save tenant in context and json for UserAccess-interceptors

Author: Gerald Unterrainer

Diff for: src/main/java/info/unterrainer/commons/httpserver/accessmanager/HttpAccessManager.java

@@ -8,6 +8,7 @@
 import java.net.http.HttpRequest;
 import java.net.http.HttpResponse.BodyHandlers;
 import java.security.PublicKey;
+import java.util.HashSet;
 import java.util.Set;
 import java.util.function.Consumer;
 
@@ -170,6 +171,7 @@ private TokenVerifier<AccessToken> persistUserInfoInContext(final Context ctx) {
 
 			String tenant = (String) token.getOtherClaims().get("tenant");
 			ctx.attribute(Attribute.USER_CLIENT_ATTRIBUTE_TENANT, tenant);
+			ctx.attribute(Attribute.USER_TENANT_SET, createTenantSetFrom(tenant));
 
 			Set<String> clientRoles = Set.of();
 			String key = token.getIssuedFor();
@@ -215,6 +217,20 @@ private TokenVerifier<AccessToken> persistUserInfoInContext(final Context ctx) {
 		}
 	}
 
+	private Object createTenantSetFrom(final String tenant) {
+		Set<String> tenantSet = new HashSet<>();
+		if (tenant == null || tenant.isBlank())
+			return tenantSet;
+
+		String[] tenants = tenant.split(",");
+		for (String t : tenants) {
+			if (t.isBlank())
+				continue;
+			tenantSet.add(t.trim());
+		}
+		return tenantSet;
+	}
+
 	private void setTokenRejectionReason(final Context ctx, final String reason) {
 		ctx.attribute(Attribute.KEYCLOAK_TOKEN_REJECTION_REASON, reason);
 	}

Diff for: src/main/java/info/unterrainer/commons/httpserver/enums/Attribute.java

@@ -16,6 +16,7 @@ public class Attribute {
 	public static final String USER_CLIENT_ROLES = "user_client_roles";
 	public static final String USER_REALM_ROLES = "user_realm_roles";
 	public static final String USER_CLIENT_ATTRIBUTE_TENANT = "user_client_attribute_tenant";
+	public static final String USER_TENANT_SET = "user_tenant_set";
 
 	public static final String KEYCLOAK_TOKEN_REJECTION_REASON = "kc_token_rejection_reason";
 }