mocode-software/meldestelle
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

chore(infra): Network/Auth – DoD schließen

Browse Source 
- Entfernen/Deprecaten: `frontend/features/auth-feature/.../AuthenticatedHttpClient.kt` und alle manuellen `Authorization`‑Header‑Setzungen.
              - Stattdessen: DI‑`apiClient` via Koin injizieren (`single(named("apiClient"))`) und Token‑Anreicherung über Ktor `Auth` Plugin (Bearer) verdrahten.
              - Build‑Guard ergänzen: Auch Vorkommen von `HttpHeaders.Authorization` erkennen.
This commit is contained in:
Stefan Mogeritsch
2025-12-06 22:01:41 +01:00
parent b3927ed97c
commit 7d9d729d7d
8 changed files with 69 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files
frontend/core/network/src/commonMain/kotlin/at/mocode/frontend/core/network/NetworkModule.kt
+23 -2
View File
@@ -4,6 +4,8 @@ import io.ktor.client.HttpClient
import io.ktor.client.plugins.HttpRequestRetry
import io.ktor.client.plugins.HttpTimeout
import io.ktor.client.plugins.auth.Auth
import io.ktor.client.plugins.auth.providers.BearerTokens
import io.ktor.client.plugins.auth.providers.bearer
import io.ktor.client.plugins.contentnegotiation.ContentNegotiation
import io.ktor.client.plugins.defaultRequest
import io.ktor.client.plugins.logging.LogLevel
@@ -15,12 +17,20 @@ import kotlinx.serialization.json.Json
import org.koin.core.qualifier.named
import org.koin.dsl.module
/**
* Simple token provider interface so core network module does not depend on auth-feature.
*/
interface TokenProvider {
fun getAccessToken(): String?
}
/**
* Koin module that provides a preconfigured Ktor HttpClient under the named qualifier "apiClient".
* The client uses the environment-aware base URL from NetworkConfig.
*/
val networkModule = module {
single(named("apiClient")) {
val tokenProvider: TokenProvider? = try { get<TokenProvider>() } catch (_: Throwable) { null }
HttpClient {
// JSON (kotlinx) configuration
install(ContentNegotiation) {
@@ -50,9 +60,20 @@ val networkModule = module {
exponentialDelay()
}
// Authentication plugin (Bearer refresh can be wired later)
// Authentication plugin (Bearer)
install(Auth) {
// TODO: Wire token provider/refresh when auth is implemented
bearer {
loadTokens {
val token = tokenProvider?.getAccessToken()
token?.let { BearerTokens(it, refreshToken = "") }
}
// Only send token to our API base URL
sendWithoutRequest { request ->
val base = NetworkConfig.baseUrl.trimEnd('/')
val url = request.url.toString()
url.startsWith(base)
}
}
}
// Logging for development