Add more OIDC debug messages and update the refresh token test #28130
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Here is another try at chasing the refresh token test failure but also it tries to improve the way the OIDC errors are logged, here is a summary of changes:
401
instead of200
, at least as far as OIDCCodeAuthenticationMechanism
is concerned it can be caused only byAuthenticationCompletionException
(as opposed toAuthenticationFailedException
which is a signal to challenge via a redirect, to authenticate in KC/etc) so I've updated the code to produce anerror
log messages in all such cases and updated/added error messageUni.createFrom().failure
instead ofthrow
where possibledebug
log messageCodeFlowTest#testTokenRefresh
- 3 tests in CodeFlowTest use thetenant-logout
configuration and the request URI ending withtenant-logout
, so it is hard to see in the build log which of these tests has produced which log messages, so I've updated this test to use a dedicatedtenant-refresh
tenant and URI space, and also decreased the frequency of the polling