Closed janchristian-haddorp closed 1 year ago
Hi @janchristian-haddorp, I believe this is a duplicate of https://github.com/spring-projects/spring-security/issues/12780.
Can you test if Spring Security 6.0.3-SNAPSHOT fixes that problem?
I'll close this as a duplicate but feel free to continue the discussion if your scenario is different.
@marcusdacoregio, thanks for the update. Yes, using following libs fixes the problem...
implementation 'org.springframework.security:spring-security-core:6.0.3-SNAPSHOT'
implementation 'org.springframework.security:spring-security-config:6.0.3-SNAPSHOT'
Starting with Spring Boot 3.0.3 the annotation @EnableReactiveMethodSecurity causes problems on Prometheus metrics (httpserver and httpclient are missing).
Normally http://localhost:8080/actuator/prometheus will include several http metrics. When adding @EnableReactiveMethodSecurity to security config all these metrics disappear. Spring Boot 3.0.2 and earlier didn't show this effect.
Expected metrics / missing with Spring Boot 3.0.3
Sample security config
Gradle dependencies
Workaround Remove @EnableReactiveMethodSecurity annotation if not explicit needed.