feat(authorization): option to install status pages

Author: slisson

authorization/src/main/kotlin/org/modelix/authorization/AuthorizationConfig.kt

@@ -33,6 +33,11 @@ interface IModelixAuthorizationConfig {
      */
     var debugEndpointsEnabled: Boolean
 
+    /**
+     * NotLoggedInException and NoPermissionException will be turned into HTTP status codes 401 and 403
+     */
+    var installStatusPages: Boolean
+
     /**
      * The pre-shared key for the HMAC512 signature algorithm.
      * The environment variables MODELIX_JWT_SIGNATURE_HMAC512_KEY or MODELIX_JWT_SIGNATURE_HMAC512_KEY_FILE can be
@@ -94,6 +99,7 @@ class ModelixAuthorizationConfig : IModelixAuthorizationConfig {
     override var permissionChecksEnabled: Boolean? = PERMISSION_CHECKS_ENABLED
     override var generateFakeTokens: Boolean? = getBooleanFromEnv("MODELIX_GENERATE_FAKE_JWT")
     override var debugEndpointsEnabled: Boolean = true
+    override var installStatusPages: Boolean = false
     override var hmac512Key: String? = null
     override var hmac384Key: String? = null
     override var hmac256Key: String? = null

authorization/src/main/kotlin/org/modelix/authorization/AuthorizationPlugin.kt

@@ -23,6 +23,7 @@ import io.ktor.server.auth.jwt.jwt
 import io.ktor.server.auth.principal
 import io.ktor.server.html.respondHtml
 import io.ktor.server.plugins.forwardedheaders.XForwardedHeaders
+import io.ktor.server.plugins.statuspages.StatusPages
 import io.ktor.server.response.respond
 import io.ktor.server.response.respondText
 import io.ktor.server.routing.Route
@@ -98,6 +99,17 @@ object ModelixAuthorization : BaseRouteScopedPlugin<IModelixAuthorizationConfig,
             }
         }
 
+        if (config.installStatusPages) {
+            application.install(StatusPages) {
+                exception<NotLoggedInException> { call, cause ->
+                    call.respondText(text = "401: ${cause.message}", status = HttpStatusCode.Unauthorized)
+                }
+                exception<NoPermissionException> { call, cause ->
+                    call.respondText(text = "403: ${cause.message}", status = HttpStatusCode.Forbidden)
+                }
+            }
+        }
+
         if (config.debugEndpointsEnabled) {
             application.routing {
                 authenticate(MODELIX_JWT_AUTH) {

model-server/src/main/kotlin/org/modelix/model/server/Main.kt

@@ -176,6 +176,7 @@ object Main {
                 install(Routing)
                 install(ModelixAuthorization) {
                     permissionSchema = ModelServerPermissionSchema.SCHEMA
+                    installStatusPages = false
                 }
                 install(ForwardedHeaders)
                 install(CallLogging) {