sudeshnasengupta commented on issue #13148: URL: https://github.com/apache/pinot/issues/13148#issuecomment-2116716352
Thankfully (so as to reduce scope of work), we were able to discover the root cause of this issue: since the custom authentication implementation needs to look at the headers stored in the instance of org.apache.pinot.broker.api.HttpRequesterIdentity to obtain the HTTP request's bearer token for validation against Keycloak, any attempt to call org.apache.pinot.broker.api.HttpRequesterIdentity#getHttpHeaders() would fail, because Pinot shades all classes in packages whose names start with "com.google". To work around this, our implementation is using Java reflection to convert the associated collection into a java.util.Map instance, prior to extracting the bearer token. As such, I'm closing this issue. Thanks! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
