWT(new JWSHeader(signingAlg), claims);
