Merge pull request #44505 from sberyozkin/log_no_credentials_available

Log in smallrye-jwt and oauth2 extensions when no bearer access token is available

Author: sberyozkin

extensions/elytron-security-oauth2/runtime/src/main/java/io/quarkus/elytron/security/oauth2/runtime/auth/OAuth2AuthMechanism.java

@@ -5,6 +5,8 @@
 
 import jakarta.enterprise.context.ApplicationScoped;
 
+import org.jboss.logging.Logger;
+
 import io.netty.handler.codec.http.HttpHeaderNames;
 import io.netty.handler.codec.http.HttpResponseStatus;
 import io.quarkus.security.credential.TokenCredential;
@@ -23,7 +25,7 @@
  */
 @ApplicationScoped
 public class OAuth2AuthMechanism implements HttpAuthenticationMechanism {
-
+    private static final Logger LOG = Logger.getLogger(OAuth2AuthMechanism.class);
     private static final String BEARER_PREFIX = "Bearer ";
 
     protected static final ChallengeData CHALLENGE_DATA = new ChallengeData(
@@ -46,7 +48,9 @@ public Uni<SecurityIdentity> authenticate(RoutingContext context,
         String authHeader = context.request().headers().get("Authorization");
 
         if (authHeader == null || !authHeader.startsWith(BEARER_PREFIX)) {
-            // No suitable bearer token has been found in this request,
+            // No suitable bearer token has been found in this request
+            LOG.debug("Bearer access token is not available");
+
             return Uni.createFrom().nullItem();
         }
 

extensions/smallrye-jwt/runtime/src/main/java/io/quarkus/smallrye/jwt/runtime/auth/JWTAuthMechanism.java

@@ -9,6 +9,8 @@
 import jakarta.enterprise.context.ApplicationScoped;
 import jakarta.inject.Inject;
 
+import org.jboss.logging.Logger;
+
 import io.netty.handler.codec.http.HttpHeaderNames;
 import io.netty.handler.codec.http.HttpResponseStatus;
 import io.netty.handler.codec.http.cookie.ServerCookieDecoder;
@@ -34,6 +36,7 @@
  */
 @ApplicationScoped
 public class JWTAuthMechanism implements HttpAuthenticationMechanism {
+    private static final Logger LOG = Logger.getLogger(JWTAuthMechanism.class);
     private static final String ERROR_MSG = "SmallRye JWT requires a safe (isolated) Vert.x sub-context for propagation "
             + "of the '" + TokenCredential.class.getName() + "', but the current context hasn't been flagged as such.";
     protected static final String COOKIE_HEADER = "Cookie";
@@ -86,6 +89,8 @@ public void run() {
             return identityProviderManager
                     .authenticate(HttpSecurityUtils.setRoutingContextAttribute(
                             new TokenAuthenticationRequest(new JsonWebTokenCredential(jwtToken)), context));
+        } else {
+            LOG.debug("Bearer access token is not available");
         }
         return Uni.createFrom().optional(Optional.empty());
     }