Merge pull request #64 from com-pas/deployment-gate-test

Make JWT Groups Path configurable (and some logging)

Author: Dennis Labordus

app/src/main/java/org/lfenergy/compas/scl/data/rest/v1/CompasCommonResource.java

@@ -8,10 +8,13 @@
 import org.lfenergy.compas.scl.data.model.SclType;
 import org.lfenergy.compas.scl.data.rest.v1.model.Type;
 import org.lfenergy.compas.scl.data.rest.v1.model.TypeListResponse;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
 import javax.enterprise.context.RequestScoped;
 import javax.inject.Inject;
 import javax.ws.rs.GET;
+import javax.ws.rs.HeaderParam;
 import javax.ws.rs.Path;
 import javax.ws.rs.Produces;
 import javax.ws.rs.core.MediaType;
@@ -25,13 +28,17 @@
 @RequestScoped
 @Path("/common/v1/")
 public class CompasCommonResource {
+    private static final Logger LOGGER = LoggerFactory.getLogger(CompasCommonResource.class);
+
     @Inject
     SecurityIdentity securityIdentity;
 
     @GET
     @Path("/type/list")
     @Produces(MediaType.APPLICATION_XML)
-    public TypeListResponse list() {
+    public TypeListResponse list(@HeaderParam("Authorization") String authHeader) {
+        LOGGER.debug("Authorization Header '{}'", authHeader);
+
         // Retrieve the roles the logged in user has.
         var roles = securityIdentity.getRoles();
 

app/src/main/resources/application.properties

@@ -24,9 +24,9 @@ basex.password  = ${BASEX_PASSWORD:admin}
 
 # Smallrye JWT Properties (Microprofile)
 smallrye.jwt.verify.key.location = ${JWT_VERIFY_KEY:http://localhost:8089/auth/realms/compas/protocol/openid-connect/certs}
-smallrye.jwt.path.groups         = resource_access/scl-data-service/roles
 mp.jwt.verify.issuer             = ${JWT_VERIFY_ISSUER:http://localhost:8089/auth/realms/compas}
 mp.jwt.verify.audiences          = ${JWT_VERIFY_CLIENT_ID:scl-data-service}
+smallrye.jwt.path.groups         = ${JWT_GROUPS_PATH:resource_access/scl-data-service/roles}
 
 quarkus.http.auth.permission.deny-default.paths=/*
 quarkus.http.auth.permission.deny-default.policy=deny