Skip to content

#133: on ldap connection error, communicate 504 #134

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dk1844 merged 13 commits into from
Aug 5, 2025
Merged

#133: on ldap connection error, communicate 504 #134

dk1844 merged 13 commits into from
Aug 5, 2025

Conversation

@dk1844
Copy link
Collaborator

@dk1844 dk1844 commented Aug 1, 2025
edited
Loading

This PR introduces different non-ok response to users besides the original 401, on LDAP connection errors.

In this particular situation, failing to connect to LDAP should give users 504.

Example run with mangled config to induce the error:

POST http://localhost:9090/token/generate?groups-prefixes=
with e.g. Authorization: Basic bXl1c2VybmFtZTp3aGF0LWFyZS15b3UtbG9va2luZy1mb3ItaGVyZT8=

->
504

{"error": "LDAP connection failed: LDAP connection issue: corp.bogus.com:636; nested exception is javax.naming.CommunicationException: corp.bogus.com:636 [Root exception is java.net.UnknownHostException: corp.bogus.com]"}

@TheLydonKing

Release notes:

  • For LDAP connection errors, 504 error code is communciated to signify the state difference compared to previsouly present 504

Closes #133

@dk1844 dk1844 requested a review from jakipatryk as a code owner August 1, 2025 12:42
@dk1844 dk1844 requested a review from TheLydonKing August 1, 2025 13:27
@github-actions
Copy link

github-actions bot commented Aug 1, 2025
edited
Loading

JaCoCo code coverage report - scala:2.12.17

File Coverage [58.1%]
AuthManagerConfig.scala 96.88% 🍏
SecurityConfig.scala 88.37% 🍏
JWTService.scala 82.77% 🍏
RestResponseEntityExceptionHandler.scala 62.71%
ActiveDirectoryLDAPAuthenticationProvider.scala 51.32%
LdapUserRepository.scala 21.53%
KerberosFailureHandler.scala 0%
KerberosSPNEGOAuthenticationProvider.scala 0%
LdapConnectionException.scala 0%
Total Project Coverage 68.84% 🍏

dk1844
dk1844 commented Aug 4, 2025
View reviewed changes
Copy link
Collaborator Author

@dk1844 dk1844 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

TheLydonKing
TheLydonKing approved these changes Aug 5, 2025
View reviewed changes
Copy link
Collaborator

@TheLydonKing TheLydonKing left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM and tested on my side

dk1844
dk1844 commented Aug 5, 2025
View reviewed changes
Copy link
Collaborator Author

@dk1844 dk1844 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@dk1844 dk1844 merged commit 7c94e10 into master Aug 5, 2025
3 of 4 checks passed
@dk1844 dk1844 deleted the bugfix/133-ldap-error50x branch August 15, 2025 07:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@TheLydonKing TheLydonKing TheLydonKing approved these changes

@jakipatryk jakipatryk Awaiting requested review from jakipatryk jakipatryk is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

LDAP error 401 -> 50x

3 participants

@dk1844 @TheLydonKing