• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• javaee8-jaxrs-sample-master
  • LICENSE
  • backend
    • src
      • main
        • resources
          • ValidationMessages_en.properties
          • messages_en.properties
          • META-INF
            • persistence.xml
            • orm.xml
        • java
          • com
            • github
              • hantsy
                • ee8sample
                  • security
                    • cors
                      • CrossOriginInterceptor.java
                      • CrossOrigin.java
                      • CorsResponseFilter.java
                    • jwt
                      • JwtCredential.java
                      • JpaIdentityStore.java
                      • JwtRememberMeIdentityStore.java
                      • package-info.java
                      • TokenProvider.java
                      • JwtAuthenticationMechanism.java
                    • AuthenticatedUserInfoProducer.java
                    • UserInfo.java
                    • Authenticated.java
                    • hash
                      • PasswordEncoder.java
                      • plain
                        • PlainPasswordEncoder.java
                      • PasswordEncoderProducer.java
                      • bcrypt
                        • BCrypt.java
                        • package-info.java
                        • BCryptPasswordEncoder.java
                      • Crypto.java
                  • Resources.java
                  • JaxrsActiviator.java
                  • Utils.java
                  • Constants.java
                  • aggregate
                    • PageMetadata.java
                    • PostSummaryList.java
                    • AggregateResource.java
                    • PostDetails.java
                    • PostSummary.java
                  • Bootstrap.java
                  • domain
                    • support
                      • AuditEntityListener.java
                      • AbstractEntity.java
                      • AbstractRepository.java
                      • AbstractAuditableEntity.java
                    • Count.java
                    • Username.java
                    • Existed.java
                    • Favorite.java
                    • Post.java
                    • Comment.java
                    • repository
                      • CommentRepository.java
                      • PostRepository.java
                      • FavoriteRepository.java
                      • UserRepository.java
                    • User.java
                    • SlugWithTitle.java
                    • Slug.java
                  • rest
                    • user
                      • UsersResource.java
                      • EmailWasTakenExceptionMapper.java
                      • CurrentUserResource.java
                      • UsernameWasTakenException.java
                      • EmailWasTakenException.java
                      • RegisterForm.java
                      • UserForm.java
                      • UsernameWasTakenExceptionMapper.java
                      • UserResource.java
                      • UserMessageBodyWiter.java
                    • post
                      • CommentNotFoundExceptionMapper.java
                      • CommentsResource.java
                      • PostResource.java
                      • PostNotFoundExceptionMapper.java
                      • PostsResource.java
                      • CommentForm.java
                      • PostNotFoundException.java
                      • CommentNotFoundException.java
                      • FavoritesResource.java
                      • PostForm.java
                    • auth
                      • AuthResource.java
        • webapp
          • WEB-INF
            • glassfish-web.xml
            • beans.xml
            • web.xml
      • test
        • resources
          • test-web.xml
          • arquillian.xml
          • META-INF
            • test-beans.xml
            • test-orm.xml
            • test-persistence.xml
        • java
          • com
            • github
              • hantsy
                • ee8sample
                  • security
                    • hash
                      • PlainPasswordEncoderTest.java
                      • BCryptPasswordEncoderTest.java
                  • domain
                    • repository
                      • PostRepositoryIT.java
                  • rest
                    • PostResourceIT.java
                    • UserResourceWithoutAuthIT.java
                    • JwtTokenAuthentication.java
                    • EdgeResourceIT.java
                    • PostResourceWithoutAuthIT.java
                    • AuthResourceIT.java
                    • UserResourceIT.java
                    • CurrentUserResourceIT.java
    • pom.xml
  • README.md
  • .gitignore

/*
 * To change this license header, choose License Headers in Project Properties.
 * To change this template file, choose Tools | Templates
 * and open the template in the editor.
 */
package com.github.hantsy.ee8sample.security.jwt;

import static com.github.hantsy.ee8sample.Constants.REMEMBERME_VALIDITY_SECONDS;
import static com.github.hantsy.ee8sample.Constants.TOKEN_VALIDITY_SECONDS;
import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import io.jsonwebtoken.SignatureException;
import java.util.Arrays;
import java.util.Date;
import java.util.Set;
import java.util.concurrent.TimeUnit;
import java.util.logging.Level;
import java.util.logging.Logger;
import java.util.stream.Collectors;
import static java.util.stream.Collectors.joining;
import javax.annotation.PostConstruct;
import javax.enterprise.context.ApplicationScoped;
import javax.inject.Inject;

/**
 *
 * @author hantsy
 */
@ApplicationScoped
public class TokenProvider {

    @Inject
    Logger LOGGER;

    private static final String AUTHORITIES_KEY = "auth";

    private String secretKey;

    private long tokenValidity;

    private long tokenValidityForRememberMe;

    @PostConstruct
    public void init() {
        // load from config
        this.secretKey = "my-secret-jwt-key";
        this.tokenValidity = TimeUnit.SECONDS.toMillis(TOKEN_VALIDITY_SECONDS);   
        this.tokenValidityForRememberMe = TimeUnit.SECONDS.toMillis(REMEMBERME_VALIDITY_SECONDS);  
    }

    public String createToken(String username, Set<String> authorities, Boolean rememberMe) {
        long now = (new Date()).getTime();
        long validity = rememberMe ? tokenValidityForRememberMe : tokenValidity;

        return Jwts.builder()
                .setSubject(username)
                .claim(AUTHORITIES_KEY, authorities.stream().collect(joining(",")))
                .signWith(SignatureAlgorithm.HS512, secretKey)
                .setExpiration(new Date(now + validity))
                .compact();
    }

    public JwtCredential getCredential(String token) {
        Claims claims = Jwts.parser()
                .setSigningKey(secretKey)
                .parseClaimsJws(token)
                .getBody();

        Set<String> authorities
                = Arrays.asList(claims.get(AUTHORITIES_KEY).toString().split(","))
                        .stream()
                        .collect(Collectors.toSet());

        return new JwtCredential(claims.getSubject(), authorities);
    }

    public boolean validateToken(String authToken) {
        try {
            Jwts.parser().setSigningKey(secretKey).parseClaimsJws(authToken);
            return true;
        } catch (SignatureException e) {
            LOGGER.log(Level.INFO, "Invalid JWT signature: {0}", e.getMessage());
            return false;
        }
    }
}