Re: [I] bug: `keycloak-authz` plugin without `resource_registration_endpoint` when `lazy_load_paths` is true returns 500 error [apisix]

via GitHub Mon, 01 Jan 2024 21:19:01 -0800


lakshya8066 commented on issue #10708:
URL: https://github.com/apache/apisix/issues/10708#issuecomment-1873628209


   
   I found the issue here, In the function `authz_keycloak_resolve_resource` 
function, we return a 503 error code when a resource_registration_endpoint is 
not found. But this is not being caught anywhere in the function 
`evaluate_permissions`. Instead, we are checking is `permission` is `nil` or 
not and if it is, then pass a 503 error code.
   
   
![image](https://github.com/apache/apisix/assets/73181332/1ea336a3-6513-4d00-a8ef-9f7e2e8af08f)
   
   So I think returning `nil` here instead of 503 is the solution. I have 
tested it as well.
   
   
![image](https://github.com/apache/apisix/assets/73181332/031ebdf4-019c-4a58-90dd-689b1e4a10f0)
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Re: [I] bug: `keycloak-authz` plugin without `resource_registration_endpoint` when `lazy_load_paths` is true returns 500 error [apisix]

Reply via email to