lionsdev/unionflow-server-impl-quarkus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: sécuriser endpoints organisations + stats par org + fix IP dev

Browse Source 
- PUT /{id}: check appartenance ADMIN_ORGANISATION (403 si pas membre)
- GET /statistiques: stats scoped à l'org active pour ADMIN_ORGANISATION
- OrganisationService.obtenirStatistiquesParOrganisation(): stats mono-org
- MembreOrganisationRepository.findByMembreEmailAndOrganisationId()
- application-dev: IP 192.168.1.145→localhost pour Keycloak
This commit is contained in:
dahoud
2026-04-18 08:07:04 +00:00
parent 9f14c2e345
commit 9a53ce4077
4 changed files with 83 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/main/resources/application-dev.properties
View File

@@ -24,7 +24,7 @@ quarkus.http.cors.origins=*
# Keycloak / OIDC local
quarkus.oidc.tenant-enabled=true
quarkus.oidc.auth-server-url=http://192.168.1.145:8180/realms/unionflow
quarkus.oidc.auth-server-url=http://localhost:8180/realms/unionflow
quarkus.oidc.client-id=unionflow-server
# Audience mapper configuré sur unionflow-client et unionflow-mobile dans Keycloak
# → les tokens contiennent désormais "unionflow-server" dans le claim aud
@@ -65,7 +65,7 @@ quarkus.oidc-client.admin-service.tls.verification=none
quarkus.oidc-client.admin-service.early-tokens-acquisition=true
# Keycloak Admin API (dev)
keycloak.admin.url=http://192.168.1.145:8180
keycloak.admin.url=http://localhost:8180
keycloak.admin.username=${KEYCLOAK_ADMIN_USERNAME:admin}
keycloak.admin.password=${KEYCLOAK_ADMIN_PASSWORD:admin}
keycloak.admin.realm=unionflow