Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Enable VaadinWebSecurity to use JWT coming from a Filter
See original GitHub issueIn some scenarios, a Vaadin application may be called with a valid JWT in the header.
For that a Filter is used that populates the SecurityContext like in this example: https://github.com/simasch/spring-jwt
Now when using VaadinWebSecurity this approach may not work because the JWT must be used in the browser code and sent back to the server with every request.
Currently, we have to create our own security configuration in this scenario, but then we cannot use annotation-based security.
Please add support for such a scenario.
Issue Analytics
- State:
- Created a year ago
- Comments:5
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
@gsustek I think my initial statement is wrong. We CAN use annotation-based security but we still need our own filter because we must add some roles. But I definitely have to check the resource server configuration
@simasch Can you please explain a little bit more with examples why
Does this influence resourceServer springsecurity configuration case only?
Regards, Goran.