Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-2533

Relative "auth-server-url"-property can be problematic for requests with params

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • None
    • None
    • None
    • Hide
      Show
      Configure the elytron-oidc-client with a relative "auth-server-url". Do a request with a query-param which needs an encoding (eg. space value).   http://host:4200/app/resources/domain?value=A%20Value

    Description

      A request with a query (or path?) param with a space in its value, leads to the following error:

       at java.base/java.net.URI.create(URI.java:903)
              at org.wildfly.security.elytron-http-oidc@2.0.0.Final//org.wildfly.security.http.oidc.OidcClientContext.getAuthServerBaseUrl(OidcClientContext.java:533)
              at org.wildfly.security.elytron-http-oidc@2.0.0.Final//org.wildfly.security.http.oidc.OidcClientContext.resolveUrls(OidcClientContext.java:97)

       

      At some point in the request chain, the url gets decoded. This seems to happen before OidcClientContext::getAuthServerBaseUrl is called and therefore leads to the mentioned error.

      Attachments

        Issue Links

          is related to

          Bug - A problem that impairs or prevents the functions of the product. WFLY-17486 ELY23045: Unable to create redirect response

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Open

          Activity

            People

              fjuma1@redhat.com Farah Juma
              lucaritzims Luca Ritz (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: