TokenProvider.java example

Explorer

Points-master
- 21-points-master
  - src
    - main
      - java
        org
        jhipster
        health
        Application.java
        ApplicationWebXml.java
        aop
        logging
        LoggingAspect.java
        async
        ExceptionHandlingAsyncTaskExecutor.java
        package-info.java
        config
        AsyncConfiguration.java
        CacheConfiguration.java
        CloudDatabaseConfiguration.java
        Constants.java
        DatabaseConfiguration.java
        DefaultProfileUtil.java
        ElasticSearchConfiguration.java
        JHipsterProperties.java
        JacksonConfiguration.java
        LocaleConfiguration.java
        LoggingAspectConfiguration.java
        LoggingConfiguration.java
        MetricsConfiguration.java
        SecurityConfiguration.java
        ThymeleafConfiguration.java
        WebConfigurer.java
        WebsocketConfiguration.java
        WebsocketSecurityConfiguration.java
        apidoc
        PageableParameterBuilderPlugin.java
        SwaggerConfiguration.java
        package-info.java
        audit
        AuditEventConverter.java
        package-info.java
        liquibase
        AsyncSpringLiquibase.java
        package-info.java
        locale
        AngularCookieLocaleResolver.java
        package-info.java
        package-info.java
        domain
        AbstractAuditingEntity.java
        Authority.java
        BloodPressure.java
        PersistentAuditEvent.java
        Points.java
        Preferences.java
        User.java
        Weight.java
        enumeration
        Units.java
        package-info.java
        util
        FixedH2Dialect.java
        FixedPostgreSQL82Dialect.java
        JSR310DateConverters.java
        JSR310PersistenceConverters.java
        repository
        AuthorityRepository.java
        BloodPressureRepository.java
        CustomAuditEventRepository.java
        PersistenceAuditEventRepository.java
        PointsRepository.java
        PreferencesRepository.java
        UserRepository.java
        WeightRepository.java
        package-info.java
        search
        BloodPressureSearchRepository.java
        PointsSearchRepository.java
        PreferencesSearchRepository.java
        UserSearchRepository.java
        WeightSearchRepository.java
        package-info.java
        security
        AuthoritiesConstants.java
        Http401UnauthorizedEntryPoint.java
        SecurityUtils.java
        SpringSecurityAuditorAware.java
        UserDetailsService.java
        UserNotActivatedException.java
        jwt
        JWTConfigurer.java
        JWTFilter.java
        TokenProvider.java
        package-info.java
        service
        AuditEventService.java
        MailService.java
        UserService.java
        dto
        UserDTO.java
        package-info.java
        mapper
        UserMapper.java
        package-info.java
        package-info.java
        util
        RandomUtil.java
        web
        filter
        CachingHttpHeadersFilter.java
        package-info.java
        rest
        AccountResource.java
        AuditResource.java
        BloodPressureResource.java
        JWTToken.java
        LogsResource.java
        PointsResource.java
        PreferencesResource.java
        ProfileInfoResource.java
        UserJWTController.java
        UserResource.java
        WeightResource.java
        errors
        CustomParameterizedException.java
        ErrorConstants.java
        ErrorVM.java
        ExceptionTranslator.java
        FieldErrorVM.java
        ParameterizedErrorVM.java
        package-info.java
        util
        HeaderUtil.java
        PaginationUtil.java
        vm
        BloodPressureByPeriod.java
        KeyAndPasswordVM.java
        LoggerVM.java
        LoginVM.java
        ManagedUserVM.java
        PointsPerMonth.java
        PointsPerWeek.java
        WeightByPeriod.java
        package-info.java
        websocket
        ActivityService.java
        dto
        ActivityDTO.java
        package-info.java
        package-info.java
    - test
      - java
        org
        jhipster
        health
        config
        elasticsearch
        IndexReinitializer.java
        security
        SecurityUtilsUnitTest.java
        service
        UserServiceIntTest.java
        web
        rest
        AccountResourceIntTest.java
        AuditResourceIntTest.java
        BloodPressureResourceIntTest.java
        PointsResourceIntTest.java
        PreferencesResourceIntTest.java
        TestUtil.java
        UserResourceIntTest.java
        WeightResourceIntTest.java

package org.jhipster.health.security.jwt;

import org.jhipster.health.config.JHipsterProperties;

import java.util.*;
import java.util.stream.Collectors;
import javax.annotation.PostConstruct;
import javax.inject.Inject;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.stereotype.Component;

import io.jsonwebtoken.*;

@Component
public class TokenProvider {

    private final Logger log = LoggerFactory.getLogger(TokenProvider.class);

    private static final String AUTHORITIES_KEY = "auth";

    private String secretKey;

    private long tokenValidityInSeconds;

    private long tokenValidityInSecondsForRememberMe;

    @Inject
    private JHipsterProperties jHipsterProperties;

    @PostConstruct
    public void init() {
        this.secretKey =
            jHipsterProperties.getSecurity().getAuthentication().getJwt().getSecret();

        this.tokenValidityInSeconds =
            1000 * jHipsterProperties.getSecurity().getAuthentication().getJwt().getTokenValidityInSeconds();
        this.tokenValidityInSecondsForRememberMe =
            1000 * jHipsterProperties.getSecurity().getAuthentication().getJwt().getTokenValidityInSecondsForRememberMe();
    }

    public String createToken(Authentication authentication, Boolean rememberMe) {
        String authorities = authentication.getAuthorities().stream()
            .map(authority -> authority.getAuthority())
            .collect(Collectors.joining(","));

        long now = (new Date()).getTime();
        Date validity;
        if (rememberMe) {
            validity = new Date(now + this.tokenValidityInSecondsForRememberMe);
        } else {
            validity = new Date(now + this.tokenValidityInSeconds);
        }

        return Jwts.builder()
            .setSubject(authentication.getName())
            .claim(AUTHORITIES_KEY, authorities)
            .signWith(SignatureAlgorithm.HS512, secretKey)
            .setExpiration(validity)
            .compact();
    }

    public Authentication getAuthentication(String token) {
        Claims claims = Jwts.parser()
            .setSigningKey(secretKey)
            .parseClaimsJws(token)
            .getBody();

        Collection<? extends GrantedAuthority> authorities =
            Arrays.asList(claims.get(AUTHORITIES_KEY).toString().split(",")).stream()
                .map(authority -> new SimpleGrantedAuthority(authority))
                .collect(Collectors.toList());

        User principal = new User(claims.getSubject(), "",
            authorities);

        return new UsernamePasswordAuthenticationToken(principal, "", authorities);
    }

    public boolean validateToken(String authToken) {
        try {
            Jwts.parser().setSigningKey(secretKey).parseClaimsJws(authToken);
            return true;
        } catch (SignatureException e) {
            log.info("Invalid JWT signature: " + e.getMessage());
            return false;
        }
    }
}