|
|
|
|
@ -1,13 +1,18 @@
|
|
|
|
|
package com.monkeyk.sos.service;
|
|
|
|
|
|
|
|
|
|
import com.nimbusds.jose.*;
|
|
|
|
|
import com.nimbusds.jose.crypto.ECDSASigner;
|
|
|
|
|
import com.nimbusds.jose.crypto.MACSigner;
|
|
|
|
|
import com.nimbusds.jose.crypto.RSASSASigner;
|
|
|
|
|
import com.nimbusds.jose.jwk.JWK;
|
|
|
|
|
import com.nimbusds.jwt.JWTClaimsSet;
|
|
|
|
|
import org.junit.jupiter.api.Test;
|
|
|
|
|
|
|
|
|
|
import java.time.Instant;
|
|
|
|
|
import java.util.Date;
|
|
|
|
|
|
|
|
|
|
import static com.monkeyk.sos.web.controller.JwtBearerJwksController.ES256_KEY;
|
|
|
|
|
import static com.monkeyk.sos.web.controller.JwtBearerJwksController.RS256_KEY;
|
|
|
|
|
import static org.junit.jupiter.api.Assertions.assertNotNull;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
@ -66,10 +71,68 @@ public class JwtBearerFlowTest {
|
|
|
|
|
*
|
|
|
|
|
* @throws Exception e
|
|
|
|
|
*/
|
|
|
|
|
@Test
|
|
|
|
|
void rs256Assertion() throws Exception {
|
|
|
|
|
|
|
|
|
|
JWK rsJwk = JWK.parse(RS256_KEY);
|
|
|
|
|
|
|
|
|
|
JWSSigner jwsSigner = new RSASSASigner(rsJwk.toRSAKey());
|
|
|
|
|
JWSHeader header = new JWSHeader(JWSAlgorithm.RS256);
|
|
|
|
|
|
|
|
|
|
String clientId = "dofOx6hjxlWw9qe2bnFvqbiPhuWwGWdn";
|
|
|
|
|
JWTClaimsSet claimsSet = new JWTClaimsSet.Builder()
|
|
|
|
|
.subject(clientId)
|
|
|
|
|
.issuer(clientId)
|
|
|
|
|
.audience("http://127.0.0.1:8080")
|
|
|
|
|
.expirationTime(Date.from(Instant.now().plusSeconds(300L)))
|
|
|
|
|
.build();
|
|
|
|
|
|
|
|
|
|
Payload payload = new Payload(claimsSet.toJSONObject());
|
|
|
|
|
|
|
|
|
|
JWSObject jwsObject = new JWSObject(header, payload);
|
|
|
|
|
//签名
|
|
|
|
|
jwsObject.sign(jwsSigner);
|
|
|
|
|
|
|
|
|
|
// 将 assertion 复制放到请求参数 client_assertion 的值
|
|
|
|
|
String assertion = jwsObject.serialize();
|
|
|
|
|
assertNotNull(assertion);
|
|
|
|
|
// System.out.println(assertion);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* ES 生成 assertion
|
|
|
|
|
* SignatureAlgorithm: ES256
|
|
|
|
|
* method: PRIVATE_KEY_JWT
|
|
|
|
|
*
|
|
|
|
|
* @throws Exception e
|
|
|
|
|
*/
|
|
|
|
|
@Test
|
|
|
|
|
void es256Assertion() throws Exception {
|
|
|
|
|
|
|
|
|
|
JWK rsJwk = JWK.parse(ES256_KEY);
|
|
|
|
|
|
|
|
|
|
JWSSigner jwsSigner = new ECDSASigner(rsJwk.toECKey());
|
|
|
|
|
JWSHeader header = new JWSHeader(JWSAlgorithm.ES256);
|
|
|
|
|
|
|
|
|
|
String clientId = "pRC9j1mwGNMuchoI8nwJ6blr1lmPBLha";
|
|
|
|
|
JWTClaimsSet claimsSet = new JWTClaimsSet.Builder()
|
|
|
|
|
.subject(clientId)
|
|
|
|
|
.issuer(clientId)
|
|
|
|
|
.audience("http://127.0.0.1:8080")
|
|
|
|
|
.expirationTime(Date.from(Instant.now().plusSeconds(300L)))
|
|
|
|
|
.build();
|
|
|
|
|
|
|
|
|
|
Payload payload = new Payload(claimsSet.toJSONObject());
|
|
|
|
|
|
|
|
|
|
JWSObject jwsObject = new JWSObject(header, payload);
|
|
|
|
|
//签名
|
|
|
|
|
jwsObject.sign(jwsSigner);
|
|
|
|
|
|
|
|
|
|
// 将 assertion 复制放到请求参数 client_assertion 的值
|
|
|
|
|
String assertion = jwsObject.serialize();
|
|
|
|
|
assertNotNull(assertion);
|
|
|
|
|
// System.out.println(assertion);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
shengzhaoli.shengz
1 year ago