[QUARKUS-3702] Improve the way HTTP authorizer logs exceptions - Red Hat Issue Tracker

Type: Bug
Resolution: Done-Errata
Priority: Major
Fix Version/s: 3.2.9.GA, 3.2.9.CR1
Affects Version/s: None
Component/s: team/eng
Labels:
- manual-test-coverage

Blocked:
False
Blocked Reason:
None
Ready:
False
Git Pull Request:
https://github.com/quarkusio/quarkus/pull/35987
[QE] How to address?:
---
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Fixes #35975.

The current verbose error reporting for the successful (OIDC) flows is not reported in all cases - I don't see it in my demos, but in any case, it makes sense to improve the way HTTP authorizer logs them. If it is an `AuthenticationFailedException` - report it means the challenge is required, and if it is `AuthenticationRedirectException` then report that it means the authentication is about to be completed (at that level we can't say `successful authentication` - while it is the case for OIDC, it might not be for some other cases)

links to

RHSA-2023:124640 Red Hat build of Quarkus 3.2.9 release and security update

Assignee:: Unassigned

Reporter:: Alexey Loubyansky

Tester:: Michal Vavrik

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/11/17 5:22 PM

Updated:: 2023/11/30 11:37 AM

Resolved:: 2023/11/30 11:37 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates