Uploaded image for project: 'AMQ Streams'
  1. AMQ Streams
  2. ENTMQST-2636

OAuth NullPointerException when using 'keycloak' authorization with 'resource' permissions

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Done
    • 1.6.2.GA
    • 1.7.0.GA
    • None
    • None

    Description

      When using 'keycloak' authorization the NullPointerException would occur any time the resource would try to match the authorization grant that is a result of a matching 'resource' permissions.

      The reason is that a 'resource' permission results in a grant that contains no 'scopes' attribute. KeycloakRBACAuthorizer alway expects 'scopes' attribute, breaking whenever 'resource' permission based grants tries to be matched.

      With the fix, the grant without 'scopes' means that any action is granted on the resource as intended by Keycloak Authorization Services 'resource' permissions.

      Attachments

        Activity

          People

            marko.strukelj@gmail.com Marko Strukelj
            marko.strukelj@gmail.com Marko Strukelj
            Lukas Kral Lukas Kral
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: