本文整理汇总了Java中org.springframework.security.jwt.crypto.sign.RsaVerifier类的典型用法代码示例。如果您正苦于以下问题:Java RsaVerifier类的具体用法?Java RsaVerifier怎么用?Java RsaVerifier使用的例子?那么恭喜您, 这里精选的类代码示例或许可以为您提供帮助。
RsaVerifier类属于org.springframework.security.jwt.crypto.sign包,在下文中一共展示了RsaVerifier类的10个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于我们的系统推荐出更棒的Java代码示例。
示例1: rsaKeyCreatesValidRsaSignedTokens
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Test
public void rsaKeyCreatesValidRsaSignedTokens() throws Exception {
String rsaKey = "-----BEGIN RSA PRIVATE KEY----- \n"
+ "MIIBywIBAAJhAOTeb4AZ+NwOtPh+ynIgGqa6UWNVe6JyJi+loPmPZdpHtzoqubnC \n"
+ "wEs6JSiSZ3rButEAw8ymgLV6iBY02hdjsl3h5Z0NWaxx8dzMZfXe4EpfB04ISoqq\n"
+ "hZCxchvuSDP4eQIDAQABAmEAqUuYsuuDWFRQrZgsbGsvC7G6zn3HLIy/jnM4NiJK\n"
+ "t0JhWNeN9skGsR7bqb1Sak2uWqW8ZqnqgAC32gxFRYHTavJEk6LTaHWovwDEhPqc\n"
+ "Zs+vXd6tZojJQ35chR/slUEBAjEA/sAd1oFLWb6PHkaz7r2NllwUBTvXL4VcMWTS\n"
+ "pN+5cU41i9fsZcHw6yZEl+ZCicDxAjEA5f3R+Bj42htNI7eylebew1+sUnFv1xT8\n"
+ "jlzxSzwVkoZo+vef7OD6OcFLeInAHzAJAjEAs6izolK+3ETa1CRSwz0lPHQlnmdM\n"
+ "Y/QuR5tuPt6U/saEVuJpkn4LNRtg5qt6I4JRAjAgFRYTG7irBB/wmZFp47izXEc3\n"
+ "gOdvA1hvq3tlWU5REDrYt24xpviA0fvrJpwMPbECMAKDKdiDi6Q4/iBkkzNMefA8\n"
+ "7HX27b9LR33don/1u/yvzMUo+lrRdKAFJ+9GPE9XFA== \n" + "-----END RSA PRIVATE KEY----- ";
tokenEnhancer.setSigningKey(rsaKey);
OAuth2Authentication authentication = new OAuth2Authentication(createOAuth2Request("foo", null),
userAuthentication);
OAuth2AccessToken token = tokenEnhancer.enhance(new DefaultOAuth2AccessToken("FOO"), authentication);
JwtHelper.decodeAndVerify(token.getValue(), new RsaVerifier(rsaKey));
}
开发者ID:jungyang,项目名称:oauth-client-master,代码行数:20,代码来源:JwtTokenEnhancerTests.java
示例2: getSignatureVerifier
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Override
public SignatureVerifier getSignatureVerifier() throws Exception {
String publicKeyEndpointUri = getTokenEndpoint().replace("/token", "/certs");
HttpEntity<Void> request = new HttpEntity<Void>(new HttpHeaders());
LinkedHashMap<String, List<Map<String, Object>>> result =
restTemplate.getForObject(publicKeyEndpointUri, LinkedHashMap.class);
Map<String, Object> properties = result.get("keys").get(0);
BigInteger modulus = new BigInteger(1, Base64Utils.decodeFromUrlSafeString((String) properties.get("n")));
BigInteger publicExponent = new BigInteger(1, Base64Utils.decodeFromString((String) properties.get("e")));
try {
PublicKey publicKey =
KeyFactory.getInstance("RSA").generatePublic(new RSAPublicKeySpec(modulus, publicExponent));
RSAPublicKey rsaKey = (RSAPublicKey) RSAKeyFactory.toRSAKey(publicKey);
return new RsaVerifier(rsaKey);
} catch (GeneralSecurityException ex) {
log.error("could not create key verifier", ex);
throw ex;
}
}
开发者ID:jhipster,项目名称:generator-jhipster,代码行数:20,代码来源:_KeycloakSignatureVerifierClient.java
示例3: verifySignature
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
private static void verifySignature(Jwt jwt, String publicKey) {
try {
RsaVerifier rsaVerifier = new RsaVerifier(publicKey);
jwt.verifySignature(rsaVerifier);
} catch (Exception ex) {
throw new AuthenticationServiceException("Error verifying signature of token");
}
}
开发者ID:evoila,项目名称:cfsummiteu2017,代码行数:9,代码来源:UaaFilterUtils.java
示例4: getSSOAuthentication
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
private OAuth2Authentication getSSOAuthentication(String accessToken) {
try {
SignatureVerifier verifier = isAssymetricKey(jwtSignKey) ? new RsaVerifier(jwtSignKey) : new MacSigner(jwtSignKey);
Jwt jwt = JwtHelper.decodeAndVerify(accessToken, verifier);
Map<String, Object> claims = objectMapper.readValue(jwt.getClaims(), new MapTypeReference());
Object userClaim = claims.get("user");
Map<String, Object> tokenMap = new HashMap<>();
Map<String, Object> userMap = objectMapper.readValue(userClaim.toString(), new MapTypeReference());
String exp = claims.get("exp").toString();
tokenMap.put("exp", Long.valueOf(exp));
Object email = userMap.get("email");
tokenMap.put("user_id", email);
tokenMap.put("user_name", email);
tokenMap.put("scope", Arrays.asList("cloudbreak.networks.read", "periscope.cluster", "cloudbreak.usages.user", "cloudbreak.recipes", "openid",
"cloudbreak.templates.read", "cloudbreak.usages.account", "cloudbreak.events", "cloudbreak.stacks.read",
"cloudbreak.blueprints", "cloudbreak.networks", "cloudbreak.templates", "cloudbreak.credentials.read",
"cloudbreak.securitygroups.read", "cloudbreak.securitygroups", "cloudbreak.stacks", "cloudbreak.credentials",
"cloudbreak.recipes.read", "cloudbreak.blueprints.read"));
OAuth2AccessToken oAuth2AccessToken = jwtAccessTokenConverter.extractAccessToken(accessToken, tokenMap);
if (oAuth2AccessToken.isExpired()) {
throw new InvalidTokenException("The token has expired");
}
OAuth2Authentication oAuth2Authentication = jwtAccessTokenConverter.extractAuthentication(tokenMap);
if (oAuth2Authentication != null) {
LOGGER.info("JWT token verified for: {}", oAuth2Authentication.getPrincipal());
}
return oAuth2Authentication;
} catch (IOException e) {
LOGGER.error("Failed to parse the JWT token", e);
throw new InvalidTokenException("The specified JWT token is invalid", e);
}
}
开发者ID:hortonworks,项目名称:cloudbreak,代码行数:34,代码来源:CachedRemoteTokenService.java
示例5: getSignatureVerifier
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
/**
* Fetches the public key from the UAA.
*
* @return the public key used to verify JWT tokens; or null.
*/
@Override
public SignatureVerifier getSignatureVerifier() throws Exception {
try {
HttpEntity<Void> request = new HttpEntity<Void>(new HttpHeaders());
String key = (String) restTemplate
.exchange(getPublicKeyEndpoint(), HttpMethod.GET, request, Map.class).getBody()
.get("value");
return new RsaVerifier(key);
} catch (IllegalStateException ex) {
log.warn("could not contact UAA to get public key");
return null;
}
}
开发者ID:jhipster,项目名称:generator-jhipster,代码行数:19,代码来源:_UaaSignatureVerifierClient.java
示例6: decodeAndVerify
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Nullable
@Override
public BlueWebToken decodeAndVerify(@Nonnull final String idToken){
final long now = System.currentTimeMillis();
if(log.isTraceEnabled()){
log.trace("Decoding token [" + idToken + "]");
}
try{
Jwt jwt = JwtHelper.decode(idToken);
// Get the key ID we need to use to verify the token
String keyId = getKeyId(idToken);
if("".equals(keyId.trim())){
log.warn("Failed to retrieve key ID for token");
return null;
}
BlueWebToken token = typeSecuredObjectMapper().readValue(
jwt.getClaims(),
BlueWebToken.class);
// Get the key and verify the JWT signature
RSAPublicKey key = rsaPublicKey(keyId, token.getAuthContextReference());
jwt.verifySignature(new RsaVerifier(key));
// Validate the nonce
if(!nonceService.isValid(token.getNonce())){
log.warn("Failed to validate nonce in token. This could be a replay attack.");
return null;
}
if(!claimValidationService.validateAudience(token)){
log.warn("Failed to validate audience in token. This could be a replay attack.");
return null;
}
if(!claimValidationService.validateIssuer(token)){
log.warn("Failed to validate issuer of token. This could be a replay attack.");
return null;
}
if(!claimValidationService.validateNotBefore(token, now)){
log.warn("Failed to validate notBefore time in token. This could be a replay attack. 'Now' milliseconds: " + now + "; 'NotBefore' milliseconds: " + token
.getNotBefore()
.toInstant()
.toEpochMilli());
return null;
}
if(!claimValidationService.validateExpiration(token, now)){
log.warn("Failed to validate expiration time in token. This could be a replay attack. 'Now' milliseconds: " + now + "; 'Expiration' milliseconds: " + token
.getExpiration()
.toInstant()
.toEpochMilli());
return null;
}
return token;
}catch(IOException | IllegalArgumentException | InvalidSignatureException x){
log.warn("Failed to extract data from JWT token: " + x.getMessage(), x);
}
return null;
}
开发者ID:Xitikit,项目名称:xitikit-blue,代码行数:61,代码来源:SimpleB2CAuthenticationService.java
示例7: downloadKeys
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
private void downloadKeys(final String url) {
Map<String, SignatureVerifier> tempVerifiers = new HashMap<>();
ResponseEntity<Map> responseEntity = restTemplate.getForEntity(url, Map.class);
Map response = responseEntity.getBody();
for (Object key : response.keySet()) {
String certificateString = (String)response.get(key);
InputStream is = new ByteArrayInputStream(certificateString.getBytes(StandardCharsets.UTF_8));
try {
CertificateFactory f = CertificateFactory.getInstance("X.509");
X509Certificate certificate = (X509Certificate)f.generateCertificate(is);
PublicKey pk = certificate.getPublicKey();
RsaVerifier verifier = new RsaVerifier((RSAPublicKey)pk);
tempVerifiers.put((String)key, verifier);
} catch (Exception e) {
e.printStackTrace();
}
}
if (tempVerifiers.size() > 0) {
// do we need to synchronize here?
verifiers = tempVerifiers;
}
String cacheControlValue = responseEntity.getHeaders().getCacheControl();
int maxAge = DEFAULT_MAX_AGE;
if (cacheControlValue != null) {
Matcher matcher = MAX_AGE_PATTERN.matcher(cacheControlValue);
if (matcher.matches()) {
maxAge = Integer.parseInt(matcher.group(1));
}
}
// start timer to update keys
timer.schedule(new TimerTask() {
@Override
public void run() {
downloadKeys(url);
}
}, maxAge * 1000); // max-age is in seconds unit
}
开发者ID:AgeOfMobile,项目名称:spring-firebase-auth,代码行数:42,代码来源:FirebaseTokenConverter.java
示例8: rsaSignedTokenParsesAndVerifies
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Test
public void rsaSignedTokenParsesAndVerifies() {
Jwt jwt = JwtHelper.decode(JOE_RSA_TOKEN);
jwt.verifySignature(new RsaVerifier(N, E));
assertEquals(JOE_CLAIM_SEGMENT, jwt.getClaims());
}
开发者ID:jungyang,项目名称:oauth-client-master,代码行数:7,代码来源:JwtTests.java
示例9: invalidRsaSignatureRaisesException
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Test(expected = InvalidSignatureException.class)
public void invalidRsaSignatureRaisesException() {
JwtHelper.decodeAndVerify(JOE_RSA_TOKEN, new RsaVerifier(N, D));
}
开发者ID:jungyang,项目名称:oauth-client-master,代码行数:5,代码来源:JwtTests.java
示例10: rsaVerificationIsInverseOfSigning
import org.springframework.security.jwt.crypto.sign.RsaVerifier; //导入依赖的package包/类
@Test
public void rsaVerificationIsInverseOfSigning() {
Jwt jwt = JwtHelper.encode(JOE_CLAIM_SEGMENT, new RsaSigner(N, E));
jwt.verifySignature(new RsaVerifier(N, D));
}
开发者ID:jungyang,项目名称:oauth-client-master,代码行数:6,代码来源:JwtTests.java
注:本文中的org.springframework.security.jwt.crypto.sign.RsaVerifier类示例整理自Github/MSDocs等源码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。 |
客服电话
APP下载
官方微信
请发表评论