-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
@RoleAllowed Issue with Reactive Routes #4544
Comments
Possibly related to #3049 |
@stuartwdouglas Hi Stuart; should adding |
Hi @KelvinBT just a quick question, is it only with the reactive routes that you see this issue ? Or with some 'plain' JAX-RS endpoint as well ? (I'll confirm anyway, but if you've already tried, let me know please) |
This can be solved with the new HTTP permission layer on 0.25:
|
Sorry for late reply,
Thanks @stuartwdouglas It fixed the issue but we ran into new issue. I created a route with @permitAll:
Expected Behavior: This affect both JAX-RS and Reactive Routes on 0.25.0 with
in application.properties |
Describe the bug
Vert.x route always accessible instead of throw unauthorized exception ( 401 ) If I send a request without a bearer token.
Expected behavior
Quarkus must throw unauthorized exception 401 if the request doesn't came with the bearer token
Actual behavior
The request without bearer token is accepted without throw unauthorized 401.
To Reproduce
UserRoutes.class
So as I do to the class above. I have the endpoint :
I assume my client is
master
http://localhost:8080/v1/clients/master/users
first I send a request with a bearer token :
Then this is result in my quarkus log :
The result on web browser is
[ ]
(I forced it to empty collections )Timeline with insomnia :
then I send another request with no authentication to that endpoint:
then nothing show in the logs console and the result on the web browser is
[ ]
Timeline with insomnia :
the quarkus settings in my pom.xml :
Configuration
Environment (please complete the following information):
uname -a
orver
:Darwin Kevins-MacBook-Pro.local 19.0.0 Darwin Kernel Version 19.0.0: Wed Sep 25 20:18:50 PDT 2019; root:xnu-6153.11.26~2/RELEASE_X86_64 x86_64
java -version
:openjdk version "1.8.0_212" OpenJDK Runtime Environment Corretto-8.212.04.2 (build 1.8.0_212-b04) OpenJDK 64-Bit Server VM Corretto-8.212.04.2 (build 25.212-b04, mixed mode)
None
0.24.0
Thanks and Sorry about my English.
Kevins
The text was updated successfully, but these errors were encountered: