jvenant opened a new issue, #11483: URL: https://github.com/apache/pinot/issues/11483
Pinot broker doesn't follow the HTTP 1.1 authentication challenge standard. The workflow is describe here : https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication and is also used by the java standard HttpClient. It prevents from correctly authenticate to the broker using code like this : ```kotlin val request = HttpRequest.newBuilder(URI.create("https://secured_broker:8099/query/sql";)) .header("Content-Type", "application/json") .header("Accept", "application/json") .build() val client = HttpClient.newBuilder() .authenticator(object: Authenticator(){ override fun getPasswordAuthentication() = PasswordAuthentication("login", "password".toCharArray()) }) .build() val result = client.send(request, HttpResponse.BodyHandlers.ofInputStream()) print(result) ``` Java client first try the request without Authorization header. And then resend the request with the Authorization in case of 401. Currently, broker seems to only return 403 Http code which is a dead end from the java client perspective -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
