[MOSIP-44770] actuator env enabled based on auth token

[Md-Humair-KK]

Summary by CodeRabbit

• New Features

  • The system's environment configuration endpoint is now exposed and accessible with OAuth2 authentication protection, providing authorized users with access to detailed system environment information.

• Chores

  • Updated actuator web exposure configuration to include the environment endpoint in the accessible endpoints list and adjusted security scope assignments to ensure proper OAuth2-based access control.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Repository UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 21518ef3-0b1c-4b5a-ae4d-35ce77def84f

📥 Commits

Reviewing files that changed from the base of the PR and between a4df88a and 7625f1c.

📒 Files selected for processing (2)

• esignet-service/src/main/resources/application-default.properties
• esignet-service/src/main/resources/bootstrap.properties

---

Walkthrough

Two Spring Boot configuration files are updated to expose the /actuator/env endpoint. bootstrap.properties adds env to the actuator web exposure include list and removes it from the excluded set. application-default.properties adds /actuator/env to the OAuth2-secured GET URLs under SCOPE_get_certificate.

Changes

Actuator env endpoint exposure and security

Layer / File(s)	Summary
Actuator env exposure and OAuth2 security config esignet-service/src/main/resources/bootstrap.properties, esignet-service/src/main/resources/application-default.properties	management.endpoints.web.exposure.include is extended with env (and env is removed from the exclusion list) in bootstrap.properties; application-default.properties adds '/actuator/env' : { 'SCOPE_get_certificate' } to the mosip.esignet.security.auth.get-urls map, requiring OAuth2 scope for access.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

• mosip/esignet#1845: Modifies the same actuator security allowlist and endpoint exposure settings in application-default.properties and bootstrap.properties, directly intersecting with this PR's changes to the actuator configuration.

Poem

A bunny hopped past the actuator door,
/env was locked — but locked no more!
With SCOPE_get_certificate held up high,
Only the trusted may peek inside.
🐇✨ Secure the path, yet let it breathe!

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: enabling the /actuator/env endpoint with authentication-based access control.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}