Don't supply AuthenticationManager bean in attempt to solve errors wh…

…en oauth token is invalid
noi-techpark · Dec 5, 2023 · b71ed77 · b71ed77
1 parent 538339e
commit b71ed77
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 9 deletions.
diff --git a/writer/src/main/java/it/bz/idm/bdp/writer/CustomRequestInterceptor.java b/writer/src/main/java/it/bz/idm/bdp/writer/CustomRequestInterceptor.java
@@ -89,10 +89,10 @@ public void afterCompletion(
 				request.setAttribute("level", "WARN");
 				LOG.warn("API call", v("api_request_info", logPayload));
 			} else {
-				logPayload.put("exception", Arrays.toString(exception.getStackTrace()));
+				logPayload.put("exception", exception != null ? Arrays.toString(exception.getStackTrace()) : "<null>");
 				logPayload.put("request_state", "ERROR");
 				LOG.error("API call", v("api_request_info", logPayload));
-				if (LOG.isDebugEnabled()) {
+				if (LOG.isDebugEnabled() && exception != null) {
 					exception.printStackTrace(System.err);
 				}
 			}

diff --git a/writer/src/main/java/it/bz/idm/bdp/writer/config/WebSecurity.java b/writer/src/main/java/it/bz/idm/bdp/writer/config/WebSecurity.java
@@ -12,9 +12,7 @@
 import org.springframework.context.annotation.Configuration;
 import org.springframework.core.convert.converter.Converter;
 import org.springframework.security.authentication.AbstractAuthenticationToken;
-import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.config.Customizer;
-import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.core.authority.SimpleGrantedAuthority;
@@ -37,11 +35,6 @@ public SessionAuthenticationStrategy sessionAuthenticationStrategy() {
 		return new NullAuthenticatedSessionStrategy();
 	}
 
-	@Bean 
-	public AuthenticationManager authenticationManager(HttpSecurity http) throws Exception {
-		return http.getSharedObject(AuthenticationManagerBuilder.class).build();
-	}
-
 	// For some reason, spring does not read the role claim from the jwt.
 	// Since we're basing our authorization on roles, we have to extend the spring security jwt converter to get that functionality.
 	// see https://stackoverflow.com/questions/65518172/spring-security-cant-extract-roles-from-jwt for reference