mindol1004/spring-boot-jwt-example
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Implement getAuthenticationByRefreshToken

Browse Source
This commit is contained in:
hou27
2022-06-18 17:52:33 +09:00
parent a31df05aa4
commit a845fe1b63
4 changed files with 18 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/main/java/demo/api/auth/AuthServiceImpl.java
View File

@@ -99,7 +99,7 @@ public class AuthServiceImpl implements AuthService {
} }
// 2. Access Token 에서 User email 를 가져옵니다. // 2. Access Token 에서 User email 를 가져옵니다.
Authentication authentication = jwtTokenProvider.getAuthentication(refresh_token); Authentication authentication = jwtTokenProvider.getAuthenticationByRefreshToken(refresh_token);
// 3. Redis 에서 User email 을 기반으로 저장된 Refresh Token 값을 가져옵니다. // 3. Redis 에서 User email 을 기반으로 저장된 Refresh Token 값을 가져옵니다.
String refreshToken = (String)redisTemplate.opsForValue().get(authentication.getName()); String refreshToken = (String)redisTemplate.opsForValue().get(authentication.getName());

1
src/main/java/demo/api/config/SecurityConfig.java
View File

@@ -50,6 +50,7 @@ public class SecurityConfig {
"/user/userList", "/user/userList",
"/auth/signIn*", "/auth/signIn*",
"/user/profile/view/**", "/user/profile/view/**",
"/auth/regenerateToken",
"/favicon.ico" "/favicon.ico"
).permitAll() ).permitAll()
.anyRequest().authenticated(); .anyRequest().authenticated();

2
src/main/java/demo/api/jwt/JwtTokenFilter.java
View File

@@ -27,7 +27,7 @@ public class JwtTokenFilter extends OncePerRequestFilter {
String token = jwtTokenProvider.resolveToken(request); String token = jwtTokenProvider.resolveToken(request);
try { try {
if (token != null && jwtTokenProvider.validateAccessToken(token)) { if (token != null && jwtTokenProvider.validateAccessToken(token)) {
Authentication auth = jwtTokenProvider.getAuthentication(token); Authentication auth = jwtTokenProvider.getAuthenticationByAccessToken(token);
SecurityContextHolder.getContext().setAuthentication(auth); // 정상 토큰이면 SecurityContext에 저장 SecurityContextHolder.getContext().setAuthentication(auth); // 정상 토큰이면 SecurityContext에 저장
} }
} catch (CustomException e) { } catch (CustomException e) {

18
src/main/java/demo/api/jwt/JwtTokenProvider.java
View File

@@ -74,17 +74,29 @@ public class JwtTokenProvider {
} }
/** /**
* 토큰으로부터 클레임을 만들고, 이를 통해 User 객체를 생성하여 Authentication 객체를 반환 * Access 토큰으로부터 클레임을 만들고, 이를 통해 User 객체를 생성하여 Authentication 객체를 반환
* @param token * @param access_token
* @return * @return
*/ */
public Authentication getAuthentication(String token) { public Authentication getAuthenticationByAccessToken(String token) {
String username = Jwts.parser().setSigningKey(access_token_secret_key).parseClaimsJws(token).getBody().getSubject(); String username = Jwts.parser().setSigningKey(access_token_secret_key).parseClaimsJws(token).getBody().getSubject();
UserDetails userDetails = userDetailsService.loadUserByUsername(username); UserDetails userDetails = userDetailsService.loadUserByUsername(username);
return new UsernamePasswordAuthenticationToken(userDetails, "", userDetails.getAuthorities()); return new UsernamePasswordAuthenticationToken(userDetails, "", userDetails.getAuthorities());
} }
/**
* Refresh 토큰으로부터 클레임을 만들고, 이를 통해 User 객체를 생성하여 Authentication 객체를 반환
* @param refresh_token
* @return
*/
public Authentication getAuthenticationByRefreshToken(String token) {
String username = Jwts.parser().setSigningKey(refresh_token_secret_key).parseClaimsJws(token).getBody().getSubject();
UserDetails userDetails = userDetailsService.loadUserByUsername(username);
return new UsernamePasswordAuthenticationToken(userDetails, "", userDetails.getAuthorities());
}
/** /**
* http 헤더로부터 bearer 토큰을 가져옴. * http 헤더로부터 bearer 토큰을 가져옴.
* @param req * @param req