• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

Project: dropwizard-auth-jwt (GitHub Link)

• dropwizard-auth-jwt-master
  • src
    • main
      • java
        • com
          • github
            • toastshaman
              • dropwizard
                • auth
                  • jwt
                    • JwtAuthFilter.java
                    • CachingJwtAuthenticator.java
    • test
      • resources
        • logback-test.xml
      • java
        • com
          • github
            • toastshaman
              • dropwizard
                • auth
                  • jwt
                    • AuthUtil.java
                    • JwtCachingAuthenticatorTest.java
                    • AuthBaseTest.java
                    • AuthBaseResourceConfig.java
                    • JwtAuthProviderTest.java
                    • example
                      • JwtAuthApplication.java
                      • MyUser.java
                      • MyConfiguration.java
                      • SecuredResource.java
                      • User.java
                    • AuthResource.java
  • pom.xml
  • LICENSE
  • .travis.yml
  • README.md
  • .gitignore
  • doc

dropwizard-auth-jwt

A Dropwizard authentication filter using JSON Web Token (JWT).

What is it?

JSON Web Token (JWT) is a compact URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is digitally signed using JSON Web Signature (JWS).

Check out http://jwt.io/

What's new in v1.1.2-0

• Updated upstream dependencies to Dropwizard 1.1.2
• Updated upstream dependencies to jose4j to 0.6.0

What's new in v1.1.0-0

• Updated upstream dependencies to Dropwizard 1.1.0

What's new in v1.0.6-0

• Updated upstream dependencies to Dropwizard 1.0.6 and jose4j to 0.5.5

What's new in v1.0.2-0

• Updated upstream dependencies to Dropwizard 1.0.2 and jose4j to 0.5.2

What's new in v1.0.0-0

• Replaced the JWT token generation and verification with jose4j.

What's new in v0.9.2-0

• Updated the dependencies to Dropwizard 0.9.2.

What's new in v0.9.1-1

• Added support for CachingAuthenticator.

What's new in v0.9.1-0

• Added support for Dropwizard 0.9.x.
• Support for extracting JWT tokens from cookies.

Getting Started

To use this library in your project you can download it from Maven Central.

<dependency>
    <groupId>com.github.toastshaman</groupId>
    <artifactId>dropwizard-auth-jwt</artifactId>
    <version>1.1.2-0</version>
</dependency>

Example

See this code example if you want to use this code your dropwizard application. Once you have started the example application here are some sample requests to generate a valid and an expired token:

curl -X GET -H "Cache-Control: no-cache" 'http://localhost:8080/jwt/generate-valid-token'

or you can create an invalid token instead to see a failure case with:

curl -X GET -H "Cache-Control: no-cache" 'http://localhost:8080/jwt/generate-expired-token'

Once you have a token, you can send it to the following endpoint to get some information about the logged in user:

curl -X GET \
-H "Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpYXQiOjE0NDkzMTQwOTUsInN1YiI6Imdvb2QtZ3V5In0.oFXdelQECJrw6_e4gR1HU3ljFvY8zmf2EHDsBnnea7n2UDBipmNDbx3bw-Bzzq-FwtEO6qzageK2jbJxM6JHbQ" \
-H "Cache-Control: no-cache" 'http://localhost:8080/jwt/check-token'

License

Apache License Version 2.0

http://apache.org/licenses/LICENSE-2.0.txt

Thanks To

A special thanks goes to MartinSahlen for providing a Gist with the Dropwizard 8 implementation of the AuthFactory.

A special thanks goes to Kimble for adding cookie support.

A special thanks goes to alexitooi for adding support for the CachingAuthenticator.