Description:
I developed a custom authentication plugin for Nexus 3, but it only intercepts Basic Auth requests. For Bearer Token (or other authentication methods), the realm seems to be ignored despite overriding supports() to return true.
Problem Details:
The plugin extends AuthorizingRealm and is annotated with @Named and @Singleton.
The supports() method returns true for all tokens (verified via logs), but doGetAuthenticationInfo() is never called for Bearer Token requests.Basic Auth works correctly (logs show the realm is invoked).
Code Snippet:
@Singleton
@Named("CustomRealm")
public class CustomAuthenticatingRealm extends AuthorizingRealm {
@Override
public boolean supports(AuthenticationToken token) {
// Always returns true, but Bearer Token doesn't trigger this realm
return true;
}
@Override
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) {
// Not reached for Bearer Token requests
return null;
}
}
Question to the Community:
How can I configure Nexus or modify the plugin to ensure my realm participates in the authentication chain for Bearer Token requests? Are there additional configurations or interfaces required? Any code examples would be greatly appreciated.
Thank you!
I appreciate any guidance or insights from the community.