Handle Docker 407 (Proxy Authentication Required) with clear error message #47180
Conversation
spring-projects-issues
added
the
status: waiting-for-triage
|
|
||
| String detail = null; | ||
| Message json = deserializeMessage(content); | ||
| if (json != null && org.springframework.util.StringUtils.hasText(json.getMessage())) { |
There was a problem hiding this comment.
StringUtils is already imported so there's no need to fully-qualify the type.
|
|
||
| String msg = "Proxy authentication required for host: " + this.host.toHostString() + ", uri: " | ||
| + request.getUri() | ||
| + (org.springframework.util.StringUtils.hasText(detail) ? " - " + detail : ""); |
There was a problem hiding this comment.
StringUtils is already imported so there's no need to fully-qualify the type.
|
|
||
| import static org.assertj.core.api.Assertions.assertThat; | ||
|
|
||
| class ProxyAuthenticationExceptionTests { |
There was a problem hiding this comment.
I don't think we need tests for ProxyAuthenticationException. Please remove this class.
| detail = json.getMessage(); | ||
| } | ||
| else { | ||
| detail = new String(content, java.nio.charset.StandardCharsets.UTF_8); |
There was a problem hiding this comment.
StandardCharsets should be imported rather than using the fully-qualified type here.
|
Also, please sign your commits as described in the DCO check failure. |
| response.close(); | ||
|
|
||
| if (statusCode == 407) { | ||
| response.close(); |
There was a problem hiding this comment.
This looks wrong to me as the response will now only be closed when the status code is 407.
…ssage (Fixes spring-projects#46262) Signed-off-by: Siva Sai Udayagiri <[email protected]>
siva-sai-udaygiri
force-pushed
the
3.3.x
branch
2 times, most recently
from
7348c31 to
1bd6ffe
Compare
|
Update: Close response on all error paths before throwing. Use imports (no fully-qualified names). Removed ProxyAuthenticationExceptionTests. Rebased, squashed, DCO signed. |
|
Those changes sound good, but I can't see them in the PR. Please check that you've pushed them. |
…e FQNs Signed-off-by: Siva Sai Udayagiri <[email protected]>
Pushed the updates: always close error responses, replaced FQNs with imports, removed ProxyAuthenticationExceptionTests. |
| /** | ||
| * Perform an HTTP GET operation. | ||
| * @param uri the destination URI | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
| /** | ||
| * Perform an HTTP POST operation. | ||
| * @param uri the destination URI | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
| /** | ||
| * Perform an HTTP POST operation. | ||
| * @param uri the destination URI | ||
| * @param registryAuth registry authentication credentials | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
| /** | ||
| * Perform an HTTP POST operation. | ||
| * @param uri the destination URI | ||
| * @param contentType the content type to write | ||
| * @param writer a content writer | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
| /** | ||
| * Perform an HTTP PUT operation. | ||
| * @param uri the destination URI | ||
| * @param contentType the content type to write | ||
| * @param writer a content writer | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
| /** | ||
| * Perform an HTTP DELETE operation. | ||
| * @param uri the destination URI | ||
| * @return the operation response | ||
| */ |
There was a problem hiding this comment.
This javadoc should not be removed.
|
|
||
| if (statusCode >= 400 && statusCode <= 500) { | ||
| byte[] content = readContent(response); | ||
| // Always close the response for error paths |
There was a problem hiding this comment.
This comment is not necessary. Please remove.
| + request.getUri() | ||
| + (StringUtils.hasText(detail) ? " - " + detail : ""); | ||
|
|
||
| throw new ProxyAuthenticationException(msg); |
There was a problem hiding this comment.
I'm still not sure that this is needed. Could it be a DockerEngineException with a better message?
| // Always close the response for error paths | ||
| response.close(); | ||
|
|
||
| if (statusCode == 407) { |
There was a problem hiding this comment.
Use SC_PROXY_AUTHENTICATION_REQUIRED from org.apache.hc.core5.http.HttpStatus here rather than 407.
| Message json = deserializeMessage(content); | ||
| if (json != null && StringUtils.hasText(json.getMessage())) { | ||
| detail = json.getMessage(); | ||
| } |
There was a problem hiding this comment.
Why are you handling JSON here? The issue states that the error has "a plain text message".
There was a problem hiding this comment.
This still doesn't look right to me, I'm afraid. Why would a JSON Message be sent back in an error case? If you have evidence of that, please do share it. Otherwise, I think this should just deal with plain text.
There was a problem hiding this comment.
Thanks for the nudge. I’ve removed the JSON handling—407 is now treated as plain-text only.
…ant; restore Javadoc; remove comment Signed-off-by: Siva Sai Udayagiri <[email protected]>
|
Pushed updates: restored Javadoc, removed inline comment, switched to HttpStatus.SC_PROXY_AUTHENTICATION_REQUIRED, and ensured response is always closed on error. Formatting & checkstyle pass. Thanks! |
…sponse on error Signed-off-by: Siva Sai Udayagiri <[email protected]>
|
Update pushed: Handle 407 as plain text only (no JSON parsing). Close the ClassicHttpResponse on all 4xx/5xx paths before throwing. Use HttpStatus.SC_PROXY_AUTHENTICATION_REQUIRED instead of the literal. Restored the Javadocs that were removed and dropped the “Always close…” inline comment. |
3 participants
Problem
When Docker returns 407 (Proxy Authentication Required), the response is often plain text, so the current code fails to surface a helpful error.
Solution
Tests
Notes
Fixes: #46262