堆栈内存溢出
  简体   繁体   English

springboot - 基本的 ActiveDirectory 身份验证,然后是 JWT 令牌

[英]springboot - basic ActiveDirectory auth then JWT token

 原文  2018-10-27 05:48:51       java/ spring/ spring-boot/ spring-security/ jwt

问题描述

Has anyone got a working example of this in a springboot app?有没有人在 springboot 应用程序中有这样的工作示例?

  1. /auth controller where user provides ActiveDirectory credentials (either via basic auth or a POST json) and receives a JWT token if they provided valid AD credentials. /auth 控制器,用户在其中提供 ActiveDirectory 凭据(通过基本身份验证或 POST json)并在他们提供有效的 AD 凭据时接收 JWT 令牌。 No LDIF file should be involved, the Springboot app will verify the credentials against an ldaps://ActiveDirectoryhost:636 endpoint不应涉及 LDIF 文件,Springboot 应用程序将根据 ldaps://ActiveDirectoryhost:636 端点验证凭据
  2. /myapi controller which only works if valid JWT token from step1 (above) sent in 'Authorization Bearer' heading /myapi 控制器仅在来自步骤 1(以上)的有效 JWT 令牌以“授权承载”标题发送时才有效

I have not found any example blogs/guides with this setup but I believe this would be a common security setup unless I am mistaken?我没有找到任何具有此设置的示例博客/指南,但我相信这将是一个常见的安全设置,除非我弄错了? No jpa/hibernate/persistence/mysql/postgres/H2db connections should be involved All examples I found online either are just JWT, or just LDAP, or use LDIF or use some H2/postgres to store credentials.不应该涉及 jpa/hibernate/persistence/mysql/postgres/H2db 连接我在网上找到的所有示例要么只是 JWT,要么只是 LDAP,或者使用 LDIF 或使用一些 H2/postgres 来存储凭据。

1 个解决方案

解决方案1
 2 已采纳  2018-10-29 10:55:37

This worked:这有效:

JWT from https://github.com/merugu/springsecurity/tree/master/ldapauthenticationjwttoken JWT 来自https://github.com/merugu/springsecurity/tree/master/ldapauthenticationjwttoken

AD from https://medium.com/@dmarko484/spring-boot-active-directory-authentication-5ea04969f220来自https://medium.com/@dmarko484/spring-boot-active-directory-authentication-5ea04969f220 的广告

Had to upgrade the github jwt repo to springboot 2.0.5 and add setSearchFilter {1} ( https://docs.spring.io/spring-security/site/docs/current/api/org/springframework/security/ldap/authentication/ad/ActiveDirectoryLdapAuthenticationProvider.html ) to AD必须将 github jwt repo 升级到 springboot 2.0.5 并添加 setSearchFilter {1} ( https://docs.spring.io/spring-security/site/docs/current/api/org/springframework/security/ldap/authentication /ad/ActiveDirectoryLdapAuthenticationProvider.html ) 到 AD

This 2nd option also worked on Springboot 1.5: Spring security switch to Ldap authentication and database authorities ( https://stackoverflow.com/a/34658755 ) on top of https://github.com/cnapagoda/spring-boot-basic-auth第二个选项也适用于 Springboot 1.5: Spring 安全切换到 Ldap 身份验证和数据库权限( https://stackoverflow.com/a/34658755 ) 在https://github.com/cnapagoda/spring-boot-basic-之上授权

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在一个SpringBoot应用程序中同时进行JWT和表单身份验证? - Both JWT and form auth in one SpringBoot app? 验证 JWT 令牌以及 springBoot 中的 requestBody 参数 - Validation of JWT token along with requestBody parameter in springBoot 如何在单元测试 SpringBoot 中解析 JWT 令牌 - How to parse JWT token in unit tests SpringBoot SpringBoot基本身份验证忽略以.wsdl结尾的URL - SpringBoot basic auth ignore URLs ending with .wsdl 基本身份验证 + JWT 与 Oauth2 - Basic Auth + JWT vs Oauth2 如何使用SpringBoot Security禁用OPTIONS的基本HTTP身份验证 - How to disable basic http auth for OPTIONS with SpringBoot Security 使用基本身份验证针对另一个应用程序对Springboot应用程序进行身份验证 - Authenticate a Springboot Application against another application using Basic Auth 谁能告诉我基本身份验证和 JWT 令牌之间的区别? - Can anyone tell me the difference between basic authentication and JWT token? SpringBoot JWT安全性如何 - SpringBoot JWT security how to 注销springboot jwt - Logout springboot jwt
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM