com.oneops.proxy.auth.token

Class TokenAuthProvider

java.lang.Object

com.oneops.proxy.auth.token.TokenAuthProvider

All Implemented Interfaces:

org.springframework.security.authentication.AuthenticationProvider

@Component
public class TokenAuthProvider
extends Object
implements org.springframework.security.authentication.AuthenticationProvider

A custom AuthenticationProvider to validate JWT auth tokens. The token authentication provider has the following responsibilities,

1. Verify and validate the access token signature. 2. Create OneOpsUser by extracting identity and auth claims from token. 3. Throws Authentication exception if the token is invalid, malformed or expired.

AuthenticationFailureHandler is invoked upon failed authentication.

Author:

Suresh G

Constructor Summary

Constructors

Constructor and Description
TokenAuthProvider(JwtTokenService jwtTokenService)

Method Summary

Modifier and Type	Method and Description
org.springframework.security.core.Authentication	authenticate(org.springframework.security.core.Authentication authentication)
boolean	supports(Class<?> authentication)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

TokenAuthProvider

public TokenAuthProvider(JwtTokenService jwtTokenService)

Method Detail

authenticate

public org.springframework.security.core.Authentication authenticate(org.springframework.security.core.Authentication authentication)
                                                              throws org.springframework.security.core.AuthenticationException

Specified by:

authenticate in interface org.springframework.security.authentication.AuthenticationProvider

Throws:

org.springframework.security.core.AuthenticationException

supports

public boolean supports(Class<?> authentication)

Specified by:

supports in interface org.springframework.security.authentication.AuthenticationProvider