From 165d36a95491afa6907de019d2e5ea4148804d7d Mon Sep 17 00:00:00 2001
From: mwithi <alessandro.domanico@yahoo.it>
Date: Thu, 23 Mar 2023 09:22:18 +0100
Subject: [PATCH] Externalize jwt, to be passed from outside container

---
 .../org/isf/patientportal/security/jwt/TokenProvider.java     | 2 +-
 patient-portal/src/main/resources/application.properties      | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/patient-portal/src/main/java/org/isf/patientportal/security/jwt/TokenProvider.java b/patient-portal/src/main/java/org/isf/patientportal/security/jwt/TokenProvider.java
index ba280da..8df0e0f 100644
--- a/patient-portal/src/main/java/org/isf/patientportal/security/jwt/TokenProvider.java
+++ b/patient-portal/src/main/java/org/isf/patientportal/security/jwt/TokenProvider.java
@@ -63,7 +63,7 @@ public class TokenProvider implements Serializable, InitializingBean {
     
     @Override
     public void afterPropertiesSet() {
-    	String secret = "EGnA2fAHSptY0TAjoQHuBDftkwuAjYmx6jTsNXVHy38lfHc0tvcaS3fPO3QOXPhpI8"; // env.getProperty("JWT_TOKEN_SECRET");
+    	String secret = env.getProperty("jwt.token.secret");
         log.info("Initializing JWT key with secret: {}", secret);
         // byte[] keyBytes = Decoders.BASE64.decode(SECRET);
         byte[] keyBytes = secret.getBytes(StandardCharsets.UTF_8);
diff --git a/patient-portal/src/main/resources/application.properties b/patient-portal/src/main/resources/application.properties
index 360036d..ca7d485 100644
--- a/patient-portal/src/main/resources/application.properties
+++ b/patient-portal/src/main/resources/application.properties
@@ -67,3 +67,7 @@ spring.flyway.check-location=true
 spring.flyway.locations=filesystem:sql/migrations
 spring.flyway.schemas=ohpp
 spring.flyway.enabled=true
+
+# Security token secret (JWT)
+jwt.token.secret=EGnA2fAHSptY0TAjoQHuBDftkwuAjYmx6jTsNXVHy38lfHc0tvcaS3fPO3QOXPhpI8
+