-
Notifications
You must be signed in to change notification settings - Fork 59
/
Auth0JwtTest.java
81 lines (56 loc) · 2.11 KB
/
Auth0JwtTest.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
package myoidc.server.infrastructure;
import com.auth0.jwt.JWT;
import com.auth0.jwt.JWTVerifier;
import com.auth0.jwt.algorithms.Algorithm;
import com.auth0.jwt.interfaces.DecodedJWT;
import org.junit.Test;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import static org.junit.Assert.assertNotNull;
/**
* 2018/5/30
* <p>
* OAuth0 jwt
*
* @author Shengzhao Li
*/
public class Auth0JwtTest {
/**
* Test JWT
*
* @throws Exception Exception
*/
@Test
public void jwt() throws Exception {
// RSA keyPair Generator
final KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance("RSA");
/*
* 长度 至少 1024, 建议 2048
*/
final int keySize = 2048;
keyPairGenerator.initialize(keySize);
final KeyPair keyPair = keyPairGenerator.genKeyPair();
final PublicKey publicKey = keyPair.getPublic();
final PrivateKey privateKey = keyPair.getPrivate();
// gen id_token
final Algorithm algorithm = Algorithm.RSA256((RSAPublicKey) publicKey, (RSAPrivateKey) privateKey);
final String idToken = JWT.create().withJWTId("jwt-id").withAudience("audience").withSubject("subject").sign(algorithm);
assertNotNull(idToken);
System.out.println(idToken);
//verify
// final DecodedJWT decodedJWT = JWT.decode(idToken);
// System.out.println("id_token -> header: " + decodedJWT.getHeader());
// System.out.println("id_token -> payload: " + decodedJWT.getPayload());
// System.out.println("id_token -> token: " + decodedJWT.getToken());
// System.out.println("id_token -> signature: " + decodedJWT.getSignature());
final JWTVerifier verifier = JWT.require(algorithm).build();
final DecodedJWT verify = verifier.verify(idToken);
assertNotNull(verify);
System.out.println(verify);
// final Algorithm none = Algorithm.none();
}
}