Calling HttpServletRequest.login
to perform servlet authentication in Undertow causes NPE
#26249
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
When trying to authenticate from a vaadin-flow application (undertow servlet) it causes a NPE in undertow.
Request for Comment
QuarkusIdentityManager
is an example implementation to try authentication viaIdentityProviderManager
using a username/password combination.Its possible to inject an alternative bean from your application by annotating it with
@Alternative
and@Priority
.Is there a better approach?
How to reproduce the NPE
Example project:
https://github.com/TFyre/quarkus-vaadin-flow
Run with:
mvn quarkus:dev
URL: http://127.0.0.1:8080
HttpServletRequest.login
The project is forked from https://github.com/vaadin/base-starter-flow-quarkus. Ive added
quarkus-security-jpa
to be able to use Vaadin Access (@RolesAllowed
/@AnonymousAllowed
) annotations on views.Credentials to login: admin / admin
Stacktrace