Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-16736

RealmFailedAuthenticationEvent triggered during successful http programmatic login

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • 26.1.1.Final
    • Security
    • None
    • Hide

      Install a custom realm with a suitable implementation of handleRealmEvent

      create a servlet that initiates authentication by calling login on the HttpServletRequest

      perform a successful authentication

      note the events delivered to the custom realm.

       

      Show
      Install a custom realm with a suitable implementation of handleRealmEvent create a servlet that initiates authentication by calling login on the HttpServletRequest perform a successful authentication note the events delivered to the custom realm.  
    • ---
    • ---

      After successful authentication during a call to HttpServletRequest.login(username,password) the SecurityRealm receives a 

      org.wildfly.security.auth.server.event.RealmFailedAuthenticationEvent

      This appears to be due to org.wildfly.security.http.HttpAuthenticator.login not calling succeed() on the ServerAuthenticationContext.

      adding 

      authenticationContext.succeed();

      to the login method prior to returning the authorizedIdentity appears to fix the problem.

       

            fjuma1@redhat.com Farah Juma
            alan.shields alan shields (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: