flyrain opened a new issue, #2991:
URL: https://github.com/apache/polaris/issues/2991
### Describe the bug
Client side error msg:
```
{
"error": {
"message": "getSubject is not supported",
"type": "UnsupportedOperationException",
"code": 406
}
}
```
Server side msg:
```
2025-11-05 18:55:24,961 INFO [org.apa.pol.ser.exc.IcebergExceptionMapper]
[e259be44-c44b-477b-896a-2c4a628a3994_0000000000000000029,POLARIS] [,,,]
(executor-thread-1) Handling runtimeException getSubject is not supported
2025-11-05 18:55:24,962 INFO [io.qua.htt.access-log]
[e259be44-c44b-477b-896a-2c4a628a3994_0000000000000000029,POLARIS] [,,,]
(executor-thread-1) 127.0.0.1 - root [05/Nov/2025:18:55:24 -0800] "POST
/api/catalog/v1/grulab/namespaces/minionHQ/tables HTTP/1.1" 406 101
```
### To Reproduce
Start Polaris server with JDK25
### Actual Behavior
_No response_
### Expected Behavior
_No response_
### Additional context
Reason:
With Java 25, [[JEP
451](https://openjdk.org/jeps/451)](https://openjdk.org/jeps/451) fully
disables the `SecurityManager` by default. The `Subject.getSubject()` call
depends on an active security manager, so without explicitly opting back in
using `-Djava.security.manager=allow`, it throws a “getSubject is not
supported” warning. This issue did not occur in test because the configuration
automatically injected that property (see
`runtime/service/build.gradle.kts:197`), whereas the standalone server did not
pass it through.
### System information
_No response_
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
