Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[quarkus2] Do not add blank Bearer token #591

Merged
merged 1 commit into from
Dec 13, 2023

Conversation

github-actions[bot]
Copy link
Contributor

Backport: #588

Note: CI is not automatically triggered on backported PRs, please comment 'ok to test' to launch Jenkins jobs

Request for BearerAuthenticationProvider not to add a blank token to the Authorization header, as doing so will never satisfy any real authorization requirement, and may cause a request failure when multiple Authorization headers are sent due to multiple (optional) security schemes are defined on an endpoint.

This change could be extended to the other AuthProviders, but I have not been using those.

Fixes: #589

Co-authored-by: Martin Glass <martin.glass@partner.co>
@hbelmiro hbelmiro closed this Dec 13, 2023
@hbelmiro hbelmiro reopened this Dec 13, 2023
@hbelmiro hbelmiro merged commit 120e3e7 into quarkus2 Dec 13, 2023
6 checks passed
@hbelmiro hbelmiro deleted the quarkus2_bearer-only-non-blank branch December 13, 2023 15:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants