Skip to content
/ microservices-security Public

Sample springboot application shows implemeting authentication with JWT tokens and authorization

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

suman724/microservices-security

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
mvnw
mvnw
 
 
mvnw.cmd
mvnw.cmd
 
 
pom.xml
pom.xml
 
 

Repository files navigation

Spring Security using JWT (Json Web Token) in Spring Boot

This Project uses JWT to secure the REST endpoints.

The Following are the REST end points available in the example.

  • /login - Generates the JWT token based on the JSON sent. Its a POST method which expects the JSON: { "username": "name", "id": 123, "role": "admin"}
  • /rest/hello/user - Requires a JWT Token with Header key - "Authorization" and value - "Bearer <JWT_Token>"

Create the keystore with something like this.

keytool -genkey -keyalg RSA -alias jwtkey -keystore keystore.jks -storepass XXXX -validity 360 -keysize 2048

Export the certificate from keytool and convert it to DER format

keytool -list -rfc -keystore keystore.jks -alias jwtkey -storepass xxxx | openssl x509 -outform der -out cert1.der

Authorizations

  • rest/hello/user - This REST API is availabe for ROLE_USER, ROLE_POWERUSER, ROLE_ADMIN
  • rest/hello/power - This REST API is availabe for ROLE_POWERUSER, ROLE_ADMIN
  • rest/hello/admin - This REST API is availabe for ROLE_ADMIN

About

Sample springboot application shows implemeting authentication with JWT tokens and authorization

Topics

security jwt microservices spring-boot public-key-cryptography rbac-management

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases 3

rel-0.0.3: Merge pull request #3 from suman724/feature/authorization Latest
Nov 12, 2018
+ 2 releases

Packages

No packages published

Languages