These are chat archives for spring-cloud/spring-cloud

4th
Jan 2019
muhmadtabrez
@muhmadtabrez
Jan 04 07:20
@marcosbarbero Is there a way to allow token authentication for endpoints in an application which uses @EnableOAuth2Sso
I had seen that @EnableOAuth2Sso will in zuul WebsecurityConfigurerAdapter uanble to pass the access token to downstream api. even if i send the proper authorization header.
Marcos Barbero
@marcosbarbero
Jan 04 07:23
Hi @muhmadtabrez it should work, maybe you haven't remove the Authorization header from the zuul.sensitive-headers property? It's there by default https://cloud.spring.io/spring-cloud-netflix/multi/multi__router_and_filter_zuul.html#_cookies_and_sensitive_headers
David J. M. Karlsen
@davidkarlsen
Jan 04 14:14
Looking at spring cloud Kubernetes and it’s capability to read all mounted secrets, but I don’t see any object to read the serviceaccount token from? The docs don’t say anything about it’s use
Dale Lotts
@dalelotts
Jan 04 19:00
Hey, happy new year. Is this the correct room to ask questions about spring-hateoas?
Dale Lotts
@dalelotts
Jan 04 19:06

When running a spring boot app with Hateoas behind Zuul, the X-Forwarded-Path header is set. The links generated by ControllerLinkBuilder do not contain the forwarded path, so the URL's are not correct because they omit the prefix.

For example, I have Zuul at localhost:8080 - it proxies localhost:8081/employees to localhost:8081 stripping the prefix by default - the links generated by ControllerLinkBuilder do not contain the forwarded path - i.e. the self link is localhost:8080/

This issue appears to be the same issue spring-projects/spring-hateoas#409 - but was closed to inactivity.

I assume I am missing something, any thoughts?