本文整理汇总了Java中org.springframework.security.jwt.Jwt.getClaims方法的典型用法代码示例。如果您正苦于以下问题:Java Jwt.getClaims方法的具体用法?Java Jwt.getClaims怎么用?Java Jwt.getClaims使用的例子?那么, 这里精选的方法代码示例或许可以为您提供帮助。您也可以进一步了解该方法所在类org.springframework.security.jwt.Jwt的用法示例。
在下文中一共展示了Jwt.getClaims方法的9个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Java代码示例。
示例1: getJwtTokenByClientCredentialForUser
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
@SuppressWarnings({"rawtypes", "unchecked"})
@Test
public void getJwtTokenByClientCredentialForUser() throws JsonParseException, JsonMappingException, IOException {
ResponseEntity<String> response = new TestRestTemplate("trusted-app", "secret").postForEntity("http://localhost:" + port + "/oauth/token?grant_type=password&username=user&password=password", null, String.class);
String responseText = response.getBody();
assertEquals(HttpStatus.OK, response.getStatusCode());
HashMap jwtMap = new ObjectMapper().readValue(responseText, HashMap.class);
assertEquals("bearer", jwtMap.get("token_type"));
assertEquals("read write", jwtMap.get("scope"));
assertTrue(jwtMap.containsKey("access_token"));
assertTrue(jwtMap.containsKey("expires_in"));
assertTrue(jwtMap.containsKey("jti"));
String accessToken = (String) jwtMap.get("access_token");
Jwt jwtToken = JwtHelper.decode(accessToken);
String claims = jwtToken.getClaims();
HashMap claimsMap = new ObjectMapper().readValue(claims, HashMap.class);
assertEquals("spring-boot-application", ((List<String>) claimsMap.get("aud")).get(0));
assertEquals("trusted-app", claimsMap.get("client_id"));
assertEquals("user", claimsMap.get("user_name"));
assertEquals("read", ((List<String>) claimsMap.get("scope")).get(0));
assertEquals("write", ((List<String>) claimsMap.get("scope")).get(1));
assertEquals("ROLE_USER", ((List<String>) claimsMap.get("authorities")).get(0));
}
开发者ID:leftso,项目名称:demo-spring-boot-security-oauth2,代码行数:26,代码来源:GrantByResourceOwnerPasswordCredentialTest.java
示例2: getJwtTokenByClientCredentialForAdmin
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
@SuppressWarnings({"rawtypes", "unchecked"})
@Test
public void getJwtTokenByClientCredentialForAdmin() throws JsonParseException, JsonMappingException, IOException {
ResponseEntity<String> response = new TestRestTemplate("trusted-app", "secret").postForEntity("http://localhost:" + port + "/oauth/token?grant_type=password&username=admin&password=password", null, String.class);
String responseText = response.getBody();
assertEquals(HttpStatus.OK, response.getStatusCode());
HashMap jwtMap = new ObjectMapper().readValue(responseText, HashMap.class);
assertEquals("bearer", jwtMap.get("token_type"));
assertEquals("read write", jwtMap.get("scope"));
assertTrue(jwtMap.containsKey("access_token"));
assertTrue(jwtMap.containsKey("expires_in"));
assertTrue(jwtMap.containsKey("jti"));
String accessToken = (String) jwtMap.get("access_token");
Jwt jwtToken = JwtHelper.decode(accessToken);
String claims = jwtToken.getClaims();
HashMap claimsMap = new ObjectMapper().readValue(claims, HashMap.class);
assertEquals("spring-boot-application", ((List<String>) claimsMap.get("aud")).get(0));
assertEquals("trusted-app", claimsMap.get("client_id"));
assertEquals("admin", claimsMap.get("user_name"));
assertEquals("read", ((List<String>) claimsMap.get("scope")).get(0));
assertEquals("write", ((List<String>) claimsMap.get("scope")).get(1));
assertEquals("ROLE_ADMIN", ((List<String>) claimsMap.get("authorities")).get(0));
}
开发者ID:leftso,项目名称:demo-spring-boot-security-oauth2,代码行数:26,代码来源:GrantByResourceOwnerPasswordCredentialTest.java
示例3: checkJwtClaims
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
protected JsonNode checkJwtClaims(ResponseEntity<String> responseEntity, String expectedAuthority) throws IOException {
String responseBody = responseEntity.getBody();
assertThat(HttpStatus.OK, is(responseEntity.getStatusCode()));
JsonNode responseBodyJsonNode = new ObjectMapper().readTree(responseBody);
assertThat(responseBodyJsonNode.has("access_token"), is(true));
String accessToken = responseBodyJsonNode.get("access_token").asText();
Jwt jwt = JwtHelper.decode(accessToken);
String jwtClaims = jwt.getClaims();
JsonNode jwtClaimsJsonNode = new ObjectMapper().readTree(jwtClaims);
assertThat(jwtClaimsJsonNode.get("aud").get(0).asText(), is("sw360-REST-API"));
assertThat(jwtClaimsJsonNode.get("client_id").asText(), is("trusted-sw360-client"));
JsonNode scopeNode = jwtClaimsJsonNode.get("scope");
assertThat(scopeNode.get(0).asText(), is("sw360.read"));
assertThat(scopeNode.get(1).asText(), is("sw360.write"));
JsonNode authoritiesJsonNode = jwtClaimsJsonNode.get("authorities");
assertThat(authoritiesJsonNode.get(0).asText(), is(expectedAuthority));
assertThat(authoritiesJsonNode.size(), is(1));
return jwtClaimsJsonNode;
}
示例4: decode
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
protected Map<String, Object> decode(String token) {
Jwt jwt = JwtHelper.decodeAndVerify(token, verifier);
String content = jwt.getClaims();
try {
@SuppressWarnings("unchecked")
Map<String, Object> map = objectMapper.readValue(content, Map.class);
return map;
}
catch (Exception e) {
throw new InvalidTokenException("Cannot convert access token to JSON", e);
}
}
示例5: getJwtTokenByTrustedClient
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
@SuppressWarnings({"rawtypes", "unchecked"})
@Test
public void getJwtTokenByTrustedClient() throws JsonParseException, JsonMappingException, IOException {
ResponseEntity<String> response = new TestRestTemplate("trusted-app", "secret").postForEntity("http://localhost:" + port + "/oauth/token?client_id=trusted-app&grant_type=client_credentials", null, String.class);
String responseText = response.getBody();
assertEquals(HttpStatus.OK, response.getStatusCode());
HashMap jwtMap = new ObjectMapper().readValue(responseText, HashMap.class);
assertEquals("bearer", jwtMap.get("token_type"));
assertEquals("read write", jwtMap.get("scope"));
assertTrue(jwtMap.containsKey("access_token"));
assertTrue(jwtMap.containsKey("expires_in"));
assertTrue(jwtMap.containsKey("jti"));
String accessToken = (String) jwtMap.get("access_token");
Jwt jwtToken = JwtHelper.decode(accessToken);
String claims = jwtToken.getClaims();
logJson(claims);
HashMap claimsMap = new ObjectMapper().readValue(claims, HashMap.class);
assertEquals("spring-boot-application", ((List<String>) claimsMap.get("aud")).get(0));
assertEquals("trusted-app", claimsMap.get("client_id"));
assertEquals("read", ((List<String>) claimsMap.get("scope")).get(0));
assertEquals("write", ((List<String>) claimsMap.get("scope")).get(1));
List<String> authorities = (List<String>) claimsMap.get("authorities");
assertEquals(1, authorities.size());
assertEquals("ROLE_TRUSTED_CLIENT", authorities.get(0));
}
示例6: tryExtractToken
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
public static Map<String, Object> tryExtractToken(Jwt jwt) {
if (jwt.getClaims() == null)
return null;
try {
return objectMapper.readValue(jwt.getClaims(), new TypeReference<HashMap<String, Object>>() {});
} catch (IOException e) {
log.error("Error parsing claims from JWT", e);
}
return null;
}
示例7: decode
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
public UserJwtToken decode(String token) {
try {
Jwt jwt = JwtHelper.decodeAndVerify(token, verifier);
String content = jwt.getClaims();
return objectMapper.readValue(content, UserJwtToken.class);
}
catch (Exception e) {
throw new IllegalArgumentException("Cannot decode access token from JSON", e);
}
}
示例8: authenticate
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
@Override
public Authentication authenticate(final Authentication authRequest) throws AuthenticationException {
// Getting string token from authentication request object
String token = Preconditions.notNull(StringUtils.trimToNull((String) authRequest.getCredentials()), ExceptionCode.AUTHENTICATION, "No jwt token present.");
// Getting JWT object from string token
Jwt jwt = JwtHelper.decode(token);
// Getting payload of token
String claims = jwt.getClaims();
TokenPayload tokenPayload = this.gson.fromJson(claims, TokenPayload.class);
// Checking if token already expired and throwing an AuthenticationException in this case
checkIsExpired(tokenPayload.expirationTime);
// Getting user id from token
Long userId = Preconditions.notNull(tokenPayload.userId, ExceptionCode.AUTHENTICATION, "Token doesn't contains user id.");
// Getting user from database
HeapUser user = this.heapUserRepository.findOne(userId);
// Validate token signature (to be sure that token doesn't change on client side)
try {
jwt.verifySignature(new MacSigner(user.getSecret()));
} catch (Exception cause) {
HeapException.throwNew(ExceptionCode.AUTHENTICATION, "Token verification failed.", cause);
}
// Return authenticated Authentication
HeapUserDetails userDetails = new HeapUserDetails(user);
userDetails.eraseCredentials();
return new JwtAuthenticationToken(userDetails);
}
示例9: getClaim
import org.springframework.security.jwt.Jwt; //导入方法依赖的package包/类
/**
* Retrieve the given claim from the given token.
*
* @param refreshToken the JWT token to examine.
* @param claimName name of the claim to get.
* @param clazz the Class we expect to find there.
* @return the desired claim.
* @throws InvalidTokenException if we cannot find the claim in the token or it is of wrong type.
*/
@SuppressWarnings("unchecked")
private <T> T getClaim(String refreshToken, String claimName, Class<T> clazz) {
Jwt jwt = JwtHelper.decode(refreshToken);
String claims = jwt.getClaims();
Map<String, Object> claimsMap = jsonParser.parseMap(claims);
Object claimValue = claimsMap.get(claimName);
if (claimValue == null) {
return null;
}
if (!clazz.isAssignableFrom(claimValue.getClass())) {
throw new InvalidTokenException("claim is not of expected type: " + claimName);
}
return (T) claimValue;
}