我今天正在尝试Camunda Enterprise,并注意到了这个问题:
java.lang.IllegalStateException: Cannot create a session after the response has been committed
at org.apache.catalina.connector.Request.doGetSession(Request.java:2993)
at org.apache.catalina.connector.Request.getSession(Request.java:2432)
at org.apache.catalina.connector.RequestFacade.getSession(RequestFacade.java:908)
at org.apache.catalina.connector.RequestFacade.getSession(RequestFacade.java:920)
at org.camunda.bpm.webapp.impl.security.auth.AuthenticationFilter.doFilter(AuthenticationFilter.java:68)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
at com.parkway.camunda.config.filter.CorsFilter.doFilterInternal(CorsFilter.java:25)
at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:119)
...
不确定这个错误是不是? 仅发生在
Spring-Boot: (v2.2.1.RELEASE)
Camunda BPM: (v7.12.0-ee)
Camunda BPM Spring Boot Starter: (v3.4.0)
我尝试使用相同的代码集,并且可以正常工作
Spring-Boot: (v2.2.1.RELEASE)
Camunda BPM: (v7.10.0)
Camunda BPM Spring Boot Starter: (v3.2.0)
有人可以帮我检查吗?
谢谢,
答案 0 :(得分:0)
在互联网上搜索了一天之后,我终于找到了问题。
根本原因:,因为我在Camunda网站外部调用REST API,但未启用身份验证机制,也未使用/ api / abc / do-something
参考:https://docs.camunda.org/manual/7.6/reference/rest/overview/authentication/
REST API附带了HTTP基本身份验证的实现。默认情况下它是关闭的。
任何不针对特定引擎的请求(即,其格式不是/ engine / {name} / ...)都将针对默认引擎进行身份验证。
解决方案:
from /api/abc/do-something -> /engine/api/abc/do-something
@Configuration
public class CamundaSecurityFilter {
@Bean
public FilterRegistrationBean processEngineAuthenticationFilter() {
FilterRegistrationBean registration = new FilterRegistrationBean();
registration.setName("camunda-auth");
registration.setFilter(getProcessEngineAuthenticationFilter());
registration.addInitParameter("authentication-provider",
"org.camunda.bpm.engine.rest.security.auth.impl.HttpBasicAuthenticationProvider");
registration.addUrlPatterns("/*");
return registration;
}
@Bean
public Filter getProcessEngineAuthenticationFilter() {
return new ProcessEngineAuthenticationFilter();
}
}
感谢这些人:https://forum.camunda.org/t/turn-on-basic-http-authentication-for-rest-api-in-spring-boot/3431