fix(auth): change InternalAuthFilter to use @Singleton and add HTTP tests for secret validation

2026-05-03 17:27:30 +02:00
parent 33e5017f51
commit c08d5303eb
3 changed files with 74 additions and 4 deletions
@@ -1,6 +1,6 @@
 package de.nowchess.security

-import jakarta.enterprise.context.ApplicationScoped
+import jakarta.inject.Singleton
 import jakarta.ws.rs.container.{ContainerRequestContext, ContainerRequestFilter}
 import jakarta.ws.rs.core.Response
 import jakarta.ws.rs.ext.Provider
@@ -9,7 +9,7 @@ import scala.compiletime.uninitialized

@Provider
@InternalOnly
-@ApplicationScoped
+@Singleton
 class InternalAuthFilter extends ContainerRequestFilter:

  @ConfigProperty(name = "nowchess.internal.secret", defaultValue = "")