From 4a853ec08fd337b5dda7f40c1de9cc73ada9eb13 Mon Sep 17 00:00:00 2001
From: khanhduytran0 <khanhduytran032@gmail.com>
Date: Wed, 18 Nov 2020 20:18:09 +0700
Subject: [PATCH] [Security fix] Avoid print access token to log

---
 app/src/main/java/net/kdt/pojavlaunch/utils/JREUtils.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/src/main/java/net/kdt/pojavlaunch/utils/JREUtils.java b/app/src/main/java/net/kdt/pojavlaunch/utils/JREUtils.java
index 7fd3e5af1..806ce5e67 100644
--- a/app/src/main/java/net/kdt/pojavlaunch/utils/JREUtils.java
+++ b/app/src/main/java/net/kdt/pojavlaunch/utils/JREUtils.java
@@ -116,8 +116,8 @@ public class JREUtils
                         // Avoid leaking access token to log by replace it.
                         // Also, Minecraft will just print it once.
                         if (checkAccessTokenLeak) {
-                            checkAccessTokenLeak = false;
                             if (accessToken != null && accessToken.length() > 5 && currStr.contains(accessToken)) {
+                                checkAccessTokenLeak = false;
                                 currStr = currStr.replace(accessToken, "ACCESS_TOKEN_HIDDEN");
                             }
                         }