java - How to get Additional fields in the JWT token in security context of Resource Server -

-

i trying implement spring security oauth2 in application. configuration working except not able additional fields of jwt token in resource server security context object.

here configuration:

authorization server:

public class springsecurityconfig extends authorizationserverconfigureradapter {      @autowired     @qualifier("authenticationmanagerbean")     private authenticationmanager authenticationmanager;      @override     public void configure(final clientdetailsserviceconfigurer clients) throws exception {         clients.withclientdetails(clientdetailsservice());     }      @override     public void configure(authorizationserversecurityconfigurer oauthserver) throws exception {         oauthserver.allowformauthenticationforclients().tokenkeyaccess("permitall()")                 .checktokenaccess("isauthenticated()");     }      @override     public void configure(authorizationserverendpointsconfigurer endpoints) throws exception {         endpoints.userapprovalhandler(userapprovalhandler()).tokenservices(tokenservices())                 .clientdetailsservice(clientdetailsservice()).authenticationmanager(authenticationmanager).accesstokenconverter(tokenenhancer());     }      @bean     public customtokenenhancer accesstokenenhancer() {         customtokenenhancer customtokenenhancer = new customtokenenhancer();         return customtokenenhancer;     };      @bean     public oauth2authenticationentrypoint oauthauthenticationentrypoint() {         oauth2authenticationentrypoint oauth2authenticationentrypoint = new oauth2authenticationentrypoint();         oauth2authenticationentrypoint.setrealmname("test");         return oauth2authenticationentrypoint;     }      @bean     public oauth2authenticationentrypoint clientauthenticationentrypoint() {         oauth2authenticationentrypoint clientauthenticationentrypoint = new oauth2authenticationentrypoint();         clientauthenticationentrypoint.setrealmname("test/client");         clientauthenticationentrypoint.settypename("basic");         return clientauthenticationentrypoint;     }      @bean     public oauth2accessdeniedhandler oauthaccessdeniedhandler() {         return new oauth2accessdeniedhandler();     }      @bean     public clientcredentialstokenendpointfilter clientcredentialstokenendpointfilter() {         clientcredentialstokenendpointfilter clientcredentialstokenendpointfilter = new clientcredentialstokenendpointfilter();         clientcredentialstokenendpointfilter.setauthenticationmanager(authenticationmanager);         return clientcredentialstokenendpointfilter;     }      @bean     public unanimousbased accessdecisionmanager() {         list<accessdecisionvoter<? extends object>> accessdecisionvoter = new arraylist<accessdecisionvoter<? extends object>>();         scopevoter scopevoter = new scopevoter();         rolevoter rolevoter = new rolevoter();         authenticatedvoter authenticatedvoter = new authenticatedvoter();         accessdecisionvoter.add(scopevoter);         accessdecisionvoter.add(rolevoter);         accessdecisionvoter.add(authenticatedvoter);         unanimousbased accessdecisionmanager = new unanimousbased(accessdecisionvoter);         return accessdecisionmanager;     }      @bean     public clientdetailsuserdetailsservice clientdetailsuserdetailsservice() throws exception {         clientdetailsuserdetailsservice clientdetailsuserdetailsservice = new clientdetailsuserdetailsservice(                 clientdetailsservice());         return clientdetailsuserdetailsservice;     }      @bean     public jwtaccesstokenconverter tokenconverter() {         final jwtaccesstokenconverter converter = new jwtaccesstokenconverter();         final customtokensignkeygenerator signkey = new customtokensignkeygenerator();         converter.setsigningkey(signkey.getsecuritykey());         return converter;     }      @bean     public jwtaccesstokenconverter tokenenhancer() {         jwtaccesstokenconverter tokenenhancer = new jwtaccesstokenconverter();         final customtokensignkeygenerator signkey = new customtokensignkeygenerator();         tokenenhancer.setsigningkey(signkey.getsecuritykey());         tokenenhancer.setaccesstokenconverter(tokenconverter());         return tokenenhancer;     }      @bean     public tokenenhancerchain tokenenhancerchain() {         tokenenhancerchain tokenenhancerchain = new tokenenhancerchain();         list<tokenenhancer> delegates = new arraylist<tokenenhancer>();         delegates.add(tokenenhancer());         delegates.add(accesstokenenhancer());         tokenenhancerchain.settokenenhancers(delegates);         return tokenenhancerchain;     }      @bean     public defaultoauth2requestfactory requestfactory() throws exception {         defaultoauth2requestfactory defaultoauth2requestfactory = new defaultoauth2requestfactory(                 clientdetailsservice());         return defaultoauth2requestfactory;     }      @bean     public clientcredentialstokengranter tokengranter() throws exception {         authorizationservertokenservices tokenservices = tokenservices();         oauth2requestfactory requestfactory = requestfactory();         clientcredentialstokengranter clientcredentialstokengranter = new clientcredentialstokengranter(tokenservices,                 clientdetailsservice(), requestfactory);         return clientcredentialstokengranter;     }      @bean     public jwttokenstore tokenstore() {         jwttokenstore tokenstore = new jwttokenstore(tokenenhancer());         return tokenstore;     }      @bean     public defaulttokenservices tokenservices() throws exception {         defaulttokenservices defaulttokenservices = new defaulttokenservices();         defaulttokenservices.settokenstore(tokenstore());         defaulttokenservices.setsupportrefreshtoken(true);         defaulttokenservices.setaccesstokenvalidityseconds(300);         defaulttokenservices.setclientdetailsservice(clientdetailsservice());         defaulttokenservices.settokenenhancer(tokenenhancerchain());         return defaulttokenservices;     }      @bean     public defaultoauth2requestfactory oauth2requestfactory() throws exception {         defaultoauth2requestfactory defaultoauth2requestfactory = new defaultoauth2requestfactory(                 clientdetailsservice());         return defaultoauth2requestfactory;     }      @bean     public tokenstoreuserapprovalhandler userapprovalhandler() throws exception {         tokenstoreuserapprovalhandler tokenstoreuserapprovalhandler = new tokenstoreuserapprovalhandler();         tokenstoreuserapprovalhandler.setrequestfactory(requestfactory());         tokenstoreuserapprovalhandler.settokenstore(tokenstore());         return tokenstoreuserapprovalhandler;     }      @bean     public clientdetailsservice clientdetailsservice() throws exception {         return new inmemoryclientdetailsservicebuilder().withclient("restapp").secret("restapp")                 .authorizedgranttypes("password", "authorization_code").scopes("read").authorities("role_user")                 .accesstokenvalidityseconds(3600).and().build();     }  }

custom token enhancer:

public oauth2accesstoken enhance(oauth2accesstoken accesstoken, oauth2authentication authentication) {         //featurelogger.debug("start of enhance method in customtokenenhancer");         ldapuserdetails userdetails = (ldapuserdetails) authentication.getprincipal();         final map<string, object> additionalinfo = new hashmap<>();          additionalinfo.put(pharmacyoauthconstants.user_name, userdetails.getusername());         additionalinfo.put(pharmacyoauthconstants.store_id, "hysjg");         additionalinfo.put(pharmacyoauthconstants.user_roles, userdetails.getauthorities());          ((defaultoauth2accesstoken) accesstoken).setadditionalinformation(additionalinfo);         //featurelogger.debug("end of enhance method in customtokenenhancer");         return accesstoken;         //return super.enhance(accesstoken, authentication);     }

resource server:

public class oauth2resourceserverconfig extends resourceserverconfigureradapter {     @autowired     customtokensignkeygenerator customtokensignkeygenerator;      /**      * method used intercept , verify whether requests      * accessing resource authenticated having valid access token      */     @override     public void configure(final httpsecurity http) throws exception {         http.sessionmanagement().sessioncreationpolicy(sessioncreationpolicy.if_required).and().authorizerequests()                 .antmatchers("/core/**").fullyauthenticated();                 //.anyrequest().permitall();//.fullyauthenticated();      }      /**      * reference checktokenservices can validate oauth2accesstoken      */     @override     public void configure(resourceserversecurityconfigurer config) {         try {             config.tokenservices(tokenservices());         } catch (exception e) {             // todo auto-generated catch block             e.printstacktrace();         }     }      /**      * method used store updated jwt in token store      * @return tokenstore      */     @bean     public tokenstore tokenstore() {         return new jwttokenstore(tokenconverter());     }      /**      * method used add custom signature key generated using key store jwt signature part      * @return jwtaccesstokenconverter      */     @bean     public jwtaccesstokenconverter tokenconverter() {         final jwtaccesstokenconverter converter = new jwtaccesstokenconverter();         final customtokensignkeygenerator signkey = new customtokensignkeygenerator();         converter.setsigningkey(signkey.getsecuritykey());         return converter;     }      @bean     public jwtaccesstokenconverter tokenenhancer() {         jwtaccesstokenconverter tokenenhancer = new jwtaccesstokenconverter();         final customtokensignkeygenerator signkey = new customtokensignkeygenerator();         tokenenhancer.setsigningkey(signkey.getsecuritykey());         tokenenhancer.setaccesstokenconverter(tokenconverter());         return tokenenhancer;     }       /**this method return token services required verify token received      * @return defaulttokenservices      */     public defaulttokenservices tokenservices() {         defaulttokenservices defaulttokenservices = new defaulttokenservices();         defaulttokenservices.settokenstore(tokenstore());         defaulttokenservices.settokenenhancer(tokenenhancer());         return defaulttokenservices;     }   in authentication object seeing null value decoded details object.


Comments

Post a Comment

Popular posts from this blog

javascript - Laravel datatable invalid JSON response -

-
everything work fine on code below fetch user logs: js: <script> $(document).ready(function () { var table =$('#systemlogs').datatable({ responsive: true, processing: true, serverside: true, "language": { "url": "/datatables/media/plug-in/persian.json" }, ajax: '{!! url('/admin/systemlogs/data/systemlogsdatatable') !!}', columns: [ { data: 'name', name: 'name' }, { data: 'message_text', name: 'message_text' }, { data: 'remote_addr', name: 'remote_addr' }, { data: 'log_created_at', name: 'management_logs.created_at' }, { data: 'log_updated_at', name: 'management_logs.updated_at' }, ] }); }); </script> routes: route::get('/systemlogs/data/systemlogsdatatable','systemlogscontrolle...
Read more

java - Exception in thread "main" org.springframework.context.ApplicationContextException: Unable to start embedded container; -

-
i getting error when run spring application: exception in thread "main" org.springframework.context.applicationcontextexception: unable start embedded container; nested exception org.springframework.context.applicationcontextexception: unable start embeddedwebapplicationcontext due missing embeddedservletcontainerfactory bean. @ org.springframework.boot.context.embedded.embeddedwebapplicationcontext.onrefresh(embeddedwebapplicationcontext.java:124) @ org.springframework.context.support.abstractapplicationcontext.refresh(abstractapplicationcontext.java:476) @ org.springframework.boot.context.embedded.embeddedwebapplicationcontext.refresh(embeddedwebapplicationcontext.java:109) @ org.springframework.boot.springapplication.refresh(springapplication.java:691) @ org.springframework.boot.springapplication.run(springapplication.java:320) @ org.springframework.boot.springapplication.run(springapplication.java:952) @ org.springframework.boot.springa...
Read more

sql server 2008 - My Sql Code Get An Error Of Msg 245, Level 16, State 1, Line 1 Conversion failed when converting the varchar value '8:45 AM' to data type int -

-
msg 245, level 16, state 1, line 1 conversion failed when converting varchar value '8:45 am' data type int. script declare @specimenid bigint = 0, @script varchar(max); declare @starttime int = (select convert(int,substring(start_time,0,charindex(':', start_time)) - 12) appt appt._id=112601) --select @starttime set @script = 'select distinct ptlast_name + '', '' + pt.first_name patient_name, dbo.formatdate(pt.dob,''mm/dd/yyyy'') dob, (convert(varchar, (datediff(yy, dob, appt_date) - case when (month(dob) > month(appt_date)) or (month(dob) = month(appt_date) , day(dob) > day(appt_date)) 1 else 0 end)) + ''/'' + convert(varchar, (datediff(m, dateadd(yy, (datediff(yy, dob, appt_date) - case when (month(dob) > month(appt_date)) or (month(dob) = month(appt_date) , day(dob) > day(appt_date)) 1 else 0 end), d...
Read more