Fix keycloak deployment in dev profile

barreiro · barreiro · commit 3d33755ec19e · 2024-08-09T14:03:52.000+01:00
diff --git a/horreum-backend/src/main/java/io/hyperfoil/tools/horreum/server/SecurityBootstrap.java b/horreum-backend/src/main/java/io/hyperfoil/tools/horreum/server/SecurityBootstrap.java
@@ -9,6 +9,7 @@
 import io.hyperfoil.tools.horreum.svc.Roles;
 import io.hyperfoil.tools.horreum.svc.user.UserBackEnd;
 import io.quarkus.logging.Log;
+import io.quarkus.runtime.LaunchMode;
 import io.quarkus.runtime.StartupEvent;
 import jakarta.enterprise.context.ApplicationScoped;
 import jakarta.enterprise.event.Observes;
@@ -25,8 +26,6 @@
 import java.util.Map;
 import java.util.Optional;
 
-import static io.quarkus.runtime.configuration.ProfileManager.getLaunchMode;
-
 @ApplicationScoped public class SecurityBootstrap {
 
     @ConfigProperty(name = "quarkus.keycloak.admin-client.server-url") Optional<String> keycloakURL;
@@ -121,7 +120,7 @@ public void checkBootstrapAccount() {
         if (administrators.isEmpty()) {
             UserService.NewUser user = new UserService.NewUser();
             user.user = new UserService.UserData("", BOOTSTRAP_ACCOUNT, "Bootstrap", "Acount", "horreum@example.com");
-            user.password = providedBootstrapPassword.orElseGet(() -> getLaunchMode().isDevOrTest() ? "secret" : generateRandomPassword(RANDOM_PASSWORD_DEFAULT_LENGTH));
+            user.password = providedBootstrapPassword.orElseGet(() -> LaunchMode.current().isDevOrTest() ? "secret" : generateRandomPassword(RANDOM_PASSWORD_DEFAULT_LENGTH));
 
             // create bootstrap acconut with admin role
             backend.get().createUser(user);
diff --git a/horreum-backend/src/main/resources/application.properties b/horreum-backend/src/main/resources/application.properties
@@ -100,6 +100,7 @@ quarkus.oidc.client-id=horreum
 
 ## Do not un comment the line below, there appears to be a bug in Quarkus 3.4.1 where dev services do not overwrite the config property
 quarkus.oidc.credentials.secret=overridden-in-file-dot-env
+%dev.quarkus.oidc.credentials.secret=**********
 
 # This option lets HorreumAuthorizationFilter transform app keys sent as tokens
 quarkus.http.auth.proactive=false
@@ -113,9 +114,6 @@ quarkus.keycloak.admin-client.client-id=horreum
 quarkus.keycloak.admin-client.client-secret=${quarkus.oidc.credentials.secret}
 quarkus.keycloak.admin-client.realm=${horreum.keycloak.realm}
 quarkus.keycloak.admin-client.grant-type=CLIENT_CREDENTIALS
-%dev.quarkus.keycloak.admin-client.client-id=admin-cli
-%dev.quarkus.keycloak.admin-client.realm=master
-%dev.quarkus.keycloak.admin-client.grant-type=PASSWORD
 
 # Secret used to sign database rows
 horreum.db.secret=secret
