From d346c4c2037592b4aba233b1940418fa64f2cbd2 Mon Sep 17 00:00:00 2001
From: James Muehlner <james.muehlner@guac-dev.org>
Date: Tue, 25 Jun 2013 10:55:17 -0700
Subject: [PATCH] Ticket #371: If the user is not found, throw a security
 excpetion.

---
 .../guacamole/net/basic/crud/permissions/List.java          | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/guacamole/src/main/java/net/sourceforge/guacamole/net/basic/crud/permissions/List.java b/guacamole/src/main/java/net/sourceforge/guacamole/net/basic/crud/permissions/List.java
index 15328436d..193a2d55c 100644
--- a/guacamole/src/main/java/net/sourceforge/guacamole/net/basic/crud/permissions/List.java
+++ b/guacamole/src/main/java/net/sourceforge/guacamole/net/basic/crud/permissions/List.java
@@ -116,12 +116,12 @@ public class List extends AuthenticatingHttpServlet {
 
                 // Get specific user
                 user = users.get(username);
-                if (user == null)
-                    throw new GuacamoleSecurityException("No such user.");
-
             }
             else
                 user = context.self();
+            
+            if (user == null)
+                throw new GuacamoleSecurityException("No such user.");
 
             // Write XML content type
             response.setHeader("Content-Type", "text/xml");