• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• spring-security-jwt-master
  • src
    • main
      • resources
        • com
          • technicalrex
            • springsecurityjwt
              • environment.properties
      • java
        • com
          • technicalrex
            • springsecurityjwt
              • api
                • greetings
                  • Greeting.java
                  • GreetingsResource.java
              • support
                • validation
                  • StringConditions.java
              • vendor
                • SpringSecurityConfig.java
                • JacksonObjectMapperConfig.java
                • JerseyConfig.java
                • SpringConfig.java
              • config
                • AppConfig.java
              • auth
                • jwt
                  • UserService.java
                  • UserAuthentication.java
                  • TokenHandler.java
                  • TokenAuthenticationService.java
                  • StatelessAuthenticationFilter.java
                • google
                  • GoogleAuthorizationResponseServlet.java
                  • GoogleAuthorizationRequestServlet.java
                • XsrfUtils.java
      • webapp
        • home.jsp
        • WEB-INF
          • web.xml
        • index.html
        • css
          • home.css
  • pom.xml
  • LICENSE
  • README.md
  • .gitignore

package com.technicalrex.springsecurityjwt.auth.jwt;

import com.google.common.base.Preconditions;
import com.technicalrex.springsecurityjwt.support.validation.StringConditions;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import org.springframework.security.core.userdetails.User;
import java.util.Base64;
import java.util.Date;
import java.util.concurrent.TimeUnit;
import java.util.UUID;

public final class TokenHandler {

    private final String secret;
    private final UserService userService;

    public TokenHandler(String secret, UserService userService) {
        this.secret = Base64.getEncoder().encodeToString(StringConditions.checkNotBlank(secret).getBytes());
        this.userService = Preconditions.checkNotNull(userService);
    }

    public User parseUserFromToken(String token) {
        String username = Jwts.parser()
                .setSigningKey(secret)
                .parseClaimsJws(token)
                .getBody()
                .getSubject();
        return userService.loadUserByUsername(username);
    }

    public String createTokenForUser(User user) {
        Date now = new Date();
        Date expiration = new Date(now.getTime() + TimeUnit.HOURS.toMillis(1l));
        return Jwts.builder()
                .setId(UUID.randomUUID().toString())
                .setSubject(user.getUsername())
                .setIssuedAt(now)
                .setExpiration(expiration)
                .signWith(SignatureAlgorithm.HS512, secret)
                .compact();
    }
}