java source code of TokenProvider

klask-io-master
- .eslintignore
- src
  - main
    - resources
      - i18n
        messages_en.properties
        messages.properties
        messages_fr.properties
      - elasticsearch
        mapping.json
        settings.json
      - .h2.server.properties
      - templates
        error.html
      - config
        application.yml
        application-docker.yml
        application-dev.yml
        application-prod.yml
        liquibase
        users.csv
        users_authorities.csv
        authorities.csv
        changelog
        00000000000000_initial_schema.xml
        20160429230243_added_entity_File.xml
        master.xml
      - mails
        passwordResetEmail.html
        creationEmail.html
        activationEmail.html
      - logback-spring.xml
      - banner.txt
    - docker
      - sonar.yml
      - app.yml
      - postgresql.yml
      - elasticsearch.yml
    - java
      - io
        klask
        security
        AuthoritiesConstants.java
        jwt
        JWTConfigurer.java
        JWTFilter.java
        TokenProvider.java
        UserDetailsService.java
        UserNotActivatedException.java
        SecurityUtils.java
        SpringSecurityAuditorAware.java
        package-info.java
        Http401UnauthorizedEntryPoint.java
        web
        rest
        ProfileInfoResource.java
        ProjectResource.java
        dto
        LoginDTO.java
        LoggerDTO.java
        ExtensionDTO.java
        KeyAndPasswordDTO.java
        FileDetailDTO.java
        UserDTO.java
        package-info.java
        ManagedUserDTO.java
        VersionDTO.java
        ProjectDTO.java
        FileDTO.java
        VersionResource.java
        JWTToken.java
        util
        Queries.java
        EncodingUtil.java
        PaginationUtil.java
        HeaderUtil.java
        ExtensionResource.java
        UserJWTController.java
        package-info.java
        UserResource.java
        CrawlerResource.java
        AuditResource.java
        LogsResource.java
        AccountResource.java
        FileResource.java
        errors
        ExceptionTranslator.java
        ErrorConstants.java
        ParameterizedErrorDTO.java
        FieldErrorDTO.java
        CustomParameterizedException.java
        ErrorDTO.java
        mapper
        UserMapper.java
        FileMapper.java
        filter
        CachingHttpHeadersFilter.java
        ContextHeaderFilter.java
        package-info.java
        config
        ElasticSearchConfiguration.java
        LoggingAspectConfiguration.java
        DatabaseConfiguration.java
        SecurityConfiguration.java
        audit
        package-info.java
        AuditEventConverter.java
        MetricsConfiguration.java
        JacksonConfiguration.java
        DefaultProfileUtil.java
        Constants.java
        LocaleConfiguration.java
        locale
        AngularCookieLocaleResolver.java
        package-info.java
        ThymeleafConfiguration.java
        package-info.java
        WebConfigurer.java
        LoggingConfiguration.java
        JHipsterProperties.java
        liquibase
        AsyncSpringLiquibase.java
        package-info.java
        apidoc
        SwaggerConfiguration.java
        package-info.java
        KlaskProperties.java
        AsyncConfiguration.java
        CloudDatabaseConfiguration.java
        service
        UserService.java
        MailService.java
        util
        RandomUtil.java
        CrawlerService.java
        package-info.java
        AuditEventService.java
        crawler
        impl
        SVNCrawler.java
        GitCrawler.java
        FileSystemCrawler.java
        filesystem
        FileSystemVisitorCrawler.java
        AsyncCrawler.java
        CrawlerResult.java
        ICrawler.java
        KlaskApp.java
        ApplicationWebXml.java
        aop
        logging
        LoggingAspect.java
        domain
        PersistentAuditEvent.java
        AbstractAuditingEntity.java
        util
        FixedPostgreSQL82Dialect.java
        JSR310DateTimeSerializer.java
        FixedH2Dialect.java
        JSR310LocalDateDeserializer.java
        JSR310DateConverters.java
        JSR310PersistenceConverters.java
        package-info.java
        Authority.java
        File.java
        User.java
        repository
        AuthorityRepository.java
        PersistenceAuditEventRepository.java
        search
        CustomSearchRepositoryImpl.java
        package-info.java
        UserSearchRepository.java
        FileSearchRepository.java
        CustomSearchRepository.java
        mapper
        ResultTruncatedContentMapper.java
        ResultHighlightMapper.java
        CustomAuditEventRepository.java
        package-info.java
        UserRepository.java
        async
        package-info.java
        ExceptionHandlingAsyncTaskExecutor.java
    - webapp
      - robots.txt
      - i18n
        en
        global.json
        register.json
        activate.json
        sessions.json
        file.json
        settings.json
        health.json
        error.json
        login.json
        crawler.json
        gateway.json
        password.json
        audits.json
        logs.json
        configuration.json
        home.json
        reset.json
        metrics.json
        user-management.json
        angular-locale_fr.js
        fr
        global.json
        register.json
        activate.json
        sessions.json
        file.json
        settings.json
        health.json
        error.json
        login.json
        crawler.json
        gateway.json
        password.json
        audits.json
        logs.json
        configuration.json
        home.json
        reset.json
        metrics.json
        user-management.json
        angular-locale_en.js
      - content
        images
        klask-io-inkscape.svg
        css
        main.css
        documentation.css
      - swagger-ui
        images
        throbber.gif
        index.html
      - favicon.ico
      - 404.html
      - syntaxhighlighter
        shCore.js
        shCoreDefault.css
        shCore.css
        shBrushJava.js
        shThemeDefault.css
        shThemeEclipse.css
      - index.html
      - app
        app.module.js
        home
        home.html
        home.directive.js
        home-detail.controller.js
        home.controller.js
        home.state.js
        home-detail.html
        home.search.service.js
        home.service.js
        services
        profiles
        page-ribbon.directive.js
        profile.service.js
        user
        user.service.js
        auth
        activate.service.js
        auth.service.js
        auth.jwt.service.js
        has-any-authority.directive.js
        password-reset-finish.service.js
        password-reset-init.service.js
        password.service.js
        account.service.js
        principal.service.js
        register.service.js
        has-authority.directive.js
        admin
        configuration
        configuration.service.js
        configuration.html
        configuration.state.js
        configuration.controller.js
        audits
        audits.html
        audits.controller.js
        audits.service.js
        audits.state.js
        admin.state.js
        health
        health.controller.js
        health.modal.html
        health.modal.controller.js
        health.service.js
        health.state.js
        health.html
        user-management
        user-management-delete-dialog.controller.js
        user-management.controller.js
        user-management-dialog.controller.js
        user-management-detail.controller.js
        user-management.html
        user-management-detail.html
        user-management-dialog.html
        user-management-delete-dialog.html
        user-management.state.js
        crawler
        crawler.service.js
        crawler.controller.js
        crawler.html
        crawler.state.js
        logs
        logs.controller.js
        logs.html
        logs.service.js
        logs.state.js
        metrics
        metrics.modal.controller.js
        metrics.html
        metrics.service.js
        metrics.controller.js
        metrics.state.js
        metrics.modal.html
        docs
        docs.state.js
        docs.html
        app.state.js
        components
        language
        language.filter.js
        language.constants.js
        language.controller.js
        language.service.js
        util
        sort-by.directive.js
        parse-links.service.js
        capitalize.filter.js
        truncate-characters.filter.js
        jhi-item-count.directive.js
        truncate-words.filter.js
        base64.service.js
        data-util.service.js
        date-util.service.js
        sort.directive.js
        pagination-util.service.js
        form
        show-validation.directive.js
        minbytes.directive.js
        maxbytes.directive.js
        pagination.constants.js
        alert
        alert-error.directive.js
        alert.directive.js
        alert.service.js
        login
        login.controller.js
        login.service.js
        login.html
        app.constants.js
        blocks
        handlers
        state.handler.js
        translation.handler.js
        config
        compile.config.js
        translation-storage.provider.js
        uib-pager.config.js
        translation.config.js
        http.config.js
        localstorage.config.js
        uib-pagination.config.js
        alert.config.js
        interceptor
        auth.interceptor.js
        errorhandler.interceptor.js
        auth-expired.interceptor.js
        notification.interceptor.js
        account
        password
        password.state.js
        password-strength-bar.directive.js
        password.controller.js
        password.html
        reset
        finish
        reset.finish.state.js
        reset.finish.html
        reset.finish.controller.js
        request
        reset.request.html
        reset.request.state.js
        reset.request.controller.js
        activate
        activate.html
        activate.controller.js
        activate.state.js
        account.state.js
        register
        register.controller.js
        register.state.js
        register.html
        settings
        settings.controller.js
        settings.state.js
        settings.html
        entities
        entity.state.js
        file
        file-dialog.controller.js
        files.html
        file-detail.controller.js
        file-dialog.html
        file-delete-dialog.controller.js
        file.controller.js
        file.search.service.js
        file.state.js
        file-delete-dialog.html
        file-detail.html
        layouts
        error
        error.html
        error.state.js
        accessdenied.html
        navbar
        active-link.directive.js
        active-menu.directive.js
        navbar.controller.js
        navbar.html
      - prism
        prism.css
        prism.js
        LICENCE
  - test
    - resources
      - logback-test.xml
      - config
        application.yml
    - javascript
      - spec
        helpers
        httpBackend.js
        module.js
        app
        services
        auth
        auth.services.spec.js
        admin
        health
        health.controller.spec.js
        components
        login
        login.controller.spec.js
        account
        password
        password-strength-bar.directive.spec.js
        password.controller.spec.js
        reset
        finish
        reset.finish.controller.spec.js
        request
        reset.request.controller.spec.js
        activate
        activate.controller.spec.js
        register
        register.controller.spec.js
        settings
        settings.controller.spec.js
        entities
        file
        file-detail.controller.spec.js
      - karma.conf.js
    - gatling
      - simulations
        FileGatlingTest.scala
      - conf
        gatling.conf
    - java
      - io
        klask
        security
        SecurityUtilsUnitTest.java
        web
        rest
        TestUtil.java
        VersionResourceIntTest.java
        UserResourceIntTest.java
        AccountResourceIntTest.java
        AuditResourceIntTest.java
        FileResourceIntTest.java
        vcs
        svn
        TestCheckOut.java
        config
        elasticsearch
        IndexReinitializer.java
        service
        UserServiceIntTest.java
        CrawlerServiceTest.java
- bower.json
- .yo-rc.json
- pom.xml
- mvnw
- .eslintrc.json
- LICENSE
- .editorconfig
- .gitattributes
- .bowerrc
- .mvn
  - wrapper
    - maven-wrapper.jar
    - maven-wrapper.properties
- .travis.yml
- README.md
- package.json
- .jhipster
  - File.json
- Dockerfile
- .gitignore
- Jenkinsfile
- mvnw.cmd
- gulpfile.js
- gulp
  - serve.js
  - handleErrors.js
  - config.js
  - utils.js
  - build.js
- TODO.txt

package io.klask.security.jwt;

import io.jsonwebtoken.Claims;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import io.jsonwebtoken.SignatureException;
import io.klask.config.JHipsterProperties;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.User;
import org.springframework.stereotype.Component;

import javax.annotation.PostConstruct;
import javax.inject.Inject;
import java.util.Arrays;
import java.util.Collection;
import java.util.Date;
import java.util.stream.Collectors;

@Component
public class TokenProvider {

    private static final String AUTHORITIES_KEY = "auth";
    private final Logger log = LoggerFactory.getLogger(TokenProvider.class);
    private String secretKey;

    private long tokenValidityInSeconds;

    private long tokenValidityInSecondsForRememberMe;

    @Inject
    private JHipsterProperties jHipsterProperties;

    @PostConstruct
    public void init() {
        this.secretKey =
            jHipsterProperties.getSecurity().getAuthentication().getJwt().getSecret();

        this.tokenValidityInSeconds =
            1000 * jHipsterProperties.getSecurity().getAuthentication().getJwt().getTokenValidityInSeconds();
        this.tokenValidityInSecondsForRememberMe =
            1000 * jHipsterProperties.getSecurity().getAuthentication().getJwt().getTokenValidityInSecondsForRememberMe();
    }

    public String createToken(Authentication authentication, Boolean rememberMe) {
        String authorities = authentication.getAuthorities().stream()
            .map(GrantedAuthority::getAuthority)
            .collect(Collectors.joining(","));

        long now = (new Date()).getTime();
        Date validity;
        if (rememberMe) {
            validity = new Date(now + this.tokenValidityInSecondsForRememberMe);
        } else {
            validity = new Date(now + this.tokenValidityInSeconds);
        }

        return Jwts.builder()
            .setSubject(authentication.getName())
            .claim(AUTHORITIES_KEY, authorities)
            .signWith(SignatureAlgorithm.HS512, secretKey)
            .setExpiration(validity)
            .compact();
    }

    public Authentication getAuthentication(String token) {
        Claims claims = Jwts.parser()
            .setSigningKey(secretKey)
            .parseClaimsJws(token)
            .getBody();

        Collection<? extends GrantedAuthority> authorities =
            Arrays.asList(claims.get(AUTHORITIES_KEY).toString().split(",")).stream()
                .map(SimpleGrantedAuthority::new)
                .collect(Collectors.toList());

        User principal = new User(claims.getSubject(), "",
            authorities);

        return new UsernamePasswordAuthenticationToken(principal, "", authorities);
    }

    public boolean validateToken(String authToken) {
        try {
            Jwts.parser().setSigningKey(secretKey).parseClaimsJws(authToken);
            return true;
        } catch (SignatureException e) {
            log.info("Invalid JWT signature: " + e.getMessage());
            return false;
        }
    }
}