Springboot Java Springboot身份验证getAuthentication创建主体
我创建了一个JWT令牌,并在其中一个声明中添加了我的UserDetails
@Override
//Create the JWT token for portalusers
public String createToken(PortalUser portalUser){
log.info("Create token log");
//Get uuid from portaluser
String uuid = portalUser.getUuid();
//Get UserDetails
UserDetails userDetails = authService.getUserDetailsByUuid(uuid);
//Set claims for the jwt token with information about the portaluser
Claims claims = Jwts.claims().setSubject(uuid);
claims.put(ROLE_PREFIX, portalUser.getPortalUserRoles().iterator().next().getPortalRole());
claims.put("PortalUserRoles", portalUser.getPortalUserRoles().iterator().next());
claims.put("fullname", portalUser.getPerson().getFirstname() + " " + portalUser.getPerson().getFirstname());
claims.put("UserType", "portaluser");
claims.put("UserDetails", userDetails);
Date issuedAt = new Date();
Date expireAt = new Date(issuedAt.getTime() + jwtDuration);
return Jwts.builder()
.setClaims(claims)
.setIssuedAt(issuedAt)
.setExpiration(expireAt)
.signWith(SignatureAlgorithm.HS512, jwtSecret)
.compact();
}
当我转到getAuthentication并想要创建主体时,我不能将其创建为UserDetails的属性。这是因为索赔。get(“UserDetails”)未被识别为UserDetails类的属性
UserDetails principal = claims.get("UserDetails");
我得到错误:无法从Object转换为UserDetails
我尝试将该对象强制转换为userDetails,但在尝试运行它时会出现错误
在控制器中,我尝试获取当前登录的用户:
Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
if (principal instanceof UserDetails) {
String username = principal.getUsername();
log.info("UD = " + username);
} else {
String username = principal.toString();
log.info("username = " + username);
}
//Return the list
return ResponseEntity.ok(country);
}
问题是我没有将principal作为UserDetails的实例,所以我无法调用principal。getUsername();(这是UserDetails类中的函数)
如果我在最初创建principal的过程中尝试填充UserDetails,我会得到一个巨大的查询,每次调用API时都会选择有关用户的所有信息,我不希望发生这种情况。该示例代码如下所示:
UserDetails principal = authService.getUserDetailsByUuid(getUuidFromToken(token));
以前有没有人遇到过这个问题,或者知道解决方案
共 (0) 个答案