-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathDebug_Notes.txt
More file actions
22 lines (19 loc) · 1.05 KB
/
Debug_Notes.txt
File metadata and controls
22 lines (19 loc) · 1.05 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Error:
- java.io.EOFException + Tomcat HTTP parser errors
- "Securing POST /auth/login" followed by 401 UNAUTHORIZED
Cause:
1) Protocol mismatch:
- Client sent HTTPS/TLS bytes to HTTP port 8080.
- This caused EOF/parser errors (not a JWT issue).
2) Auth bean wiring issue:
- authcontroller/authservice/jwtfilter had no-arg constructors + field injection pattern that left dependencies null.
- login path threw exceptions internally, catch block returned 401.
Why "Securing POST /auth/login" still appears:
- FilterChainProxy logs that request passed through Spring Security chain.
- permitAll/shouldNotFilter means "allow access / skip custom JWT logic", not "skip entire security chain logging".
Resolution:
- Use http://localhost:8080 (or properly configure SSL and use https port).
- Fix constructor injection (final fields + single constructor).
- Keep shouldNotFilter for /auth/login.
- Optional defensive check in doFilterInternal for /auth/login can remain, but shouldNotFilter is the main bypass.
- Log real exception with ex.printStackTrace() while debugging.