SecurityContextHolder.getContext().getAuthentication() is null when using annotation @ProcessingGroup in EventHandler
442 views
Skip to first unread message
denis cucchietti
Dec 5, 2017, 3:13:12 PM12/5/17
to Axon Framework Users
Hi all,
I have a problem while i use the annotation @ProcessingGroup (i use RabbitMQ and a SpringAMQPMessageSource to transfert events between micro-services) on my EventHandler, everything works fine but the security context is lost by using it.
If i remove the annottaion @ProcessingGroup the SecurityContextHolder.getContext().getAuthentication() is correct.
Do you have a solution to make it works with the annotation @ProcessingGroup ?
I have a problem while i use the annotation @ProcessingGroup (i use RabbitMQ and a SpringAMQPMessageSource to transfert events between micro-services) on my EventHandler, everything works fine but the security context is lost by using it.
If i remove the annottaion @ProcessingGroup the SecurityContextHolder.getContext().getAuthentication() is correct.
Do you have a solution to make it works with the annotation @ProcessingGroup ?
Steven van Beelen
Dec 6, 2017, 5:23:26 AM12/6/17
to axonfr...@googlegroups.com
Hi Denis,
Which micro service has the '@ProcessingGroup' annotation tied to an Event Handling Component? Is that within the service from which the event originates or on the service which receives event from the 'SpringAMQPMessageSource' you're leveraging? Or, are you still containing both in the same application and adding the @ProcessingGroup is in a testing phase?
Regardless of the exact set up, my hunch is that you've still got one real application, wherein the @ProcessingGroup ties your Event Handling Component to the SpringAMQPMessageSource, and not having the @ProcessingGroup annotation ties your Event Handling Component to a default SubscribingEventProcessor.
Taking the stance this set up is true, the default SubscribingEventProcessor makes it so that the thread publishing the command (which most likely already has the SecurityContext attached) is the same thread which handles the event in your Event Handling Component. Hence, you've still got the SecurityContext set when not using the @ProcessingGroup.
Once you do add the @ProcessingGroup annotation, the Event Handling Component is automatically handled by the SpringAMQPMessageSource, which is a different thread then the command-publishing-thread which does contain the SecurityContext.
Hence, it seems like the @ProcessingGroup is the trigger for having a SecurityContext or not.
You can solve this issue by adding the required information for the SecurityContext (guessing a token) to the metadata of the Rabbit message.
On the receiving side, you can then add a MessageDispatchInterceptor which pulls that information out of the metadata and populates the SecurityContext on that side.
Hope this helps you out Denis! If any of my assumptions are incorrect, please tell me so.
Cheers,
Steven
--
You received this message because you are subscribed to the Google Groups "Axon Framework Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to axonframewor...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
denis cucchietti
Dec 6, 2017, 11:55:57 AM12/6/17
to Axon Framework Users
Hi Steven,
First of all thanks a lot for your complete answer, i appreciate !
It's exactly the problem, thanks again, i will take a look into this !
First of all thanks a lot for your complete answer, i appreciate !
It's exactly the problem, thanks again, i will take a look into this !
Reply all
Reply to author
Forward
0 new messages