Is there a way to validate oauth token sent by approuter in plain java application ( micro service in cloud foundry ) without using spring -

-

i have approuter written in node.js sends jwt token java application after user authentication.

i need verify token , scope in spring application before executing rest api, there way same thing without using spring feature?

one option use /check_token endpoint of uaa. nice thing approach it's pretty easy without of external libraries since it's matter of sending http request. there's no crypto (other tls) required, uaa handles you. however, require client credentials can identify application checking token uaa , has overhead of sending http request.

ex:

curl 'http://uaa.example.com/check_token' -i -u 'app:appclientsecret' -x post \     -d 'token=53dbe3e05dcf4ff38d350bc74a7fc97bscopes=password.write%2cscim.userids'

where app , appclientsecret app's client credentials & scopes attribute optional, if include it, uaa validate scopes indicate present on token.

more @ following links:

the other option validate token yourself. requires signed token , requires have shared secret between server , in case of cloud foundry, uaa.

i don't have instructions walk through without spring, spring security open source can take @ code , see how it's done.

it looks decodeandverify method of jwthelper place start. there's example of how jwthelper used here.

hope helps!


Comments

Post a Comment

Popular posts from this blog

ios - MKAnnotationView layer is not of expected type: MKLayer -

-
Image
so code works fine logger riddled message. there way rid of or suppress it? postannotation.swift class postannotation: mkpointannotation { //mark: properties let post: post //mark: initialization init(post: post) { self.post = post super.init() self.coordinate = cllocationcoordinate2d(latitude: post.latitude, longitude: post.longitude) self.title = post.title self.subtitle = post.timestring() } } adding annotation let annotation = postannotation(post: post) self.map.addannotation(annotation) func mapview func mapview(_ mapview: mkmapview, viewfor annotation: mkannotation) -> mkannotationview? { if annotation mkuserlocation { return nil } var annotationview = mapview.dequeuereusableannotationview(withidentifier: "pin") as? mkpinannotationview if annotationview == nil { annotationview = mkpinannotationview(annotation: annotation, reuseidentifier: "pin")
Read more

ZeroMQ on Windows, with Qt Creator -

-
i have installed zmq link given below on windows 7. http://zeromq.org/distro:microsoft-windows 1) have c++ project in qt-creator , i'm using zmq c++ binding (zhelpers.hpp etc). 2) have added .lib installed zmq folder qtcreator 3) while compiling, compiler looks _imp__zmq_verion, in .dll files present in .lib have __imp_zmq_version. 4) causing undefined reference zmq_version. anyone else faced problem , has solution ?
Read more

unity3d - Unity SceneManager.LoadScene quits application -

-
i have 2 different scenes 1 named 'main' , other 'game' both added scenes in load. when use scenemanager.loadscene("game"); works no problem when tried return main scene code if (input.getkeydown (keycode.escape)) { scenemanager.loadscene("main"); } strangely game quits. thanks. sorry interruption. somewhere on other script found code. if (input.getkeydown (keycode.escape)) { application.quit (); } that's bad, know...
Read more