0% found this document useful (0 votes)

33 views2 pages

JWT Service Impl

This Java class implements JWT (JSON Web Token) functionality for authentication. It can generate tokens signed with a secret key on login by adding claims like the username and expiration time. It also provides methods to validate tokens, extract claims from tokens, and generate refresh tokens with a separate expiration time. The secret key used for signing tokens is read from configuration and can be refreshed without redeploying the application.

Uploaded by

scribd

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

33 views2 pages

JWT Service Impl

Uploaded by

scribd

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 2

package com.rootedin.huntinghero.

security;

import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import io.jsonwebtoken.io.Decoders;
import io.jsonwebtoken.security.Keys;
import java.security.Key;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;
import java.util.function.Function;

import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.stereotype.Service;

@Service
public class JwtServiceImpl
{
@Value("${application.security.jwt.secret-key: null}")
private String secretKey;
@Value("${application.security.jwt.expiration: 12000}")
private long jwtExpiration;
@Value("${application.security.jwt.refresh-token.expiration: 12000}")
private long refreshExpiration;

public String extractUsername(String token) {

return extractClaim(token, Claims::getSubject);
}

public <T> T extractClaim(String token, Function<Claims, T> claimsResolver) {

final Claims claims = extractAllClaims(token);
return claimsResolver.apply(claims);
}

public String generateToken(UserDetails userDetails) {

return generateToken(new HashMap<>(), userDetails);
}

public String generateToken(

Map<String, Object> extraClaims,
UserDetails userDetails
) {
return buildToken(extraClaims, userDetails, jwtExpiration);
}

public String generateRefreshToken(

UserDetails userDetails
) {
return buildToken(new HashMap<>(), userDetails, refreshExpiration);
}

private String buildToken(

Map<String, Object> extraClaims,
UserDetails userDetails,
long expirationMillis
) {
Key key = Keys.hmacShaKeyFor(secretKey.getBytes());
return Jwts
.builder()
.addClaims(extraClaims)
.setSubject(userDetails.getUsername())
.setIssuedAt(new Date(System.currentTimeMillis()))
.setExpiration(new Date(System.currentTimeMillis() +
expirationMillis))
.signWith(getSignInKey(), SignatureAlgorithm.HS256)
.compact();
}

public boolean isTokenValid(String token, UserDetails userDetails) {

final String username = extractUsername(token);
return (username.equals(userDetails.getUsername())) && !
isTokenExpired(token);
}

private boolean isTokenExpired(String token) {

return extractExpiration(token).before(new Date());
}

private Date extractExpiration(String token) {

return extractClaim(token, Claims::getExpiration);
}

private Claims extractAllClaims(String token) {

return Jwts.parser()
.setSigningKey(getSignInKey())
.build()
.parseClaimsJws(token)
.getBody();
}

private Key getSignInKey() {

byte[] keyBytes = Decoders.BASE64.decode(secretKey);
return Keys.hmacShaKeyFor(keyBytes);
}
}

Browser Fingerprinting Protection
No ratings yet
Browser Fingerprinting Protection
105 pages
DELTA IA-Robot ALL C EN Ver2023 20231026
No ratings yet
DELTA IA-Robot ALL C EN Ver2023 20231026
16 pages
01 JWT Authentication in Spring Boot 3 With Spring Security 6
No ratings yet
01 JWT Authentication in Spring Boot 3 With Spring Security 6
38 pages
85001057A, Manual
100% (1)
85001057A, Manual
30 pages
Usertable, Dto&JWT
No ratings yet
Usertable, Dto&JWT
3 pages
Spring Boot Security
No ratings yet
Spring Boot Security
11 pages
JWT Authentication Full Explanation
No ratings yet
JWT Authentication Full Explanation
2 pages
2d Computer Graphics in Modern C and Standard Library Compress
No ratings yet
2d Computer Graphics in Modern C and Standard Library Compress
466 pages
Spring Boot Version 3
No ratings yet
Spring Boot Version 3
20 pages
Form B:: Celcom Corporate Securevpn Change Request - SSL VPN (For Vendor/Partner)
No ratings yet
Form B:: Celcom Corporate Securevpn Change Request - SSL VPN (For Vendor/Partner)
3 pages
CryptolabDA 4
No ratings yet
CryptolabDA 4
10 pages
Spring Boot Token Based Authentication With Spring Security and JWT
No ratings yet
Spring Boot Token Based Authentication With Spring Security and JWT
30 pages
JWT TOKEN and Refresh Token
No ratings yet
JWT TOKEN and Refresh Token
16 pages
JSON Web Token Cheatsheet For Java
No ratings yet
JSON Web Token Cheatsheet For Java
14 pages
Sequence
No ratings yet
Sequence
2 pages
2-MP PM2
No ratings yet
2-MP PM2
3 pages
AGMG7VSS
No ratings yet
AGMG7VSS
8 pages
GCP API Gateway Iam Roles
No ratings yet
GCP API Gateway Iam Roles
16 pages
CryptolabDA 5
No ratings yet
CryptolabDA 5
10 pages
Access Token Azure
No ratings yet
Access Token Azure
5 pages
Generate JWT Token Updated
No ratings yet
Generate JWT Token Updated
3 pages
Spring Security Notes
No ratings yet
Spring Security Notes
14 pages
Spring Security Hirchoua Badr Xproce
No ratings yet
Spring Security Hirchoua Badr Xproce
7 pages
21e41e0057 - A Report On Indian Stock Exchange Analysis - Iifl
No ratings yet
21e41e0057 - A Report On Indian Stock Exchange Analysis - Iifl
56 pages
Management Information Systems Managing The Digital Firm 17ed-243-274.en - Id
No ratings yet
Management Information Systems Managing The Digital Firm 17ed-243-274.en - Id
32 pages
SRS - Final Year Project (Flappy Birds) Software Requirements Specification by Shoaib
No ratings yet
SRS - Final Year Project (Flappy Birds) Software Requirements Specification by Shoaib
21 pages
Google Auth Service
No ratings yet
Google Auth Service
1 page
Connection-Configs Dart
No ratings yet
Connection-Configs Dart
2 pages
Notas 3
No ratings yet
Notas 3
2 pages
Decrypt JWT Token
No ratings yet
Decrypt JWT Token
3 pages
586C Edge Banding Machine2023.2
No ratings yet
586C Edge Banding Machine2023.2
11 pages
07 Sep 2021 ClassNotes
No ratings yet
07 Sep 2021 ClassNotes
3 pages
Hahah
No ratings yet
Hahah
2 pages
TP - Code
No ratings yet
TP - Code
17 pages
Logical Micro Instructions in Computer Organization and Architecture
No ratings yet
Logical Micro Instructions in Computer Organization and Architecture
9 pages
Dependencies Upgrade For Java 21 of The New Centery Project
No ratings yet
Dependencies Upgrade For Java 21 of The New Centery Project
21 pages
Class IX - Polynomials - Assignment - Type - I
No ratings yet
Class IX - Polynomials - Assignment - Type - I
5 pages
Brainy Kl6 Short Tests Answer Key
No ratings yet
Brainy Kl6 Short Tests Answer Key
13 pages
Https:chartswap My Salesforce-Sites Com:rrequestview?id a0G3y00000RcsDtEAJ
No ratings yet
Https:chartswap My Salesforce-Sites Com:rrequestview?id a0G3y00000RcsDtEAJ
2 pages
What Is JWT (JSON Web Token), and Why Is It Used in Spring Security? Answer
No ratings yet
What Is JWT (JSON Web Token), and Why Is It Used in Spring Security? Answer
17 pages
JWT Codes
No ratings yet
JWT Codes
3 pages
Gencc501 Print1
No ratings yet
Gencc501 Print1
25 pages
00 - SIMOS (300-209) Course Introduction
No ratings yet
00 - SIMOS (300-209) Course Introduction
5 pages
Strings
No ratings yet
Strings
22 pages
3i - Portable Device For On-Line Insulation Monitoring in Switchgear Cells and HV/MV Cables by Partial Discharges
No ratings yet
3i - Portable Device For On-Line Insulation Monitoring in Switchgear Cells and HV/MV Cables by Partial Discharges
3 pages
Admit Letters For CAIIB - July 2024 Candidate Details
No ratings yet
Admit Letters For CAIIB - July 2024 Candidate Details
3 pages
How To Implement Spring Security With OAuth2 - DZone Security
No ratings yet
How To Implement Spring Security With OAuth2 - DZone Security
23 pages
Sample Microservices Exercises
No ratings yet
Sample Microservices Exercises
6 pages
Java
No ratings yet
Java
5 pages
SSOLogin
No ratings yet
SSOLogin
5 pages
CSC Openapi
No ratings yet
CSC Openapi
23 pages
Comex Net Api
No ratings yet
Comex Net Api
4 pages
Block Cipher Modes of Operation: Electronic Code Book (ECB)
No ratings yet
Block Cipher Modes of Operation: Electronic Code Book (ECB)
3 pages
Irjet V6i3619
No ratings yet
Irjet V6i3619
3 pages
App-Authentication: Description
No ratings yet
App-Authentication: Description
3 pages
Guid
No ratings yet
Guid
3 pages
Ramu Says "If Log X 0
No ratings yet
Ramu Says "If Log X 0
2 pages
Scribe User Guide
No ratings yet
Scribe User Guide
38 pages
Untitled 1
No ratings yet
Untitled 1
16 pages
Blue Coat Authentication Webcast Final
No ratings yet
Blue Coat Authentication Webcast Final
53 pages
P 90
No ratings yet
P 90
1 page
JWT 2
No ratings yet
JWT 2
4 pages
Authentication Authorisation JWT
No ratings yet
Authentication Authorisation JWT
15 pages
Medium Com Omarelgabrys Blog Microservices With Spring Boot Authentication With JWT Part 3 Fafc9d7187e8
No ratings yet
Medium Com Omarelgabrys Blog Microservices With Spring Boot Authentication With JWT Part 3 Fafc9d7187e8
19 pages
p89v51 Semi
No ratings yet
p89v51 Semi
3 pages
JWT Token Based Authentication
No ratings yet
JWT Token Based Authentication
4 pages
API Security Using OIDC
No ratings yet
API Security Using OIDC
7 pages
Microservices Architecture
No ratings yet
Microservices Architecture
12 pages
Introduction To Network Management Protocols SNMP and TR-069
No ratings yet
Introduction To Network Management Protocols SNMP and TR-069
22 pages
JWT Decode Vs Verify
No ratings yet
JWT Decode Vs Verify
3 pages
Client Credentials Flow
No ratings yet
Client Credentials Flow
10 pages
Vlan Basic Concepts Explained With Examples
No ratings yet
Vlan Basic Concepts Explained With Examples
7 pages
Secure REST Service With OAuth2 Tokens - Java Code Geeks - 2018 PDF
No ratings yet
Secure REST Service With OAuth2 Tokens - Java Code Geeks - 2018 PDF
9 pages
Sample Api
No ratings yet
Sample Api
7 pages
Tu Nguon Benning
100% (1)
Tu Nguon Benning
44 pages
Project Element Response: Project Name Today's Date Project Start Date Target Completion Date
No ratings yet
Project Element Response: Project Name Today's Date Project Start Date Target Completion Date
2 pages
jQuery 1.4 Reference Guide
From Everand
jQuery 1.4 Reference Guide
Jonathan Chaffer
3.5/5 (2)
NgRx SignalStore: An effortless solution for state management
From Everand
NgRx SignalStore: An effortless solution for state management
Abdelfattah Ragab
No ratings yet
Angular HTTP: Connecting to the REST API
From Everand
Angular HTTP: Connecting to the REST API
Abdelfattah Ragab
No ratings yet
NoSQL Injection for Elasticsearch
From Everand
NoSQL Injection for Elasticsearch
Gary Drocella
No ratings yet
Fresher PyQt5: A Beginner’s Guide to PyQt5
From Everand
Fresher PyQt5: A Beginner’s Guide to PyQt5
Edward Chang
No ratings yet
Core Java Programming Book
From Everand
Core Java Programming Book
Manish Soni
No ratings yet
Build Your Own Blockchain In JS
From Everand
Build Your Own Blockchain In JS
Sankar Srinivasan
5/5 (1)
Javascript Assessment Test
From Everand
Javascript Assessment Test
Edward Yao
No ratings yet
Build your own Blockchain: Make your own blockchain and trading bot on your pc
From Everand
Build your own Blockchain: Make your own blockchain and trading bot on your pc
Magelan Cybersecurity
No ratings yet
Ajax in One Hour, For Beginners, Learn Coding Fast
From Everand
Ajax in One Hour, For Beginners, Learn Coding Fast
Ray Yao
No ratings yet
Oracle Certified Professional Java Programmer OCPJP 1Z0 809
From Everand
Oracle Certified Professional Java Programmer OCPJP 1Z0 809
Manish Soni
No ratings yet
MCTS 70-515 Exam: Web Applications Development with Microsoft .NET Framework 4 (Exam Prep)
From Everand
MCTS 70-515 Exam: Web Applications Development with Microsoft .NET Framework 4 (Exam Prep)
Eddie Vi
4/5 (1)
Microsoft Visual Basic Interview Questions: Microsoft VB Certification Review
From Everand
Microsoft Visual Basic Interview Questions: Microsoft VB Certification Review
Equity Press
No ratings yet
Inspiring Powershell Articles
From Everand
Inspiring Powershell Articles
Murat Yildirimoglu
No ratings yet

JWT Service Impl

Uploaded by

JWT Service Impl

Uploaded by

package com.rootedin.huntinghero.

public String extractUsername(String token) {

public <T> T extractClaim(String token, Function<Claims, T> claimsResolver) {

public String generateToken(UserDetails userDetails) {

public String generateToken(

public String generateRefreshToken(

private String buildToken(

public boolean isTokenValid(String token, UserDetails userDetails) {

private boolean isTokenExpired(String token) {

private Date extractExpiration(String token) {

private Claims extractAllClaims(String token) {

private Key getSignInKey() {

You might also like