GeoServerOAuthAuthenticationFilter creates Anonymous authentication when preAuthenticated principal is not present

Description

The GeoServerOAuthAuthenticationFilter creates Anonymous authentication when preAuthenticated principal is not present. This is should not happen since the anonymous filter should create the anonymous authentication object and since might cause other filter to not be executed if they check for the SecurityContenxt to be null as in the case of the GeoServerAuthKeyFilter

Environment

None

Activity

Marco Volpini 
July 26, 2021 at 12:21 PM
(edited)

main pr

2.18.x

2.19.x

Fixed

Details

Assignee

Reporter

Priority

Created July 26, 2021 at 10:24 AM
Updated July 29, 2021 at 12:43 PM
Resolved July 27, 2021 at 3:51 PM