Integrating JWT with Spring Security OAuth2 Provider

Others 2022-04-28 09:43:12 views: 0
OAuth2 is an authentication framework and JWT (JSON Web Tokens) is an authentication protocol.

Related articles:
Spring Security OAuth2 Provider Minimum Implementation
Spring Security OAuth2 Provider Database Storage
Spring Security OAuth2 Provider Third-Party Login Simple Demonstration
Spring Security OAuth2 Provider Custom Development
Spring Security OAuth2 Provider

Integration

JWT Resource Server needs to add dependencies. 

<dependency>
    <groupId>org.springframework.security</groupId>
    <artifactId>spring-security-jwt</artifactId>
    <optional>true</optional>
</dependency>


(2) Generate a signed certificate

to generate a certificate
quote
# keytool -genkeypair -alias jwt-test -keyalg RSA -dname "CN=jwt,OU=ren,O=ren,L=china,S=china,C=CN" -keypass my_pass -keystore jwt-test.jks -storepass my_pass

Put the .jks file in the Authorization Server's src/main/resources/jwt-test.jks

to export the public key
quote
# keytool -list -rfc --keystore jwt-test.jks | openssl x509 -inform pem -pubkey

Copy the PUBLIC KEY part to src/main/resources/public.txt of Resource Server

(3) Authentication server settings 

@Bean
protected JwtAccessTokenConverter jwtTokenEnhancer() {
    KeyStoreKeyFactory keyStoreKeyFactory = new KeyStoreKeyFactory(new ClassPathResource("jwt-test.jks"), "my_pass".toCharArray());
    JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
    converter.setKeyPair(keyStoreKeyFactory.getKeyPair("jwt-test"));
    return converter;
}

@Bean
public TokenStore tokenStore() {
    return new JwtTokenStore(accessTokenConverter());
}


(4) Resource server settings 

@Bean
public JwtAccessTokenConverter accessTokenConverter() {
    JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
    Resource resource = new ClassPathResource("public.txt");
    String publicKey = null;
    try {
        publicKey = IOUtils.toString(resource.getInputStream());
    } catch (final IOException e) {
        throw new RuntimeException(e);
    }
    converter.setVerifierKey(publicKey);
    return converter;
}

@Bean
public TokenStore tokenStore() {
    return new JwtTokenStore(accessTokenConverter());
}


(5) Confirmation test

to obtain Token:


Confirm Token through jwt.io:


Access resource API through access_token:


(6) Algorithm HS256
changes the configuration of Authorization Server and Resource Server to: 
@Bean
protected JwtAccessTokenConverter accessTokenConverter() {
    JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
    converter.setSigningKey("rensanning");
    return converter;
}


Get Token:


Confirm Token through jwt.io:


Access resource API through access_token:


Reference:
http://www.baeldung.com/spring-security-oauth-jwt
https://github.com/dynamind/spring-boot-security -oauth2-minimal

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=326242028&siteId=291194637
Recommended
Ranking
Empire cms smart tag calls four first-level recommended articles, starting from the fourth article
Linux environment installation and configuration Elasticsearch7.17
Big Data processing architecture and Lambda Kappa architecture
Explore the top of the AI large model platform - Wenxin Qianfan
Beijing car PK10 lucky airship Guanya size and value of the odd and even tips
W3B x Sui Hacker House|In-depth understanding of Sui and Move language
Know almost Ko Chan: Chinese what any decent open source software products? (Finishing from my original answer)
Comprehensively improve AD domain security authentication | Zhuyun IDaaS
Android Update Engine Analysis (24) What happened when making the downgrade package?
Spark Architecture and Operating Mechanism (1) - System Architecture
Daily
More
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)

Code World

© 2018 codetd.com