Skip to content

CXF-9200: Regression with respect to security context propagation#2890

Merged
reta merged 2 commits intoapache:mainfrom
reta:CXF-9200
Feb 18, 2026
Merged

CXF-9200: Regression with respect to security context propagation#2890
reta merged 2 commits intoapache:mainfrom
reta:CXF-9200

Conversation

@reta
Copy link
Member

@reta reta commented Feb 18, 2026

See please #2807 (comment)

Copy link
Contributor

@rzo1 rzo1 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@reta Thanks. I ran a local build and executed both our reproducer and the MP JWT TCK in TomEE. The change fixes one regression on the TomEE side, but it introduces a new one. In TomEE, the JWT bearer token is validated when getUserPrincipal() is called. This means the call can throw an exception, which should be propagated rather than returning null or false.

Perhaps we could handle the NPE more explicitly for the Jetty case instead of catching a generic exception here?

@reta
Copy link
Member Author

reta commented Feb 18, 2026

Perhaps we could handle the NPE more explicitly for the Jetty case instead of catching a generic exception here?

Yeah, I think that would be better, thank you @rzo1

Copy link
Contributor

@ffang ffang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks @reta !

@reta reta merged commit f25e3e0 into apache:main Feb 18, 2026
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants

Comments