Standardize the examples

security-keycloak-authorization-quickstart/pom.xml

@@ -45,16 +45,15 @@
             <groupId>io.quarkus</groupId>
             <artifactId>quarkus-resteasy-jackson</artifactId>
         </dependency>
-
-        <!-- Test -->
+        <!-- Test dependencies -->
         <dependency>
-            <groupId>io.rest-assured</groupId>
-            <artifactId>rest-assured</artifactId>
+            <groupId>io.quarkus</groupId>
+            <artifactId>quarkus-junit5</artifactId>
             <scope>test</scope>
         </dependency>
         <dependency>
-            <groupId>io.quarkus</groupId>
-            <artifactId>quarkus-junit5</artifactId>
+            <groupId>io.rest-assured</groupId>
+            <artifactId>rest-assured</artifactId>
             <scope>test</scope>
         </dependency>
         <dependency>

security-keycloak-authorization-quickstart/src/main/java/org/acme/security/keycloak/authorization/AdminResource.java

@@ -1,3 +1,18 @@
+/**
+ * Copyright 2019 Red Hat, Inc, and individual contributors.
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
 package org.acme.security.keycloak.authorization;
 
 import javax.ws.rs.GET;
@@ -10,7 +25,7 @@ public class AdminResource {
 
     @GET
     @Produces(MediaType.APPLICATION_JSON)
-    public String manage() {
+    public String admin() {
         return "granted";
     }
 }

security-keycloak-authorization-quickstart/src/main/java/org/acme/security/keycloak/authorization/UserResource.java

@@ -1,3 +1,18 @@
+/**
+ * Copyright 2019 Red Hat, Inc, and individual contributors.
+ * <p>
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * <p>
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * <p>
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
 package org.acme.security.keycloak.authorization;
 
 import javax.inject.Inject;
@@ -12,21 +27,21 @@
 public class UserResource {
 
     @Inject
-    SecurityIdentity keycloakSecurityContext;
+    SecurityIdentity identity;
 
     @GET
     @Path("/me")
     @Produces(MediaType.APPLICATION_JSON)
     public User me() {
-        return new User(keycloakSecurityContext);
+        return new User(identity);
     }
 
     public static class User {
 
         private final String userName;
 
-        User(SecurityIdentity securityContext) {
-            this.userName = securityContext.getPrincipal().getName();
+        User(SecurityIdentity identity) {
+            this.userName = identity.getPrincipal().getName();
         }
 
         public String getUserName() {

security-keycloak-authorization-quickstart/src/test/java/org/acme/security/keycloak/authorization/NativePolicyEnforcerIT.java

@@ -2,9 +2,6 @@
 
 import io.quarkus.test.junit.QuarkusIntegrationTest;
 
-/**
- * @author <a href="mailto:[email protected]">Pedro Igor</a>
- */
 @QuarkusIntegrationTest
 public class NativePolicyEnforcerIT extends PolicyEnforcerTest {
 }

security-keycloak-authorization-quickstart/src/test/java/org/acme/security/keycloak/authorization/PolicyEnforcerTest.java

@@ -20,6 +20,12 @@ public void testAccessUserResource() {
                 .when().get("/api/users/me")
                 .then()
                 .statusCode(200);
+
+        RestAssured.given().auth().oauth2(getAccessToken("admin"))
+                .when().get("/api/users/me")
+                .then()
+                .statusCode(200);
+
         RestAssured.given().auth().oauth2(getAccessToken("jdoe"))
                 .when().get("/api/users/me")
                 .then()

security-openid-connect-quickstart/pom.xml

@@ -32,6 +32,10 @@
     </dependencyManagement>
 
     <dependencies>
+        <dependency>
+            <groupId>io.quarkus</groupId>
+            <artifactId>quarkus-keycloak-authorization</artifactId>
+        </dependency>
         <dependency>
             <groupId>io.quarkus</groupId>
             <artifactId>quarkus-oidc</artifactId>
@@ -104,6 +108,7 @@
             </activation>
             <properties>
                 <quarkus.package.type>native</quarkus.package.type>
+                <quarkus.native.enable-https-url-handler>true</quarkus.native.enable-https-url-handler>
             </properties>
             <build>
                 <plugins>

security-openid-connect-quickstart/src/main/java/org/acme/security/openid/connect/AdminResource.java

@@ -23,9 +23,6 @@
 
 import io.quarkus.security.Authenticated;
 
-/**
- * @author <a href="mailto:[email protected]">Pedro Igor</a>
- */
 @Path("/api/admin")
 @Authenticated
 public class AdminResource {

security-openid-connect-quickstart/src/test/java/org/acme/security/openid/connect/BearerTokenAuthenticationTest.java

@@ -10,29 +10,42 @@ public class BearerTokenAuthenticationTest {
 
     KeycloakTestClient keycloakClient = new KeycloakTestClient();
 
+    static {
+        RestAssured.useRelaxedHTTPSValidation();
+    }
+
     @Test
-    public void testAdminAccess() {
+    public void testUserAccess() {
+        RestAssured.given().auth().oauth2(getAccessToken("alice"))
+                .when().get("/api/users/me")
+                .then()
+                .statusCode(200);
+
         RestAssured.given().auth().oauth2(getAccessToken("admin"))
-                .when().get("/api/admin")
+                .when().get("/api/users/me")
                 .then()
                 .statusCode(200);
 
-        RestAssured.given().auth().oauth2(getAccessToken("alice"))
-                .when().get("/api/admin")
+        RestAssured.given().auth().oauth2(getAccessToken("jdoe"))
+                .when().get("/api/users/me")
                 .then()
-                .statusCode(403);
+                .statusCode(200);
     }
 
     @Test
-    public void testUserAccess() {
-
+    public void testAdminAccess() {
         RestAssured.given().auth().oauth2(getAccessToken("alice"))
-                .when().get("/api/users/me")
+                .when().get("/api/admin")
                 .then()
-                .statusCode(200);
+                .statusCode(403);
+
+        RestAssured.given().auth().oauth2(getAccessToken("jdoe"))
+                .when().get("/api/admin")
+                .then()
+                .statusCode(403);
 
         RestAssured.given().auth().oauth2(getAccessToken("admin"))
-                .when().get("/api/users/me")
+                .when().get("/api/admin")
                 .then()
                 .statusCode(200);
     }