-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Provide a way to observe security events #37472
Provide a way to observe security events #37472
Conversation
f058d6d
to
87b182e
Compare
This comment has been minimized.
This comment has been minimized.
🙈 The PR is closed and the preview is expired. |
36fab11
to
6d6ad1e
Compare
...s/security/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/AuthorizationEvent.java
Outdated
Show resolved
Hide resolved
...s/security/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/AuthorizationEvent.java
Outdated
Show resolved
Hide resolved
...s/security/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/AuthorizationEvent.java
Outdated
Show resolved
Hide resolved
.../security/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/AuthenticationEvent.java
Outdated
Show resolved
Hide resolved
...rtx-http/runtime/src/main/java/io/quarkus/vertx/http/runtime/security/HttpAuthenticator.java
Outdated
Show resolved
Hide resolved
@michalvavrik Very nice, nearly ready to be merged |
This comment has been minimized.
This comment has been minimized.
...curity/runtime/src/main/java/io/quarkus/security/runtime/event/CDISecurityEventProducer.java
Outdated
Show resolved
Hide resolved
...ecurity/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/SecurityEventProducer.java
Outdated
Show resolved
Hide resolved
...curity/runtime/src/main/java/io/quarkus/security/runtime/event/CDISecurityEventProducer.java
Outdated
Show resolved
Hide resolved
...curity/runtime/src/main/java/io/quarkus/security/runtime/event/CDISecurityEventProducer.java
Outdated
Show resolved
Hide resolved
...curity/runtime/src/main/java/io/quarkus/security/runtime/event/CDISecurityEventProducer.java
Outdated
Show resolved
Hide resolved
...ions/security/deployment/src/main/java/io/quarkus/security/deployment/SecurityProcessor.java
Outdated
Show resolved
Hide resolved
@Ladicek @mkouba @manovotn You are right, I'll rewrite this PR so that only CDI events are used and there will be no API. I had following reasons to define API:
@mkouba suggested on Zulip way to do all that I want to do and as you explained, handling of CDI events is already optimized and user can just observe events and then fire events with Kafka or whatever he wants. I'll put this to draft, rework the PR and ask all of you for review when I'm done. BTW @sberyozkin I'm sure you have opinions as well, but let me rework this first so that you can see what I have in mind this time. Thanks |
@michalvavrik I think we have agreed in all the pending/open comments, including keeping an interface and configuration property (even if we look at when to use it a bit differently), and IMHO this PR is nearly ready to be merged, thanks for your effort |
14b6c87
to
f1bfef5
Compare
This comment has been minimized.
This comment has been minimized.
extensions/oidc/runtime/src/main/java/io/quarkus/oidc/runtime/DefaultTenantConfigResolver.java
Outdated
Show resolved
Hide resolved
619e069
to
008451f
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks @michalvavrik
This comment has been minimized.
This comment has been minimized.
...ty/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/AuthenticationFailureEvent.java
Outdated
Show resolved
Hide resolved
.../security/runtime-spi/src/main/java/io/quarkus/security/spi/runtime/SecurityEventHelper.java
Show resolved
Hide resolved
008451f
to
f684ade
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
My comments are just minor nitpicks, otherwise the CDI bits and the event-firing optimization look good to me.
extensions/grpc/deployment/src/main/java/io/quarkus/grpc/deployment/GrpcServerProcessor.java
Outdated
Show resolved
Hide resolved
f684ade
to
c06cf1e
Compare
Failing Jobs - Building c06cf1e
Full information is available in the Build summary check run. Failures⚙️ JVM Tests - JDK 21 #- Failing: extensions/vertx-http/deployment
! Skipped: devtools/cli extensions/agroal/deployment extensions/amazon-lambda-http/deployment and 364 more 📦 extensions/vertx-http/deployment✖
⚙️ Maven Tests - JDK 17 #- Failing: integration-tests/maven
📦 integration-tests/maven✖
✖
⚙️ Native Tests - Data1 #- Failing: integration-tests/hibernate-orm-tenancy/connection-resolver
📦 integration-tests/hibernate-orm-tenancy/connection-resolver✖
✖
✖
✖
✖
|
Checked CI failures:
contains no security and it didn't fail before latest changes
same as above plus works on JDK 17 and I can't see what is wrong from logs, it looks flaky |
I believe we can merge, thanks everyone |
closes: #26549