From 0dcd203faef748a625a7134b9dcda61baac51b3b Mon Sep 17 00:00:00 2001
From: John Nduli
Date: Tue, 6 Aug 2024 08:36:28 +0300
Subject: fix: use bearer token to query auth server

---
 gn2/wqflask/oauth2/ui.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'gn2/wqflask/oauth2')

diff --git a/gn2/wqflask/oauth2/ui.py b/gn2/wqflask/oauth2/ui.py
index d70a13ec..89739fe3 100644
--- a/gn2/wqflask/oauth2/ui.py
+++ b/gn2/wqflask/oauth2/ui.py
@@ -1,6 +1,8 @@
 """UI utilities"""
 from flask import session, render_template
 
+from gn2.wqflask.oauth2 import session
+
 from .client import oauth2_get
 from .client import user_logged_in
 from .request_utils import process_error
@@ -13,7 +15,8 @@ def render_ui(templatepath: str, **kwargs):
                 lambda _err: roles, lambda auth_roles: auth_roles)
     user_privileges = tuple(
         privilege["privilege_id"] for role in roles for privilege in role["privileges"])
+    user_token = session.user_token().either(lambda _err: "", lambda token: token["access_token"])
     kwargs = {
-        **kwargs, "roles": roles, "user_privileges": user_privileges
+            **kwargs, "roles": roles, "user_privileges": user_privileges, "bearer_token": user_token
     }
     return render_template(templatepath, **kwargs)
-- 
cgit v1.2.3