InseeFr
diff --git a/‎.github/workflows/release.yml‎
Lines changed: 5 additions & 6 deletions b/‎.github/workflows/release.yml‎
Lines changed: 5 additions & 6 deletions
diff --git a/‎Dockerfile‎
Lines changed: 15 additions & 3 deletions b/‎Dockerfile‎
Lines changed: 15 additions & 3 deletions
diff --git a/‎README.md‎
Lines changed: 7 additions & 6 deletions b/‎README.md‎
Lines changed: 7 additions & 6 deletions
diff --git a/‎pom.xml‎
Lines changed: 29 additions & 166 deletions b/‎pom.xml‎
Lines changed: 29 additions & 166 deletions
@@ -35,15 +35,14 @@ jobs:
         run: echo "::set-output name=prop::$(mvn -f pom.xml help:evaluate -Dexpression=project.version -q -DforceStdout)"
       - run: echo ${{steps.version.outputs.prop}}
       - name: Release snapshot
-        id: release_snapshot
-        uses: actions/create-release@v4
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        uses: softprops/action-gh-release@v1
         with:
-          tag_name: ${{steps.version.outputs.prop}}
-          release_name: Release ${{steps.version.outputs.prop}}
+          tag_name: ${{ steps.version.outputs.prop }}
+          name: Release ${{ steps.version.outputs.prop }}
           draft: false
           prerelease: false
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
   docker:
     needs: build
     runs-on: ubuntu-latest
 
@@ -1,5 +1,17 @@
-FROM tomcat:8.5-jdk11-slim
+FROM tomcat:9-jre17-temurin
 
-RUN rm -rf $CATALINA_HOME/webapps/*
+# Create a non-root user and group
+
+RUN rm -rf "$CATALINA_HOME"/webapps/*
 COPY sabdatab.properties log4j2.xml $CATALINA_HOME/webapps/
-ADD /target/*.war $CATALINA_HOME/webapps/ROOT.war
+COPY target/*.war $CATALINA_HOME/webapps/ROOT.war
+
+# Setup a non-root user context (security)
+RUN addgroup -g 1000 tomcatgroup; \
+    adduser -D -s / -u 1000 tomcatuser -G tomcatgroup; \
+    chown -R tomcat:tomcat "$CATALINA_HOME"
+
+USER 1000
+
+# Start Tomcat
+CMD ["catalina.sh", "run"]
@@ -17,7 +17,7 @@ To override environments variables you can do :
 
 ### With Maven - Requirements
 For building and running the application you need:
-- [JDK 11](https://jdk.java.net/archive/)
+- [JDK 17](https://adoptium.net/fr/temurin/releases/?version=17)
 - Maven 3  
 
 ### With Maven - Install and execute unit tests
@@ -33,31 +33,32 @@ mvn spring-boot:run
 ```  
 
 ## Application Accesses locally
-To access to swagger-ui, use this url : [http://localhost:8080/api/swagger-ui.html](http://localhost:8080/api/swagger-ui.html)  
+To access to swagger-ui, use this url : [http://localhost:8080/api/swagger-ui.html](http://localhost:8080/)  
 
 ## Deploy application on Tomcat server
 ### 1. Package the application
 Use the [Spring Boot Maven plugin]  (https://docs.spring.io/spring-boot/docs/current/reference/html/build-tool-plugins-maven-plugin.html) like so:  
 ```shell
 mvn clean package
 ```  
-The war will be generate in `/target` repository  
+The war will be generated in `/target` repository  
 
 ### 2. Install tomcat and deploy war
 To deploy the war file in Tomcat, you need to : 
 Download Apache Tomcat and unpackage it into a tomcat folder  
 Copy your WAR file from target/ to the tomcat/webapps/ folder  
 
 ### 3. Tomcat config
-Before to startup the tomcat server, some configurations are needed : 
+Before starting up the tomcat server, some configurations are needed : 
 
 
 #### External Properties file
+!!! => To be migrated to embedded Tomcat and env-var configuration  
 Create sabdatab.properties near war file and complete the following properties:  
-```shell  
+```properties  
 #Profile configuration
 
-# Security : "keycloak" or "none"
+# Security : "keycloak" for keycloak impl, anything else => no auth
 fr.insee.sabianedata.security=none
 
 #############  Swagger host ############# 
 
@@ -1,47 +1,32 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0"
-	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+		 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+		 xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
 	<modelVersion>4.0.0</modelVersion>
 
+
+	<parent>
+		<groupId>org.springframework.boot</groupId>
+		<artifactId>spring-boot-starter-parent</artifactId>
+		<version>3.4.4</version>
+		<relativePath/> <!-- Use default parent from central repo -->
+	</parent>
+
 	<groupId>fr.insee</groupId>
 	<artifactId>sabdatab</artifactId>
 	<packaging>war</packaging>
-	<version>3.0.7</version>
+	<version>4.0.0</version>
 	<name>Sabiane Data</name>
 
 	<properties>
-		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-		<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
 		<java.version>17</java.version>
-		<maven.compiler.source>${java.version}</maven.compiler.source>
-		<maven.compiler.target>${java.version}</maven.compiler.target>
-		<failOnMissingWebXml>false</failOnMissingWebXml>
-
 		<final.war.name>sabdatab</final.war.name>
-		<javax.activation.version>1.2.0</javax.activation.version>
-		<jaxb.api.version>2.3.0</jaxb.api.version>
-		<springdoc-openapi-ui.version>1.5.5</springdoc-openapi-ui.version>
-		<saxon.version>10.6</saxon.version>
-		<xalan.version>2.7.3</xalan.version>
-		<commons-io.version>2.11.0</commons-io.version>
-		<log4j2.version>2.17.1</log4j2.version>
-		<spring-boot-dependencies.version>2.6.6</spring-boot-dependencies.version>
-
+		<springdoc-openapi-ui.version>1.7.0</springdoc-openapi-ui.version>
+		<saxon.version>12.5</saxon.version>
+		<commons-io.version>2.18.0</commons-io.version>
+		<log4j2.version>2.22.1</log4j2.version>
+		<keycloak.version>21.1.1</keycloak.version>
 	</properties>
 
-	<repositories>
-		<repository>
-			<id>maven2-repository.java.net</id>
-			<name>Java.net Repository for Maven</name>
-			<url>https://maven.java.net/content/groups/public/</url>
-			<layout>default</layout>
-		</repository>
-		<repository>
-			<id>repository.spring.release</id>
-			<name>Spring GA Repository</name>
-			<url>http://repo.spring.io/release</url>
-		</repository>
-	</repositories>
 
 	<dependencies>
 		<!-- spring-web -->
@@ -55,49 +40,34 @@
 			<artifactId>spring-boot-starter-security</artifactId>
 		</dependency>
 
-
 		<!-- swagger -->
 		<dependency>
 			<groupId>org.springdoc</groupId>
-			<artifactId>springdoc-openapi-ui</artifactId>
-			<version>${springdoc-openapi-ui.version}</version>
+			<artifactId>springdoc-openapi-starter-webmvc-ui</artifactId>
+			<version>2.8.6</version>
 		</dependency>
 
 		<dependency>
-			<groupId>org.keycloak</groupId>
-			<artifactId>keycloak-spring-boot-starter</artifactId>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-oauth2-resource-server</artifactId>
 		</dependency>
+
 		<dependency>
 			<groupId>net.sf.saxon</groupId>
 			<artifactId>Saxon-HE</artifactId>
 			<version>${saxon.version}</version>
 		</dependency>
-		<dependency>
-			<groupId>xalan</groupId>
-			<artifactId>xalan</artifactId>
-			<version>${xalan.version}</version>
-		</dependency>
 
-		<dependency>
-			<groupId>com.fasterxml.jackson.module</groupId>
-			<artifactId>jackson-module-jaxb-annotations</artifactId>
-		</dependency>
 		<dependency>
 			<groupId>com.fasterxml.jackson.dataformat</groupId>
 			<artifactId>jackson-dataformat-xml</artifactId>
 		</dependency>
 
-		<dependency>
-			<groupId>com.googlecode.json-simple</groupId>
-			<artifactId>json-simple</artifactId>
-			<version>1.1.1</version>
-		</dependency>
-
 		<!-- Lombok -->
 		<dependency>
 			<groupId>org.projectlombok</groupId>
 			<artifactId>lombok</artifactId>
-			<version>1.18.32</version>
+			<version>1.18.36</version>
 			<optional>true</optional>
 		</dependency>
 
@@ -124,119 +94,14 @@
 		</dependency>
 
 		<dependency>
-			<groupId>com.sun.activation</groupId>
-			<artifactId>javax.activation</artifactId>
-			<version>${javax.activation.version}</version>
-		</dependency>
-
-		<dependency>
-			<groupId>javax.xml.bind</groupId>
-			<artifactId>jaxb-api</artifactId>
-			<version>${jaxb.api.version}</version>
-		</dependency>
-
-		<dependency>
-			<groupId>com.sun.xml.bind</groupId>
-			<artifactId>jaxb-core</artifactId>
-			<version>${jaxb.api.version}</version>
-		</dependency>
-
-		<dependency>
-			<groupId>com.sun.xml.bind</groupId>
-			<artifactId>jaxb-impl</artifactId>
-			<version>${jaxb.api.version}</version>
-		</dependency>
-
-		<!-- test -->
-		<dependency>
-			<groupId>org.apache.httpcomponents</groupId>
-			<artifactId>httpclient</artifactId>
-		</dependency>
-
-		<dependency>
-			<groupId>org.apache.httpcomponents</groupId>
-			<artifactId>httpmime</artifactId>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-test</artifactId>
-			<scope>test</scope>
-		</dependency>
-		<dependency>
-			<groupId>org.springframework</groupId>
-			<artifactId>spring-test</artifactId>
-			<scope>test</scope>
-		</dependency>
-
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-test-autoconfigure</artifactId>
-			<scope>test</scope>
+			<groupId>jakarta.servlet</groupId>
+			<artifactId>jakarta.servlet-api</artifactId>
+			<version>6.1.0</version>
+			<scope>provided</scope>
 		</dependency>
 
-		<dependency>
-			<groupId>org.springframework.boot</groupId>
-			<artifactId>spring-boot-starter-actuator</artifactId>
-		</dependency>
-
-
-		<dependency>
-			<groupId>junit</groupId>
-			<artifactId>junit</artifactId>
-			<scope>test</scope>
-		</dependency>
-
-		<!-- Prometheus Metrics -->
-		<dependency>
-			<groupId>io.micrometer</groupId>
-			<artifactId>micrometer-registry-prometheus</artifactId>
-			<version>1.7.0</version>
-		</dependency>
 	</dependencies>
 
-	<dependencyManagement>
-		<dependencies>
-
-			<dependency>
-				<groupId>org.keycloak.bom</groupId>
-				<artifactId>keycloak-adapter-bom</artifactId>
-				<version>15.0.2</version>
-				<type>pom</type>
-				<scope>import</scope>
-			</dependency>
-			<!-- permet de garder l'héritage des versions springboot sans dépendre
-				du parent -->
-			<dependency>
-				<groupId>org.springframework.boot</groupId>
-				<artifactId>spring-boot-dependencies</artifactId>
-				<version>${spring-boot-dependencies.version}</version>
-				<type>pom</type>
-				<scope>import</scope>
-			</dependency>
-			<dependency>
-				<groupId>org.apache.logging.log4j</groupId>
-				<artifactId>log4j-api</artifactId>
-				<version>${log4j2.version}</version>
-			</dependency>
-			<dependency>
-				<groupId>org.apache.logging.log4j</groupId>
-				<artifactId>log4j-core</artifactId>
-				<version>${log4j2.version}</version>
-			</dependency>
-			<dependency>
-				<groupId>org.apache.logging.log4j</groupId>
-				<artifactId>log4j-jul</artifactId>
-				<version>${log4j2.version}</version>
-			</dependency>
-			<dependency>
-				<groupId>org.apache.logging.log4j</groupId>
-				<artifactId>log4j-slf4j-impl</artifactId>
-				<version>${log4j2.version}</version>
-			</dependency>
-		</dependencies>
-	</dependencyManagement>
-
-
 	<build>
 		<finalName>${final.war.name}</finalName>
 		<resources>
@@ -266,7 +131,6 @@
 			<plugin>
 				<groupId>org.springframework.boot</groupId>
 				<artifactId>spring-boot-maven-plugin</artifactId>
-				<version>${spring-boot-dependencies.version}</version>
 				<executions>
 					<execution>
 						<id>repackage</id>
@@ -275,10 +139,9 @@
 						</goals>
 					</execution>
 					<execution>
-						<id>conf</id>
-						<configuration>
-							<mainClass>fr.insee.sabianedata.ws.AppWS</mainClass>
-						</configuration>
+						<goals>
+							<goal>build-info</goal>
+						</goals>
 					</execution>
 				</executions>
 			</plugin>