Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

quarkus-keycloak-authorization extension allow access to a protected resource #17222

Closed
pjgg opened this issue May 14, 2021 · 3 comments
Closed

quarkus-keycloak-authorization extension allow access to a protected resource #17222

pjgg opened this issue May 14, 2021 · 3 comments
Labels
area/kubernetes kind/bug Something isn't working triage/duplicate This issue or pull request already exists

Comments

@pjgg
Copy link
Contributor

pjgg commented May 14, 2021
edited
Loading

Describe the bug

Quarkus Version: 2.0.0.Alpha1, 2.0.0.Alpha2
Extension: quarkus-keycloak-authorization
Reproducer: over this project you can run the following command: mvn -B -V clean verify -fae -Dversion.quarkus=2.0.0.Alpha2 -pl app-metadata/deployment,app-metadata/runtime,common,security/keycloak-authz -Dts.authenticated-registry

Test: SecurityKeycloakAuthzOpenShiftTest:noUser_userResource

Keycloak properties: https://github.com/pjgg/quarkus-openshift-test-suite/blob/feat/upgrade_2x/security/keycloak-authz/src/test/resources/keycloak-realm.json

Test output:

[ERROR]   SecurityKeycloakAuthzOpenShiftTest>AbstractSecurityKeycloakAuthzOpenShiftTest.noUser_adminResource:112 1 expectation failed.
Expected status code <401> but was <200>.

[ERROR]   SecurityKeycloakAuthzOpenShiftTest>AbstractSecurityKeycloakAuthzOpenShiftTest.noUser_userResource:103 1 expectation failed.
Expected status code <401> but was <200>.

Explanation:

Resource /users is protected by Keycloak auth configuration and a query without credentials should return a 401 as Quarkus 1.13.2.Final

Note: work as expected over Quarkus 1.13.2.Final and lower versions.
@pjgg pjgg added the kind/bug Something isn't working label May 14, 2021
@quarkus-bot
Copy link

quarkus-bot bot commented May 14, 2021

/cc @geoand

@geoand
Copy link
Contributor

geoand commented May 14, 2021

cc @sberyozkin

@Sgitario
Copy link
Contributor

This issue is duplicated by #17164
cc @sberyozkin

@pjgg pjgg closed this as completed May 14, 2021
@geoand geoand added the triage/duplicate This issue or pull request already exists label May 14, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/kubernetes kind/bug Something isn't working triage/duplicate This issue or pull request already exists
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@pjgg @geoand @Sgitario