New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix AuthenticationRedirectException handling with disabled proactive security #29239
Fix AuthenticationRedirectException handling with disabled proactive security #29239
Conversation
47922b8
to
05fb968
Compare
@sberyozkin I am truly sorry I missed this scenario before; even now I have very hard time to reproduce this without the test mentioned above. Fix needs to be backported to 2.14 because of RR. |
This comment has been minimized.
This comment has been minimized.
05fb968
to
4885fa8
Compare
@michalvavrik Np, thanks for the PR, is |
@sberyozkin |
...ons/reactive-routes/runtime/src/main/java/io/quarkus/vertx/web/runtime/VertxWebRecorder.java
Show resolved
Hide resolved
extensions/vertx-http/runtime/src/main/java/io/quarkus/vertx/http/runtime/filters/Filter.java
Show resolved
Hide resolved
4885fa8
to
f5a6fa4
Compare
@michalvavrik Hi Michal, there is some test instability in this PR, they do not look like to be related but please rebase just in case |
@sberyozkin I was just doing it (literally :-D), 1.Windows is not related, JDK 17 should be re-run by someone who has right to re-trigger it (all I could do is push re-base or smth) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It looks good to me, but Michal, lets just wait till tomorrow, Stuart, @stuartwdouglas, please double check, thanks
Failing Jobs - Building f5a6fa4
Full information is available in the Build summary check run. Failures⚙️ JVM Tests - JDK 17 MacOS M1 #- Failing: integration-tests/kubernetes/maven-invoker-way integration-tests/mailer integration-tests/smallrye-opentracing and 1 more
📦 integration-tests/kubernetes/maven-invoker-way✖ 📦 integration-tests/mailer✖
📦 integration-tests/smallrye-opentracing✖
📦 integration-tests/spring-web✖
⚙️ Maven Tests - JDK 11 Windows #- Failing: integration-tests/maven
📦 integration-tests/maven✖
✖
✖
✖
✖
✖
✖
✖
✖
✖
✖
✖
✖
✖
|
Hey Sergey, I inspected failures and It looks like issue with concrete tests on MacOS and Windows to me, can't see any relation to the PR, but if you have any doubt at all, I can rebase PR on current main (it has been a day, maybe someone fixed it...). |
Hi @michalvavrik Thanks, and now that we have 2 approvals, lets merge :-) |
I'll add backport label as #29228 got backported and this fix is needed. |
This does not apply cleanly due to various conflicts. @michalvavrik could you check if we need to backport something else or if we need a specific PR for the backport? I plan to release 2.14.3.Final on Tuesday so we would need the situation sorted out (and merged in 2.14) by Monday evening. |
fixes
io.quarkus.it.keycloak.CodeFlowTest.testRPInitiatedLogout
; follow-up for #28539 and #29228Code flow fails at
testRPInitiatedLogout
as event is failed on HTTP route not created by RESTEasy classic (reactive would fail for same reason). I checked all usages of default auth failure handler and it's not used from failure route (invoked from within failure handler), therefore if event is failed, we can't call next (it would skip one failure handler) neither we can't call end() (as then failed event is never passed to failure handler). For that reason I removed ending event in default auth failure handler, which is de facto same as when default auth failure handler is null (nothing happens); the handler is nullable and always called like this:This PR: