cameleer/cameleer-server
1
0
Fork 0
Code Issues 45 Pull Requests Actions Packages Projects Releases Wiki Activity

fix: agent token refresh returns 404 after server restart
All checks were successful
CI / cleanup-branch (push) Has been skipped
Details
CI / build (push) Successful in 1m8s
Details
CI / docker (push) Successful in 42s
Details
CI / deploy-feature (push) Has been skipped
Details
CI / deploy (push) Successful in 1m23s
Details

Browse Source 
The refresh endpoint required the agent to exist in the in-memory
registry. After server restart the registry is empty, so all refresh
attempts got 404. The refresh token itself is self-contained with
subject, application, and roles — the registry lookup is optional.

Now uses application from the JWT, falling back to registry only
if the agent happens to be registered.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
hsiegeln
2026-04-03 10:37:57 +02:00
parent bdac363e40
commit 0632f1c6a8
1 changed files with 11 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
cameleer3-server-app/src/main/java/com/cameleer3/server/app/controller/AgentRegistrationController.java
View File

@@ -173,17 +173,19 @@ public class AgentRegistrationController {
return ResponseEntity.status(401).build(); return ResponseEntity.status(401).build();
} }
// Verify agent exists // Preserve roles and application from refresh token
AgentInfo agent = registryService.findById(agentId);
if (agent == null) {
return ResponseEntity.notFound().build();
}
// Preserve roles from refresh token
List<String> roles = result.roles().isEmpty() List<String> roles = result.roles().isEmpty()
? List.of("AGENT") : result.roles(); ? List.of("AGENT") : result.roles();
String newAccessToken = jwtService.createAccessToken(agentId, agent.applicationId(), roles); String application = result.application() != null ? result.application() : "default";
String newRefreshToken = jwtService.createRefreshToken(agentId, agent.applicationId(), roles);
// Try to get application from registry if available (agent may not be registered after server restart)
AgentInfo agent = registryService.findById(agentId);
if (agent != null) {
application = agent.applicationId();
}
String newAccessToken = jwtService.createAccessToken(agentId, application, roles);
String newRefreshToken = jwtService.createRefreshToken(agentId, application, roles);
auditService.log(agentId, "agent_token_refresh", AuditCategory.AUTH, agentId, auditService.log(agentId, "agent_token_refresh", AuditCategory.AUTH, agentId,
null, AuditResult.SUCCESS, httpRequest); null, AuditResult.SUCCESS, httpRequest);