stackoom
  简体   繁体   中英

Generate custom jwt-token and Authenticate user, Spring Security

 原文  2018-06-29 18:18:33       java/ authentication/ spring-security/ jwt

Question

Situation: I have a token from another API that contains user info and user is already logged. I want to authenticate this user info (already extracted) and generate a token with my spring security application.

Notes: I'm using Jwt custom enchancer and sorry for newbie way of posting.

My security conf: 

@Override
public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
    TokenEnhancerChain tokenEnhancerChain = new TokenEnhancerChain();
    tokenEnhancerChain.setTokenEnhancers(Arrays.asList(tokenEnhancer(), accessTokenConverter()));

    endpoints.tokenStore(tokenStore()).tokenEnhancer(tokenEnhancerChain).reuseRefreshTokens(false)
            .exceptionTranslator(loggingExceptionTranslator()).authenticationManager(authenticationManager);
}

@Bean
public JwtAccessTokenConverter accessTokenConverter() {
    JwtAccessTokenConverter accessTokenConverter = new JwtAccessTokenConverter();
    accessTokenConverter.setSigningKey(properties.getAuth().getSigningKey());
    return accessTokenConverter;
}

@Bean
public TokenStore tokenStore() {
    return new JwtTokenStore(accessTokenConverter());
}

@Bean
public TokenEnhancer tokenEnhancer() {
    return new PlaceTokenEnhancer();
}

1 answers

solution1
 0 ACCPTED  2018-07-06 14:39:06

Actually I solved my own problem debugging and searching! 

//load full user info (custom method)
UserDetails userDetails = placeUserDetailsService.loadUserByUsername(responseUser.getEmail());

            Set<String> scope = new HashSet<>();
            scope.add("read"); scope.add("write");
            OAuth2Request auth2Request = new OAuth2Request(null, "smthg", userDetails.getAuthorities(), true,
                    scope, null, null, null, null);
    //Custom OAuth2Token
            PlaceAuthenticationToken placeAuthenticationToken = new PlaceAuthenticationToken(userDetails, userDetails.getAuthorities());
            placeAuthenticationToken.setAuthenticated(true);
            placeAuthenticationToken.setDetails(new WebAuthenticationDetails(request));

            OAuth2Authentication auth = new OAuth2Authentication(auth2Request, placeAuthenticationToken);
            auth.setAuthenticated(true);
            auth.setDetails(placeAuthenticationToken.getDetails());
            accessToken =  authServer.createAccessToken(auth);

            DefaultOAuth2AccessToken tkn = (DefaultOAuth2AccessToken) accessToken;
            tkn.setRefreshToken(null);
            accessToken = tkn;

Basically All you have to do is generate Authentication using Oauth2Request and use .createAccessToken()!

Maybe it could help someone else!

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to authenticate with spring security and JWT with user of own database Spring security not authenticate the user How to authenticate the JWT token in same Filter which was used to generate the token Spring Security and OAuth2 generate token with custom grant type Spring Security - Authenticate user with username How to authenticate user login and pass JWT token using spring boot, jpa,hibernate and mysql Spring security JWT refresh token not expiring Spring Boot Unit Tests with JWT Token Security How to pass JWT-TOKEN to localStorage using JavaScript (script for html)? Spring Security Token Authentication How to Authenticate?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM