Merge pull request quarkusio#35987 from sberyozkin/improve_http_authorizer_exception_log_message

sberyozkin · web-flow · commit f974941e4fbc · 2023-09-18T17:03:57.000+01:00
Improve the way HTTP authorizer logs exceptions
diff --git a/extensions/vertx-http/runtime/src/main/java/io/quarkus/vertx/http/runtime/security/AbstractHttpAuthorizer.java b/extensions/vertx-http/runtime/src/main/java/io/quarkus/vertx/http/runtime/security/AbstractHttpAuthorizer.java
@@ -10,6 +10,7 @@
 import org.jboss.logging.Logger;
 
 import io.quarkus.security.AuthenticationFailedException;
+import io.quarkus.security.AuthenticationRedirectException;
 import io.quarkus.security.ForbiddenException;
 import io.quarkus.security.identity.IdentityProviderManager;
 import io.quarkus.security.identity.SecurityIdentity;
@@ -120,10 +121,15 @@ public void accept(Throwable throwable) {
                         // the exception twice;at this point, the exception could be failed by the default auth failure handler
                         if (!routingContext.response().ended() && !throwable.equals(routingContext.failure())) {
                             routingContext.fail(throwable);
-                        } else if (!(throwable instanceof AuthenticationFailedException)) {
-                            //don't log auth failure
+                        } else if (throwable instanceof AuthenticationFailedException) {
+                            log.debug("Authentication challenge is required");
+                        } else if (throwable instanceof AuthenticationRedirectException) {
+                            log.debugf("Completing authentication with a redirect to %s",
+                                    ((AuthenticationRedirectException) throwable).getRedirectUri());
+                        } else {
                             log.error("Exception occurred during authorization", throwable);
                         }
+
                     }
                 });
     }
