Skip to content

fix: Handle translation requests when session is expired #23239

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
mcollovati wants to merge 4 commits into
base: main
Choose a base branch
from
Open

fix: Handle translation requests when session is expired #23239

mcollovati wants to merge 4 commits into from
+123 −17

Conversation

@mcollovati
Copy link
Collaborator

@mcollovati mcollovati commented Jan 16, 2026

Implement SessionExpiredHandler in TranslationFileRequestHandler to serve translations even when no active session exists. This allows i18n requests to work correctly with stateless authentication.

Fixes #23238

@mcollovati mcollovati added target/24.9 target/25.0 Cherry-pick to 25.0 branch labels Jan 16, 2026
@github-actions
Copy link

github-actions bot commented Jan 16, 2026
edited
Loading

Test Results

1 313 files  ±0  1 313 suites  ±0   1h 12m 23s ⏱️ - 2m 52s
9 323 tests +4  9 255 ✅ +4  68 💤 ±0  0 ❌ ±0 
9 776 runs  +3  9 700 ✅ +3  76 💤 ±0  0 ❌ ±0 

Results for commit 8c1382e. ± Comparison against base commit 130c605.

♻️ This comment has been updated with latest results.

@Artur-
Copy link
Member

Artur- commented Jan 17, 2026

What is the session used for in the handler?

@Artur-
Copy link
Member

Artur- commented Jan 17, 2026

Apparently it is not used at all, but there is no way to have a request handler that does not care about the session?

@mcollovati
Copy link
Collaborator Author

mcollovati commented Jan 17, 2026

Exactly. Request Handlers are invoked after the attempt to create/get a Vaadin session is already done.
Maybe a workaround could be implement it as a Vaadin interceptor, but it doesn't seem the correct abstraction to use.

Artur-
Artur- reviewed Jan 18, 2026
View reviewed changes
flow-server/src/main/java/com/vaadin/flow/i18n/TranslationFileRequestHandler.java Outdated
@Override
public boolean synchronizedHandleRequest(VaadinSession session,
VaadinRequest request, VaadinResponse response) throws IOException {
handleTranslationRequest(session.getService(), request, response);
Copy link
Member

@Artur- Artur- Jan 18, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This could be request.getService() instead to be clear that the session is not needed

Copy link
Collaborator Author

@mcollovati mcollovati Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good point. I'll fix that.

Copy link
Collaborator Author

@mcollovati mcollovati Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

@mcollovati mcollovati requested a review from Artur- January 19, 2026 12:35
Artur-
Artur- previously approved these changes Jan 19, 2026
View reviewed changes
flow-server/src/main/java/com/vaadin/flow/i18n/TranslationFileRequestHandler.java Outdated
@Override
public boolean handleSessionExpired(VaadinRequest request,
VaadinResponse response) throws IOException {
if (!canHandleRequest(request)) {
Copy link
Member

@Artur- Artur- Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: Somehow this looks inverted to me when it could be "if we can handle, handle it, otherwise don't"

Copy link
Collaborator Author

@mcollovati mcollovati Jan 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

update

@mcollovati
fix: Handle translation requests when session is expired
3e568e3 
Implement SessionExpiredHandler in TranslationFileRequestHandler to
serve translations even when no active session exists. This allows
i18n requests to work correctly with stateless authentication.

Fixes #23238
@mcollovati
do not use VaadinSession in TranslationFileRequestHandler
7217851
@mcollovati
cleanup
e48fe56
@mcollovati
apply review suggestion
8c1382e
@mcollovati mcollovati force-pushed the issues/23238-TranslationFileRequestHandler_sessionExpired branch from dedacc9 to 8c1382e Compare January 19, 2026 13:21
@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 19, 2026

Quality Gate Passed Quality Gate passed

Issues
2546 New issues
2 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Artur- Artur- Artur- left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

target/24.9 target/25.0 Cherry-pick to 25.0 branch +0.1.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

i18n requests often fail with stateless authenticaction

3 participants

@mcollovati @Artur-