lionsdev/unionflow-server-impl-quarkus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0b79a2ee6876435cb0f2743e78cf293f4392a4e0
unionflow-server-impl-quarkus/src/main/java/dev/lions/unionflow/server/client/RoleServiceClient.java
dahoud 0b79a2ee68 fix(admin): utiliser AdminServiceTokenHeadersFactory pour UserServiceClient et RoleServiceClient 
Les appels vers lions-user-manager nécessitent un token du realm lions-user-manager
(service account). OidcTokenPropagationHeadersFactory transmettait le token utilisateur
du realm unionflow → 401 systématique. AdminServiceTokenHeadersFactory injecte le bon
token via l'OIDC client admin-service.
2026-04-12 15:00:34 +00:00

58 lines
1.8 KiB
Java
Raw Blame History

package dev.lions.unionflow.server.client;
import dev.lions.user.manager.dto.role.RoleDTO;
import jakarta.ws.rs.*;
import jakarta.ws.rs.core.MediaType;
import org.eclipse.microprofile.rest.client.annotation.RegisterClientHeaders;
import org.eclipse.microprofile.rest.client.inject.RegisterRestClient;
import java.util.List;
/**
* REST Client pour l'API rôles de lions-user-manager (Keycloak).
* Même base URL que UserServiceClient (configKey = lions-user-manager-api).
*/
@Path("/api/roles")
@RegisterRestClient(configKey = "lions-user-manager-api")
@RegisterClientHeaders(AdminServiceTokenHeadersFactory.class)
@Produces(MediaType.APPLICATION_JSON)
@Consumes(MediaType.APPLICATION_JSON)
public interface RoleServiceClient {
@GET
@Path("/realm")
List<RoleDTO> getRealmRoles(@QueryParam("realm") String realmName);
@GET
@Path("/user/realm/{userId}")
List<RoleDTO> getUserRealmRoles(
@PathParam("userId") String userId,
@QueryParam("realm") String realmName
);
@POST
@Path("/assign/realm/{userId}")
void assignRealmRoles(
@PathParam("userId") String userId,
@QueryParam("realm") String realmName,
RoleNamesRequest request
);
@POST
@Path("/revoke/realm/{userId}")
void revokeRealmRoles(
@PathParam("userId") String userId,
@QueryParam("realm") String realmName,
RoleNamesRequest request
);
/** Corps de requête pour assign/revoke (compatible lions-user-manager). */
class RoleNamesRequest {
public List<String> roleNames;
public RoleNamesRequest() {}
public RoleNamesRequest(List<String> roleNames) { this.roleNames = roleNames; }
public List<String> getRoleNames() { return roleNames; }
public void setRoleNames(List<String> roleNames) { this.roleNames = roleNames; }
}
}
Reference in New Issue View Git Blame Copy Permalink