當前位置: 首頁>>代碼示例>>Java>>正文


Java Claims類代碼示例

本文整理匯總了Java中io.jsonwebtoken.Claims的典型用法代碼示例。如果您正苦於以下問題:Java Claims類的具體用法?Java Claims怎麽用?Java Claims使用的例子?那麽, 這裏精選的類代碼示例或許可以為您提供幫助。


Claims類屬於io.jsonwebtoken包,在下文中一共展示了Claims類的15個代碼示例,這些例子默認根據受歡迎程度排序。您可以為喜歡或者感覺有用的代碼點讚,您的評價將有助於係統推薦出更棒的Java代碼示例。

示例1: createRefreshToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
public JwtToken createRefreshToken(UserContext userContext) {
  if (StringUtils.isBlank(userContext.getTenantId())) 
    throw new IllegalArgumentException("Cannot create JWT Token without tenantId");

  if (StringUtils.isBlank(userContext.getOrgId())) 
    throw new IllegalArgumentException("Cannot create JWT Token without orgId");

    DateTime currentTime = new DateTime();

    Claims claims = Jwts.claims().setSubject(userContext.getOrgId());
    claims.put("scopes", userContext.getAuthorities().stream().map(s -> s.toString()).collect(Collectors.toList()));
    claims.put("tenant", userContext.getTenantId());
    
    String token = Jwts.builder()
      .setClaims(claims)
      .setIssuer(settings.getTokenIssuer())
      .setId(UUID.randomUUID().toString())
      .setIssuedAt(currentTime.toDate())
      .setExpiration(currentTime.plusMinutes(settings.getRefreshTokenExpTime()).toDate())
      .signWith(SignatureAlgorithm.HS512, settings.getTokenSigningKey())
    .compact();

    return new AccessJwtToken(token, claims);
}
 
開發者ID:Apereo-Learning-Analytics-Initiative,項目名稱:OpenLRW,代碼行數:25,代碼來源:JwtTokenFactory.java

示例2: getConnUser

import io.jsonwebtoken.Claims; //導入依賴的package包/類
public static RequestUserDTO getConnUser(HttpServletRequest request) {
    String token = request.getHeader(HEADER_STRING);
    if (token == null) {
        token = getTokenFromCookis(request);
    }
    if (token != null) {
        // 解析 Token
        Claims claims = Jwts.parser().setSigningKey(SECRET)
                .parseClaimsJws(token).getBody();

        return new RequestUserDTO(
                claims.get("DomainId", String.class),
                claims.get("UserId", String.class),
                claims.get("OrgUnitId", String.class));
    }
    return new RequestUserDTO();
}
 
開發者ID:hzwy23,項目名稱:hauth-java,代碼行數:18,代碼來源:JwtService.java

示例3: doFilter

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Override
public void doFilter(final ServletRequest req,
                     final ServletResponse res,
                     final FilterChain chain) throws IOException, ServletException {
    final HttpServletRequest request = (HttpServletRequest) req;

    final String authHeader = request.getHeader("Authorization");
    if (authHeader == null || !authHeader.startsWith("Bearer ")) {
        throw new ServletException("Missing or invalid Authorization header.");
    }

    final String token = authHeader.substring(7); // The part after "Bearer "

    try {
        final Claims claims = Jwts.parser().setSigningKey("secretkey")
            .parseClaimsJws(token).getBody();
        request.setAttribute("claims", claims);
    }
    catch (final SignatureException e) {
        throw new ServletException("Invalid token.");
    }

    chain.doFilter(req, res);
}
 
開發者ID:dockersamples,項目名稱:atsea-sample-shop-app,代碼行數:25,代碼來源:JwtFilter.java

示例4: authenticate

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Override
public Authentication authenticate(Authentication authentication)
throws AuthenticationException {
    final JwtToken token = (JwtToken) authentication.getCredentials();
    final Claims claims = jwt.validate(token);

    final String userId = claims.getSubject();
    final String email  = claims.get("mail", String.class);

    @SuppressWarnings("unchecked")
    final List<String> scopes = (List<String>) claims.get("scopes", List.class);
    final List<GrantedAuthority> auths = scopes.stream()
        .map(SimpleGrantedAuthority::new)
        .collect(Collectors.toList());

    final JwtUserDetails user = new JwtUserDetails(userId, email, auths);
    return new JwtAuthentication(token, user);
}
 
開發者ID:membaza,項目名稱:users-service,代碼行數:19,代碼來源:JwtAuthenticationProvider.java

示例5: sign_token_with_KMS_and_verify

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Test
public void sign_token_with_KMS_and_verify() throws Exception {
    String[] params = {
            "--region", TEST_AWS_REGION,
            "--key", TEST_AWS_KEY_ARN,
            "--username", "userXYZ",
            "--journey", "SUM,UPR",
    };
    GenerateTokenApp.main(params);
    String jwtToken = getTokenFromStdout();
    System.out.println("jwt: "+jwtToken);

    KMSDecrypt kmsDecrypt = new KMSDecrypt(KMS_CLIENT, Collections.singleton(TEST_AWS_KEY_ARN));
    Claims claims = new JWTDecoder(kmsDecrypt).decodeAndVerify(jwtToken);
    assertThat(claims.get("usr"), is("userXYZ"));
}
 
開發者ID:julianghionoiu,項目名稱:kms-jwt,代碼行數:17,代碼來源:End2EndTest.java

示例6: getEnterpriseToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
/**
 * Get the enterprise token witch can used to invoke admin api,such as managing departments and groups
 *
 * @param enterpriseId Your enterprise id
 * @param expirationTimeSeconds Expiration time seconds in the future(can not be bigger than 60)
 * @return Detailed user access information
 * @throws YfyException
 */
public YfyAuthFinish getEnterpriseToken(long enterpriseId, int expirationTimeSeconds) throws YfyException {
    Claims claims = new DefaultClaims();
    claims.put("yifangyun_sub_type", "enterprise");
    claims.setSubject(String.valueOf(enterpriseId));
    claims.setExpiration(getExpirationTimeSecondsInTheFuture(expirationTimeSeconds));
    claims.setIssuedAt(new Date());
    claims.setId(getGeneratedJwtId(16));
    final String compactJws = Jwts.builder().setHeader(headers).setClaims(claims).signWith(SignatureAlgorithm.RS256, key).compact();

    return YfyRequestUtil.doPostInAuth(
            requestConfig,
            YfyAppInfo.getHost().getAuth(),
            "oauth/token",
            new HashMap<String, String>() {{
                put("grant_type", "jwt");
                put("assertion", compactJws);
            }},
            YfyAuthFinish.class);
}
 
開發者ID:yifangyun,項目名稱:fangcloud-java-sdk,代碼行數:28,代碼來源:YfyEnterpriseAuth.java

示例7: refreshAuthenticationToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
/**
 * Clients should call this in order to refresh a JWT.
 *
 * @param request the request from the client.
 * @return the JWT with an extended expiry time if the client was authenticated, a 400 Bad Request otherwise.
 */
@RequestMapping(value = "/refresh", method = RequestMethod.GET)
public ResponseEntity<?> refreshAuthenticationToken(HttpServletRequest request) {

    final String authorizationHeader = request.getHeader("Authorization");
    final Claims claims = jwtUtils.validateTokenAndGetClaims(authorizationHeader);
    final String username = jwtUtils.getUsernameFromTokenClaims(claims);
    final JwtUser user = (JwtUser) userDetailsService.loadUserByUsername(username);

    if (jwtUtils.canTokenBeRefreshed(claims, new Date(user.getLastPasswordResetDate()))) {
        final String refreshedToken = jwtUtils.refreshToken(authorizationHeader);
        return ResponseEntity.ok(new JwtAuthenticationResponse(refreshedToken));
    } else {
        return ResponseEntity.badRequest().body(null);
    }
}
 
開發者ID:gazbert,項目名稱:bxbot-ui-server,代碼行數:22,代碼來源:AuthenticationController.java

示例8: getCaptcha

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@GetMapping("/specials/captcha")
public void getCaptcha(HttpServletRequest request, HttpServletResponse response) throws Exception {
    Claims claims = (Claims) request.getAttribute(AppConstants.CLAIMS);

    // 緩存驗證碼數值
    CaptchaGenerator instance = CaptchaGenerator.INSTANCE;
    BufferedImage bi = instance.genImage();
    specialService.saveCaptcha(claims, instance.getCaptcha());

    // 輸出驗證碼圖片
    response.setHeader("Cache-Control", "no-store");
    response.setHeader("Pragma", "no-cache");
    response.setDateHeader("Expires", 0);
    response.setContentType("image/JPEG");
    ImageIO.write(bi, "JPEG", response.getOutputStream());
    response.getOutputStream().flush();
}
 
開發者ID:lupindong,項目名稱:xq_seckill_microservice,代碼行數:18,代碼來源:SpecialController.java

示例9: parseTokenFromBase64EncodedString

import io.jsonwebtoken.Claims; //導入依賴的package包/類
private Jws<Claims> parseTokenFromBase64EncodedString(final String base64EncodedToken) throws JwtException {
    try {
        return Jwts.parser().setSigningKeyResolver(new SigningKeyResolverAdapter() {
            @Override
            public byte[] resolveSigningKeyBytes(JwsHeader header, Claims claims) {
                final String identity = claims.getSubject();

                // Get the key based on the key id in the claims
                final String keyId = claims.get(KEY_ID_CLAIM, String.class);
                final Key key = keyService.getKey(keyId);

                // Ensure we were able to find a key that was previously issued by this key service for this user
                if (key == null || key.getKey() == null) {
                    throw new UnsupportedJwtException("Unable to determine signing key for " + identity + " [kid: " + keyId + "]");
                }

                return key.getKey().getBytes(StandardCharsets.UTF_8);
            }
        }).parseClaimsJws(base64EncodedToken);
    } catch (final MalformedJwtException | UnsupportedJwtException | SignatureException | ExpiredJwtException | IllegalArgumentException e) {
        // TODO: Exercise all exceptions to ensure none leak key material to logs
        final String errorMessage = "Unable to validate the access token.";
        throw new JwtException(errorMessage, e);
    }
}
 
開發者ID:apache,項目名稱:nifi-registry,代碼行數:26,代碼來源:JwtService.java

示例10: createJwtToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Override
public String createJwtToken(Authentication authentication, int minutes) {
  Claims claims = Jwts.claims()
      .setId(String.valueOf(IdentityGenerator.generate()))
      .setSubject(authentication.getName())
      .setExpiration(new Date(currentTimeMillis() + minutes * 60 * 1000))
      .setIssuedAt(new Date());

  String authorities = authentication.getAuthorities()
      .stream()
      .map(GrantedAuthority::getAuthority)
      .map(String::toUpperCase)
      .collect(Collectors.joining(","));

  claims.put(AUTHORITIES, authorities);

  return Jwts.builder()
      .setClaims(claims)
      .signWith(HS512, secretkey)
      .compact();
}
 
開發者ID:springuni,項目名稱:springuni-particles,代碼行數:22,代碼來源:JwtTokenServiceImpl.java

示例11: authenticate

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Override
public Authentication authenticate(Authentication authentication) throws AuthenticationException {
    RawAccessJwtToken rawAccessToken = (RawAccessJwtToken) authentication.getCredentials();

    Jws<Claims> jwsClaims = rawAccessToken.parseClaims(jwtSettings.getTokenSigningKey());
    String orgId = jwsClaims.getBody().getSubject();
    String tenantId = jwsClaims.getBody().get("tenant", String.class);
    List<String> scopes = jwsClaims.getBody().get("scopes", List.class);
    List<GrantedAuthority> authorities = scopes.stream()
            .map(authority -> new SimpleGrantedAuthority(authority))
            .collect(Collectors.toList());
    
    UserContext context = UserContext.create(tenantId, orgId, authorities);
    
    return new JwtAuthenticationToken(context, context.getAuthorities());
}
 
開發者ID:Apereo-Learning-Analytics-Initiative,項目名稱:OpenLRW,代碼行數:17,代碼來源:JwtAuthenticationProvider.java

示例12: executeSignOut

import io.jsonwebtoken.Claims; //導入依賴的package包/類
@Override
public JsonResult executeSignOut(HttpServletRequest request, HttpServletResponse response) {
    JsonResult result = new JsonResult();

    Cookie tokenCookie = CookieUtil.getCookieByName(request, AppConstants.ACCESS_TOKEN);
    if (tokenCookie != null) {
        Claims requestClaims = JwtTokenUtil.getClaims(tokenCookie.getValue(), appProperties.getJwtSecretKey());
        // 清除緩存
        String cacheKey = AppConstants.CACHE_ACCESS_TOKEN + requestClaims.getAudience();
        byteRedisClient.del(cacheKey);
    }

    // 清除Cookie
    CookieUtil.removeCookie(AppConstants.ACCESS_TOKEN, "lovexq.net", response);
    CookieUtil.removeCookie(AppConstants.USER_NAME, "lovexq.net", response);

    return result;
}
 
開發者ID:lupindong,項目名稱:xq_seckill_microservice,代碼行數:19,代碼來源:UserServiceImpl.java

示例13: getAudienceFromToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
public String getAudienceFromToken(String token) {
    String audience;
    try {
        final Claims claims = getClaimsFromToken(token);
        audience = (String) claims.get(CLAIM_KEY_AUDIENCE);
    } catch (Exception e) {
        audience = null;
    }
    return audience;
}
 
開發者ID:rfreedman,項目名稱:tour-of-heros-api-security-zerhusen,代碼行數:11,代碼來源:JwtTokenUtil.java

示例14: getAudienceFromToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
/**
 * @param token
 * @return
 */
public String getAudienceFromToken ( String token ) {
	String audience;
	try {
		final Claims claims = getClaimsFromToken( token );
		audience = ( String ) claims.get( CLAIM_KEY_AUDIENCE );
	} catch ( Exception e ) {
		audience = null;
	}
	return audience;
}
 
開發者ID:yujunhao8831,項目名稱:spring-boot-start-current,代碼行數:15,代碼來源:JwtTokenUtil.java

示例15: getClaimsFromToken

import io.jsonwebtoken.Claims; //導入依賴的package包/類
private Claims getClaimsFromToken(String token) {
    Claims claims;
    try {
        claims = Jwts.parser()
                .setSigningKey(secret)
                .parseClaimsJws(token)
                .getBody();
    } catch (Exception e) {
        claims = null;
    }
    return claims;
}
 
開發者ID:rfreedman,項目名稱:tour-of-heros-api-security-zerhusen,代碼行數:13,代碼來源:JwtTokenUtil.java


注:本文中的io.jsonwebtoken.Claims類示例由純淨天空整理自Github/MSDocs等開源代碼及文檔管理平台,相關代碼片段篩選自各路編程大神貢獻的開源項目,源碼版權歸原作者所有,傳播和使用請參考對應項目的License;未經允許,請勿轉載。