soteria
soteria copied to clipboard
eclipse-ee4j
Soteria, a Jakarta Security implementation
This is to port the changes from https://github.com/eclipse-ee4j/soteria/issues/327 to the 3.0 branch.
Microsoft Entra returns the expires_in field as a string, not a number eg.: `{"token_type":"Bearer","expires_in":"3599", (...)}` That causes a ClassCastException (class org.eclipse.parsson.JsonStringImpl cannot be cast to class jakarta.json.JsonNumber) in https://github.com/eclipse-ee4j/soteria/blame/e5f82534696f4b108f512701092b316cbb86584d/impl/src/main/java/org/glassfish/soteria/mechanisms/OpenIdAuthenticationMechanism.java#L498 While...
I am trying to get the OIDC mechanism to work in a clustered wildfly (31) setup but it appears to be impossible at the moment: ``` 10:13:44,620 WARN [org.infinispan.PERSISTENCE] (default...
This is an alternative fix to https://github.com/eclipse-ee4j/soteria/pull/295 which has been open for a while and doesn't seem to be getting anywhere. The real change is in commit https://github.com/eclipse-ee4j/soteria/pull/374/commits/3566f78c2c0105cd74577acaf1e38a3285a50a84, the rest...
In line https://github.com/eclipse-ee4j/soteria/blob/master/impl/src/main/java/org/glassfish/soteria/mechanisms/OpenIdAuthenticationMechanism.java#L468 `logoutURI.toString()` is called what returns something like `org.jboss.resteasy.specimpl.ResteasyUriBuilderImpl@7de5465f`. Instead `logoutURI.build().toString()` should be called.
In WildFly this leads to WARN messages such as: ``` 15:20:20,039 WARN [org.jboss.resteasy.client.jaxrs.i18n] (Cleaner-0) RESTEASY004687: Closing a class org.jboss.resteasy.client.jaxrs.engines.ManualClosingApacheHttpClient43Engine$CleanupAction instance for you. Please close clients yourself. 15:20:20,040 WARN [org.jboss.resteasy.client.jaxrs.i18n] (Cleaner-0)...
The server implementation may wish to be a complete implementation but at the very least it will be desirable to provide custom implementations of CallerDetailsResolver and ResourceAccessResolver.
Bumps [h2](https://github.com/h2database/h2database) from 2.1.210 to 2.2.220. Release notes Sourced from h2's releases. Version 2.2.220 Changes since 2.1.214 release: ... (truncated) Commits 66185fb changelog adjustment f3c8222 version and release date 087522b...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Hi We tried to migrate from Soteria 2.0 to 3.0 and got an exception after successful authentication in our UI: ``` java.lang.IllegalArgumentException: Null callback handler! org.glassfish.soteria.mechanisms.jaspic.Jaspic.handleCallbacks(Jaspic.java:165) org.glassfish.soteria.mechanisms.jaspic.Jaspic.notifyContainerAboutLogin(Jaspic.java:157) org.glassfish.soteria.mechanisms.HttpMessageContextImpl.doNothing(HttpMessageContextImpl.java:235) org.glassfish.soteria.mechanisms.CustomFormAuthenticationMechanism.validateRequest(CustomFormAuthenticationMechanism.java:59) org.glassfish.soteria.mechanisms.CustomFormAuthenticationMechanism$Proxy$_$$_WeldSubclass.validateRequest$$super(Unknown...
Hi We tried to migrate from Soteria 2.0 to 3.0 and got an exception at runtime: ``` germes-admin-1 | Suppressed: org.jboss.weld.resources.spi.ResourceLoadingException: Error while loading class org.glassfish.soteria.mechanisms.openid.controller.AuthenticationController germes-admin-1 | at org.jboss.weld.resources.ClassTransformer.getBackedAnnotatedType(ClassTransformer.java:186)...