From 5ea0c9ffe83754ebc921dd0081162c5533aaf12d Mon Sep 17 00:00:00 2001
From: Michael Wechner <michael.wechner@wyona.com>
Date: Tue, 14 Nov 2017 20:23:35 +0100
Subject: [PATCH] also compare ID

---
 .../yanel/impl/resources/login/OAuth2CallbackResource.java  | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/resources/login/src/java/org/wyona/yanel/impl/resources/login/OAuth2CallbackResource.java b/src/resources/login/src/java/org/wyona/yanel/impl/resources/login/OAuth2CallbackResource.java
index b1c15fc75..db154b4c6 100644
--- a/src/resources/login/src/java/org/wyona/yanel/impl/resources/login/OAuth2CallbackResource.java
+++ b/src/resources/login/src/java/org/wyona/yanel/impl/resources/login/OAuth2CallbackResource.java
@@ -85,7 +85,11 @@ public View getView(String viewId) throws Exception {
             User user = null;
             if (getRealm().getIdentityManager().getUserManager().existsAlias(email)) {
                 String trueId = realm.getIdentityManager().getUserManager().getTrueId(userInfo.getEmail());
-                user = realm.getIdentityManager().getUserManager().getUser(trueId, true);
+                if (trueId.equals(userInfo.getId())) {
+                    user = realm.getIdentityManager().getUserManager().getUser(trueId, true);
+                } else {
+                    throw new Exception("E-Mail '" + email + "' exists as alias, but user IDs do not match!");
+                }
             } else {
                 log.warn("User '" + email + "' does not exist yet, hence create account and login user ...");