[jboss-jira] [JBoss JIRA] (WFLY-13529) (7.3.z) WFLY-13527 - Thousand of unauthorized requests in between balancer and backend if backend is running in a cluster

Ilia Vassilev (Jira) issues at jboss.org
Thu May 28 07:46:09 EDT 2020 

Ilia Vassilev created WFLY-13529:
------------------------------------

             Summary: (7.3.z) WFLY-13527 - Thousand of unauthorized requests in between balancer and backend if backend is running in a cluster
                 Key: WFLY-13529
                 URL: https://issues.redhat.com/browse/WFLY-13529
             Project: WildFly
          Issue Type: Bug
            Reporter: Ilia Vassilev
            Assignee: Masafumi Miura


A standalone client application is calling EJBs on a backend server through an Undertow loadbalancer.

The client looks like this:

{code:java}
        Properties props = new Properties();
        props.put(Context.INITIAL_CONTEXT_FACTORY, WildFlyInitialContextFactory.class.getName());
        props.put(Context.PROVIDER_URL, "http://10.0.0.1:9080/wildfly-services");
        props.put(Context.SECURITY_PRINCIPAL, "some-user");
        props.put(Context.SECURITY_CREDENTIALS, "some-password");

        InitialContext      ctx = new InitialContext(props);
        String name="ejb:/playground-jar/JBossManIntClientBean!org.jboss.playground.JBossManIntClient";
        JBossManIntClient bean = (JBossManIntClient) ctx.lookup(name);
{code}

A client invoking the same EJB twice result in thousands of requests from the balancer to the backend servers, e. g.:

* 13468 times: 
{code}
INFO [io.undertow.accesslog] (default I/O-3) 10.0.0.1 - - [24/Sep/2019:12:03:03 +0200] "POST /wildfly-services/ejb/v1/invoke/-/playground-jar/-/JBossManIntClientBean/-/org.jboss.playground.JBossManIntClient/getHost HTTP/2.0" 401 77 "-" "-" Cookie: "-" Set-Cookie: "-" SessionID: - Thread: "default I/O-3" TimeTaken: 5063
{code}

* 2 times:
{code}
INFO [io.undertow.accesslog] (default I/O-3) 10.0.0.1 - - [24/Sep/2019:12:06:53 +0200] "POST /wildfly-services/ejb/v1/invoke/-/playground-jar/-/JBossManIntClientBean/-/org.jboss.playground.JBossManIntClient/getHost HTTP/2.0" 200 155 "-" "-" Cookie: "-" Set-Cookie: "-" SessionID: - Thread: "default I/O-3" TimeTaken: 614
{code}

*Note:* This behavior only occurs if there's more than a single backend server running in a cluster...



--
This message was sent by Atlassian Jira
(v7.13.8#713008)

More information about the jboss-jira mailing list