137,138c137
<                             def originalRequestParams = [controller: controllerName, action: actionName? actionName : 'index']
<                             originalRequestParams.putAll(params)
---
>                             def originalRequestParams = [controller: controllerName, action: actionName? actionName : 'index']                            originalRequestParams.putAll(params)
273c272
<                     if (!session.principalGroups?.containsAll(requireAuthorization)) {
---
>                     if (session.principalGroups && !session.principalGroups.containsAll(requireAuthorization)) {