Skip to content

Handle Request to Prevent Exceptions #18194

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 4 commits into from
Closed

Handle Request to Prevent Exceptions #18194

wants to merge 4 commits into from
+66 −3

Conversation

@ngocnhan-tran1996
Copy link
Contributor

@ngocnhan-tran1996 ngocnhan-tran1996 commented Nov 18, 2025

Related: gh-18157

  1. With PathPatternRequestMatcher

    If we define a bean like the one below:

    @Bean
WebSecurityCustomizer configureWebSecurity() {
    return customizer -> customizer.ignoring()
        .requestMatchers(PathPatternRequestMatcher.withDefaults().matcher("/test/**"));
}

    an exception will occur because PathPatternRequestMatcher invokes ServletRequestPathUtils#parseAndCache(request):

    java.lang.UnsupportedOperationException: public abstract void jakarta.servlet.ServletRequest.setAttribute(java.lang.String, java.lang.Object) is not supported

  2. Request#getServletContext can be null, so we need to perform a null check before invoking the apply method.

@ngocnhan-tran1996
Prevent UnsupportedOperationException
c35d758 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
@ngocnhan-tran1996
Prevent NPE
9e0aca7 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Nov 18, 2025
@lrozenblyum
Copy link
Contributor

lrozenblyum commented Nov 21, 2025

Just wondering, will FilterChainProxy.getFilters return anything useful now or it will be always empty?

@ngocnhan-tran1996
Override remove method
fdd80a9 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
@ngocnhan-tran1996
Update testcase
07277a0 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
@rwinch rwinch self-assigned this Nov 21, 2025
@rwinch
Copy link
Member

rwinch commented Nov 21, 2025
edited
Loading

Thanks for the PR @ngocnhan-tran1996 I'm closing this because, as pointed out above, it is incorrect to always return false when the ServletContext is null.

@rwinch rwinch closed this Nov 21, 2025
@rwinch rwinch added status: invalid An issue that we don't feel is valid and removed status: waiting-for-triage An issue we've not yet triaged labels Nov 21, 2025
@ngocnhan-tran1996 ngocnhan-tran1996 deleted the gh-18157 branch November 22, 2025 01:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@rwinch rwinch

Labels

status: invalid An issue that we don't feel is valid

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ngocnhan-tran1996 @lrozenblyum @rwinch @spring-projects-issues