Tenant now uses WebClientSecurity module

Signed-off-by: David Kral <david.k.kral@oracle.com>
helidon-io · Aug 16, 2023 · 4eb2941 · 4eb2941
1 parent 97735c1
commit 4eb2941
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 6 deletions.
diff --git a/security/providers/oidc-common/pom.xml b/security/providers/oidc-common/pom.xml
@@ -54,6 +54,10 @@
             <groupId>io.helidon.nima.webclient</groupId>
             <artifactId>helidon-nima-webclient</artifactId>
         </dependency>
+        <dependency>
+            <groupId>io.helidon.nima.webclient</groupId>
+            <artifactId>helidon-nima-webclient-security</artifactId>
+        </dependency>
         <dependency>
             <groupId>io.helidon.nima.webclient</groupId>
             <artifactId>helidon-nima-webclient-tracing</artifactId>

diff --git a/...providers/oidc-common/src/main/java/io/helidon/security/providers/oidc/common/Tenant.java b/...providers/oidc-common/src/main/java/io/helidon/security/providers/oidc/common/Tenant.java
@@ -24,6 +24,7 @@
 import io.helidon.common.http.Http;
 import io.helidon.nima.webclient.api.WebClient;
 import io.helidon.nima.webclient.api.WebClientConfig;
+import io.helidon.nima.webclient.security.WebClientSecurity;
 import io.helidon.security.Security;
 import io.helidon.security.SecurityException;
 import io.helidon.security.jwt.jwk.JwkKeys;
@@ -121,12 +122,7 @@ public static Tenant create(OidcConfig oidcConfig, TenantConfig tenantConfig) {
                     .addOutboundSecurityProvider(httpBasicAuth)
                     .build();
 
-            //TODO Níma client security?
-//            webClientBuilder.addService(WebClientSecurity.create(tokenOutboundSecurity));
-            //This is workaround for missing Níma client security. This adds Authorization header to be used in every request.
-            byte[] byteArray = (tenantConfig.clientId() + ":" + tenantConfig.clientSecret()).getBytes(StandardCharsets.UTF_8);
-            String base64 = Base64.getEncoder().encodeToString(byteArray);
-            webClientBuilder.addHeader(Http.HeaderNames.AUTHORIZATION, "Basic " + base64);
+            webClientBuilder.addService(WebClientSecurity.create(tokenOutboundSecurity));
         }
 
         WebClient appWebClient = webClientBuilder.build();

diff --git a/security/providers/oidc-common/src/main/java/module-info.java b/security/providers/oidc-common/src/main/java/module-info.java
@@ -34,6 +34,7 @@
     requires static io.helidon.config.metadata;
     requires io.helidon.cors;
     requires io.helidon.nima.http.media.jsonp;
+    requires io.helidon.nima.webclient.security;
     requires io.helidon.nima.webclient.tracing;
 
     exports io.helidon.security.providers.oidc.common;