Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Exception when changing security configuration when using Hotswap Agent #19910

Closed
Artur- opened this issue Sep 9, 2024 · 3 comments · Fixed by #19996
Closed

Exception when changing security configuration when using Hotswap Agent #19910

Artur- opened this issue Sep 9, 2024 · 3 comments · Fixed by #19996
Labels
bug Impact: Low live reload prerelease version for Vaadin 24.5.0 Released with Vaadin 24.4.13 Released with Vaadin 24.5.0.beta2 Severity: Minor

Comments

@Artur-
Copy link
Member

Artur- commented Sep 9, 2024

Description of the bug

Caused by: org.springframework.beans.BeanInstantiationException: Failed to instantiate [org.springframework.security.web.SecurityFilterChain]: Factory method 'filterChain' threw exception with message: Already using login as the login view
        at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:178)
        at org.springframework.beans.factory.support.ConstructorResolver.instantiate(ConstructorResolver.java:644)
        ... 39 more
Caused by: java.lang.IllegalStateException: Already using login as the login view
        at com.vaadin.flow.server.auth.NavigationAccessControl.throwIfLoginViewSet(NavigationAccessControl.java:228)
        at com.vaadin.flow.server.auth.NavigationAccessControl.setLoginView(NavigationAccessControl.java:213)
        at com.vaadin.flow.spring.security.VaadinWebSecurity.setLoginView(VaadinWebSecurity.java:425)
        at com.vaadin.flow.spring.security.VaadinWebSecurity.setLoginView(VaadinWebSecurity.java:387)
        at com.example.application.security.SecurityConfiguration.configure(SecurityConfiguration.java:37)
        at com.vaadin.flow.spring.security.VaadinWebSecurity.filterChain(VaadinWebSecurity.java:146)
        at com.example.application.security.SecurityConfiguration$$SpringCGLIB$$0.CGLIB$filterChain$19(<generated>)
        at com.example.application.security.SecurityConfiguration$$SpringCGLIB$$FastClass$$2.invoke(<generated>)
        at org.springframework.cglib.proxy.MethodProxy.invokeSuper(MethodProxy.java:258)
        at org.springframework.context.annotation.ConfigurationClassEnhancer$BeanMethodInterceptor.intercept(ConfigurationClassEnhancer.java:348)
        at com.example.application.security.SecurityConfiguration$$SpringCGLIB$$0.filterChain(<generated>)
        at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:103)
        at java.base/java.lang.reflect.Method.invoke(Method.java:580)
        at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:146)
        ... 40 more

Expected behavior

No exceptions

Minimal reproducible example

New app -> include security conf -> run with HA -> change security conf

Versions

Hilla: 24.5.0.alpha13
Flow: 24.5-SNAPSHOT
Vaadin: 24.5.0.alpha15
Copilot: 24.5-SNAPSHOT
Frontend Hotswap: Enabled, using Vite
OS: aarch64 Mac OS X 14.6.1
Java: JetBrains s.r.o. 21.0.2
Browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
Java Hotswap: false
IDE Plugin: ☑ 1.0.0
@mshabarov
Copy link
Contributor

Flow shouldn't throw and should do nothing in setLoginView, if the new Java class is the same as before. It simply means a hotreload.

@mshabarov mshabarov moved this from 🆕 Needs triage to 🔖 Low Priority (P3) in Vaadin Flow bugs & maintenance (Vaadin 10+) Sep 10, 2024
Artur- added a commit that referenced this issue Sep 19, 2024
@Artur-
fix: Do not throw if re-setting the login view
5214dce 
Fixes #19910
@Artur- Artur- mentioned this issue Sep 19, 2024
Merged
@github-project-automation github-project-automation bot moved this from 🔖 Low Priority (P3) to ✅ Closed in Vaadin Flow bugs & maintenance (Vaadin 10+) Sep 20, 2024
vaadin-bot pushed a commit that referenced this issue Sep 20, 2024
@Artur- @vaadin-bot
fix: Do not throw if re-setting the login view (#19996)
145567d 
Fixes #19910
vaadin-bot pushed a commit that referenced this issue Sep 20, 2024
@Artur- @vaadin-bot
fix: Do not throw if re-setting the login view (#19996)
92872dc 
Fixes #19910
vaadin-bot added a commit that referenced this issue Sep 20, 2024
@vaadin-bot @Artur-
fix: Do not throw if re-setting the login view (#19996) (#20003)
b2c0621 
Fixes #19910

Co-authored-by: Artur <[email protected]>
vaadin-bot added a commit that referenced this issue Sep 20, 2024
@vaadin-bot @Artur-
fix: Do not throw if re-setting the login view (#19996) (#20002)
ba7dfcb 
Fixes #19910

Co-authored-by: Artur <[email protected]>
@vaadin-bot
Copy link
Collaborator

This ticket/PR has been released with Vaadin 24.5.0.beta2 and is also targeting the upcoming stable 24.5.0 version.

@vaadin-bot
Copy link
Collaborator

This ticket/PR has been released with Vaadin 24.4.13.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Impact: Low live reload prerelease version for Vaadin 24.5.0 Released with Vaadin 24.4.13 Released with Vaadin 24.5.0.beta2 Severity: Minor
Projects
Vaadin Flow bugs & maintenance (Vaadin 10+)
Status: ✅ Closed
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: Do not throw if re-setting the login view vaadin/flow
3 participants
@Artur- @vaadin-bot @mshabarov