Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Incorrect error response for expired token #1442

Open
TimHess opened this issue Jan 16, 2025 · 1 comment · May be fixed by #1444
Open

Incorrect error response for expired token #1442

TimHess opened this issue Jan 16, 2025 · 1 comment · May be fixed by #1444
Labels
Component/Management Issues related to Steeltoe Management (actuators) ReleaseLine/4.x Identified as a feature/fix for the 4.x release line Type/bug Something isn't working

Comments

@TimHess
Copy link
Member

TimHess commented Jan 16, 2025

Sending a request to an actuator endpoint with an expired token currently returns HTTP 503 with the following response body:

{
  "security_error": "Cloud controller not reachable"
}

But the following log entry is also written:

 Cloud Foundry returned status: Unauthorized while obtaining permissions from: https://{api.systemdomain}/v2/apps/{appguid}/permissions
@TimHess TimHess added Component/Management Issues related to Steeltoe Management (actuators) ReleaseLine/4.x Identified as a feature/fix for the 4.x release line Type/bug Something isn't working labels Jan 16, 2025
@TimHess
Copy link
Member Author

TimHess commented Jan 16, 2025

After investigation, this behavior appears to be intentional, though from history it looks to have been related to IIS

@TimHess TimHess linked a pull request Jan 16, 2025 that will close this issue
Draft
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Component/Management Issues related to Steeltoe Management (actuators) ReleaseLine/4.x Identified as a feature/fix for the 4.x release line Type/bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

don't mask unauthorized as server error, set a claims id if user has … SteeltoeOSS/Steeltoe
1 participant
@TimHess