Package com.auth0.spring.security.api

Class JwtWebSecurityConfigurer

java.lang.Object
com.auth0.spring.security.api.JwtWebSecurityConfigurer
public class JwtWebSecurityConfigurer extends Object
Utility class for configuring Security for your Spring API

  • Method Details

    • forRS256

      public static JwtWebSecurityConfigurer forRS256(String audience, String issuer)
      Configures application authorization for JWT signed with RS256. Will try to validate the token using the public key downloaded from "$issuer/.well-known/jwks.json" and matched by the value of kid of the JWT header
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuer - of the token for this API and must match the iss value in the token
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forRS256

      public static JwtWebSecurityConfigurer forRS256(String audience, String issuer, org.springframework.security.authentication.AuthenticationProvider provider)
      Configures application authorization for JWT signed with RS256 Will try to validate the token using the public key downloaded from "$issuer/.well-known/jwks.json" and matched by the value of kid of the JWT header
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuer - of the token for this API and must match the iss value in the token
      provider - of Spring Authentication objects that can validate a PreAuthenticatedAuthenticationJsonWebToken
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forRS256

      public static JwtWebSecurityConfigurer forRS256(String audience, String[] issuers)
      Configures application authorization for JWT signed with RS256. Will try to validate the token using the public key downloaded from "$issuer/.well-known/jwks.json" and matched by the value of kid of the JWT header
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuers - array of allowed issuers of the token for this API and one of the entries must match the iss value in the token
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forRS256

      public static JwtWebSecurityConfigurer forRS256(String audience, String[] issuers, org.springframework.security.authentication.AuthenticationProvider provider)
      Configures application authorization for JWT signed with RS256 Will try to validate the token using the public key downloaded from "$issuer/.well-known/jwks.json" and matched by the value of kid of the JWT header
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuers - array of allowed issuers of the token for this API and one of the entries must match the iss value in the token
      provider - of Spring Authentication objects that can validate a PreAuthenticatedAuthenticationJsonWebToken
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256WithBase64Secret

      public static JwtWebSecurityConfigurer forHS256WithBase64Secret(String audience, String issuer, String secret)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuer - of the token for this API and must match the iss value in the token
      secret - used to sign and verify tokens encoded in Base64
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256

      public static JwtWebSecurityConfigurer forHS256(String audience, String issuer, byte[] secret)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuer - of the token for this API and must match the iss value in the token
      secret - used to sign and verify tokens
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256

      public static JwtWebSecurityConfigurer forHS256(String audience, String issuer, org.springframework.security.authentication.AuthenticationProvider provider)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuer - of the token for this API and must match the iss value in the token
      provider - of Spring Authentication objects that can validate a PreAuthenticatedAuthenticationJsonWebToken
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256WithBase64Secret

      public static JwtWebSecurityConfigurer forHS256WithBase64Secret(String audience, String[] issuers, String secret)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuers - array of allowed issuers of the token for this API and one of the entries must match the iss value in the token
      secret - used to sign and verify tokens encoded in Base64
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256

      public static JwtWebSecurityConfigurer forHS256(String audience, String[] issuers, byte[] secret)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuers - array of allowed issuers of the token for this API and one of the entries must match the iss value in the token
      secret - used to sign and verify tokens
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • forHS256

      public static JwtWebSecurityConfigurer forHS256(String audience, String[] issuers, org.springframework.security.authentication.AuthenticationProvider provider)
      Configures application authorization for JWT signed with HS256
      Parameters:
      audience - identifier of the API and must match the aud value in the token
      issuers - list of allowed issuers of the token for this API and one of the entries must match the iss value in the token
      provider - of Spring Authentication objects that can validate a PreAuthenticatedAuthenticationJsonWebToken
      Returns:
      JwtWebSecurityConfigurer for further configuration

    • configure

      public org.springframework.security.config.annotation.web.builders.HttpSecurity configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http) throws Exception
      Further configure the HttpSecurity object with some sensible defaults by registering objects to obtain a bearer token from a request.
      Parameters:
      http - configuration for Spring
      Returns:
      the http configuration for further customizations
      Throws:
      Exception