feat: add clientServiceAccountUuid to connection-info endpoint

Neunerlei · Neunerlei · commit 48359ebb9434 · 2025-02-14T15:28:59.000+01:00
This allows the client to get the user account of the current client
diff --git a/README.md b/README.md
@@ -184,13 +184,14 @@ Required roles: `hawk-view-cache-buster`
 `/realms/{realm}/hawk/connection-info`
 
 This endpoint returns information about the connection to the keycloak server required
-for a smooth client experience. 
+for a smooth client experience. Note, to use this endpoint the requesting client MUST have a service account.
 
 The response contains the following fields:
 * keycloakVersion - The version of the keycloak server (Used for compatibility checks on the client side)
 * extensionVersion - The version of the hawk keycloak extension
 * clientId - The client id of the client that requested the endpoint
 * clientUuid - The uuid of the client that requested the endpoint
+* clientServiceAccountUuid - The uuid of the service account of the client that requested the endpoint
 
 Required roles `hawk-client`
 
diff --git a/src/main/java/com/hawk/keycloak/util/ConnectionInfoRequestHandler.java b/src/main/java/com/hawk/keycloak/util/ConnectionInfoRequestHandler.java
@@ -4,6 +4,7 @@
 import com.hawk.keycloak.util.model.ConnectionInfo;
 import lombok.RequiredArgsConstructor;
 import org.keycloak.common.Version;
+import org.keycloak.models.ClientModel;
 import org.keycloak.models.KeycloakSession;
 
 @RequiredArgsConstructor
@@ -14,11 +15,18 @@ public class ConnectionInfoRequestHandler {
     public ConnectionInfo handleRequest() {
         auth.requireHawkClientRole();
 
+        ClientModel client = session.getContext().getClient();
+
+        if(!client.isServiceAccountsEnabled()){
+            throw new RuntimeException("Service accounts are not enabled for this client, but this is required for the clients to work well");
+        }
+
         return new ConnectionInfo(
                 Version.VERSION,
                 VersionInfo.getPackageVersion(),
-                session.getContext().getClient().getClientId(),
-                session.getContext().getClient().getId()
+                client.getClientId(),
+                client.getId(),
+                session.users().getServiceAccount(client).getId()
         );
     }
 }
diff --git a/src/main/java/com/hawk/keycloak/util/model/ConnectionInfo.java b/src/main/java/com/hawk/keycloak/util/model/ConnectionInfo.java
@@ -10,4 +10,5 @@ public class ConnectionInfo {
     private final String extensionVersion;
     private final String clientId;
     private final String clientUuid;
+    private final String clientServiceAccountUuid;
 }

Original file line number	Diff line number	Diff line change
`@@ -10,4 +10,5 @@ public class ConnectionInfo {`
`10`	`10`	`private final String extensionVersion;`
`11`	`11`	`private final String clientId;`
`12`	`12`	`private final String clientUuid;`
	`13`	`+ private final String clientServiceAccountUuid;`
`13`	`14`	`}`