extend AuthenticationExample

marceljk · marceljk · commit df99dea53745 · 2025-09-12T13:57:38.000+02:00
diff --git a/examples/authentication/src/main/java/cloud/stackit/sdk/authentication/examples/AuthenticationExample.java b/examples/authentication/src/main/java/cloud/stackit/sdk/authentication/examples/AuthenticationExample.java
@@ -5,23 +5,104 @@
 import cloud.stackit.sdk.resourcemanager.model.ListOrganizationsResponse;
 
 class AuthenticationExample {
-	public static void main(String[] args) {
-		String SERVICE_ACCOUNT_KEY_PATH = "/path/to/your/sa/key.json";
-		String SERVICE_ACCOUNT_MAIL = "name-1234@sa.stackit.cloud";
+    public static void main(String[] args) {
+        ///////////////////////////////////////////////////////
+        // Option 1: setting the paths to service account key (and private key) as configuration
+        ///////////////////////////////////////////////////////
+        String SERVICE_ACCOUNT_KEY_PATH = "/path/to/sa_key.json";
+        String PRIVATE_KEY_PATH = "/path/to/private_key.pem";
+        String SERVICE_ACCOUNT_MAIL = "name-1234@sa.stackit.cloud";
 
-		CoreConfiguration config =
-				new CoreConfiguration().serviceAccountKeyPath(SERVICE_ACCOUNT_KEY_PATH);
+        try {
+            ResourceManagerApi api = new ResourceManagerApi(
+                    new CoreConfiguration()
+                            .serviceAccountKeyPath(SERVICE_ACCOUNT_KEY_PATH)
+                            // Optional: if private key not included in service account key
+                            .privateKeyPath(PRIVATE_KEY_PATH)
+            );
 
-		try {
-			ResourceManagerApi api = new ResourceManagerApi(config);
+            /* list all organizations */
+            ListOrganizationsResponse response =
+                    api.listOrganizations(null, SERVICE_ACCOUNT_MAIL, null, null, null);
 
-			/* list all organizations */
-			ListOrganizationsResponse response =
-					api.listOrganizations(null, SERVICE_ACCOUNT_MAIL, null, null, null);
+            System.out.println(response);
+        } catch (Exception e) {
+            throw new RuntimeException(e);
+        }
 
-			System.out.println(response);
-		} catch (Exception e) {
-			throw new RuntimeException(e);
-		}
-	}
+        ///////////////////////////////////////////////////////
+        // Option 2: setting the service account key (and private key) as configuration
+        ///////////////////////////////////////////////////////
+        String SERVICE_ACCOUNT_KEY = "{\n" +
+                "      \"id\": \"uuid\",\n" +
+                "      \"publicKey\": \"public key\",\n" +
+                "      \"createdAt\": \"2023-08-24T14:15:22Z\",\n" +
+                "      \"validUntil\": \"2023-08-24T14:15:22Z\",\n" +
+                "      \"keyType\": \"USER_MANAGED\",\n" +
+                "      \"keyOrigin\": \"USER_PROVIDED\",\n" +
+                "      \"keyAlgorithm\": \"RSA_2048\",\n" +
+                "      \"active\": true,\n" +
+                "      \"credentials\": {\n" +
+                "        \"kid\": \"string\",\n" +
+                "        \"iss\": \"my-sa@sa.stackit.cloud\",\n" +
+                "        \"sub\": \"uuid\",\n" +
+                "        \"aud\": \"string\",\n" +
+                "        \"privateKey\": \"(OPTIONAL) private key when generated by the SA service\"\n" +
+                "      }\n" +
+                "    }";
+        String PRIVATE_KEY = "-----BEGIN PRIVATE KEY-----\n" +
+                "MIIJQw...ZL+U\n" +
+                "lm+dqO...xQ8=\n" +
+                "-----END PRIVATE KEY-----";
+
+        try {
+            ResourceManagerApi api = new ResourceManagerApi(
+                    new CoreConfiguration()
+                            .serviceAccountKey(SERVICE_ACCOUNT_KEY)
+                            // Optional: if private key not included in service account key
+                            .privateKeyPath(PRIVATE_KEY)
+            );
+
+            /* list all organizations */
+            ListOrganizationsResponse response =
+                    api.listOrganizations(null, SERVICE_ACCOUNT_MAIL, null, null, null);
+
+            System.out.println(response);
+        } catch (Exception e) {
+            throw new RuntimeException(e);
+        }
+
+        ///////////////////////////////////////////////////////
+        // Option 3: setting the service account key (and private key) as environment variable
+        ///////////////////////////////////////////////////////
+        // Set the service account key via environment variable:
+        // - STACKIT_SERVICE_ACCOUNT_KEY_PATH=/path/to/sa_key.json
+        // - STACKIT_SERVICE_ACCOUNT_KEY="<content of service account key>"
+        //
+        // If the private key is not included in the service account key, set also:
+        // - STACKIT_PRIVATE_KEY_PATH=/path/to/private_key.pem
+        // - STACKIT_PRIVATE_KEY="<content of private key>"
+        //
+        // If no environment variable is set, fallback to credentials file in "$HOME/.stackit/credentials.json".
+        // Can be overridden with the environment variable `STACKIT_CREDENTIALS_PATH`
+        // The credentials file must be a json:
+        //   {
+        //     "STACKIT_SERVICE_ACCOUNT_KEY_PATH": "path/to/sa_key.json",
+        //     "STACKIT_PRIVATE_KEY_PATH": "(OPTIONAL) when the private key isn't included in the Service Account key",
+        //     // Alternative:
+        //     "STACKIT_SERVICE_ACCOUNT_KEY": "<content of private key>",
+        //     "STACKIT_PRIVATE_KEY": "(OPTIONAL) when the private key isn't included in the Service Account key",
+        //   }
+        try {
+            ResourceManagerApi api = new ResourceManagerApi();
+
+            /* list all organizations */
+            ListOrganizationsResponse response =
+                    api.listOrganizations(null, SERVICE_ACCOUNT_MAIL, null, null, null);
+
+            System.out.println(response);
+        } catch (Exception e) {
+            throw new RuntimeException(e);
+        }
+    }
 }
