WebServer
Maven Coordinates
To integrate web server, add the following dependency to your project’s pom.xml file:
Maven Dependency:
<dependency>
<groupId>io.helidon.webserver</groupId>
<artifactId>helidon-webserver-security</artifactId>
</dependency>
Usage
There are two steps to configure security with WebServer:
- Create a security instance and register it with the server.
- Protect server routes with optional security features.
Example using builders:
Note: defaults section in configuration is related to paths on WebServer
configured below in paths section, it will not apply to any other path on the
webserver.
Protecting Endpoints
There are several endpoints provided by Helidon services, such as:
- Health endpoint (
/health) - Metrics endpoint (
/metrics) - OpenAPI endpoint (
/openapi) - Configured static content (can use any path configured)
These endpoints are all implemented using Helidon WebServer and as such can be protected only through Security integration with WebServer.
The following section describes configuration of such protection using
configuration files, in this case using a yaml file, as it provides a tree
structure.
Configuring Endpoint Protection
The configuration is usually placed under security.web-server (this can be
customized in Helidon SE).
The following shows an example we will explain in detail:
If you need to use a properties file, such as microprofile-config.properties,
you can convert the file by using index based numbers for arrays, such as:
security.providers.0.abac=
security.providers.1.provider-key.optional=false
security.web-server.defaults.authenticate=true
security.web-server.paths.0.path=/metrics/*
security.web-server.paths.0.roles-allowed=admin
security.web-server.paths.3.path=/static/*
security.web-server.paths.3.roles-allowed=user,monitor