Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Request-scoped beans do not work in the management context when it's using a separate port
See original GitHub issueHi,
I have a question. We are using OAuth2 for securing our API’s including the management endpoints. However, we are having an issue when authenticating the requests for the management URL’s. Spring Security’s OAuth2AuthenticationManager requires at some point a request scoped OAuth2ClientContext. The problem is that this request scoped bean can not be created. It logs the following warning:
Could not fetch user details: class org.springframework.beans.factory.BeanCreationException, Error creating bean with name 'scopedTarget.oauth2ClientContext': Scope 'request' is not active for the current thread; consider defining a scoped proxy for this bean if you intend to refer to it from a singleton; nested exception is java.lang.IllegalStateException: No thread-bound request found: Are you referring to request attributes outside of an actual web request, or processing a request outside of the originally receiving thread? If you are actually operating within a web request and still receive this message, your code is probably running outside of DispatcherServlet/DispatcherPortlet: In this case, use RequestContextListener or RequestContextFilter to expose the current request.
After googling this issue, it was suggested to make sure that the request is passing the RequestContextFilter. I was convinced that this was already done by Spring Boot’s auto configuration. Then I noticed that this filter is not used for actuator URL’s. The opposite is also true for non-actuator URL’s. Is there a reason why this filter is not automatically applied for actuator endpoints? What do I have to do to make sure that actuator endpoints also make use of that specific filter?
Additional info: Actuator endpoints are configured to be served on a different port and context root compared to the standard application endpoints.
Issue Analytics
- State:
- Created 6 years ago
- Comments:7 (4 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
I see you’ve edited your original description to add the following:
As you’ve described, that’s a key piece of information as the problem doesn’t occur without the different port.
I’m not sure if we’ll consider it to be a bug, but it’s certainly something that I don’t think we’ve considered before. While we decide what to do, you can configure the separate management context with a
RequestContextFilterby creating a class annotated with@ManagementContextConfigurationin a package that isn’t covered by component scanning:And then listing it in a
META-INF/spring.factoriesfile:Let’s auto-configure the request context filter in the separate management context.