[
https://issues.apache.org/jira/browse/NIFI-10259?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17570183#comment-17570183
]
ASF subversion and git services commented on NIFI-10259:
--------------------------------------------------------
Commit a661b035e8903c69d63f8427d4f2f7bdaf309d89 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=a661b035e8 ]
NIFI-10259 Improved HTTP error handling for authentication failures
- Added Standard AuthenticationEntryPoint
- Configured AuthenticationEntryPoint for SecurityFilterChain and
BearerTokenAuthenticationFilter
Signed-off-by: Nathan Gough <[email protected]>
This closes #6233.
> Improve Error Handling for Invalid JWT Bearer Tokens
> ----------------------------------------------------
>
> Key: NIFI-10259
> URL: https://issues.apache.org/jira/browse/NIFI-10259
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework, Core UI, Security
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Minor
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> The default failure handler for Bearer Token authentication returns the
> {{WWW-Authenticate}} HTTP response header for invalid tokens, but does not
> include any response body. When user interface provides the Bearer Token in a
> Cookie header, the failure handler does not remove cookie. This behavior
> should be updated to return the error parameters in the response body and
> return a Set-Cookie header that instructs the browser to remove the cookie.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
