使用JWT存储token

687ddd47 · 马增群 · 4d541eba · 687ddd47 · 687ddd47
2 changed file
--- a/code/jeeplatform-cms/src/main/resources/application.properties
+++ b/code/jeeplatform-cms/src/main/resources/application.properties
@@ -7,7 +7,7 @@ security.oauth2.resource.user-info-uri=http://localhost:8888/user
 security.oauth2.client.use-current-uri=false
 security.oauth2.client.pre-established-redirect-uri=http://localhost:8084/cms/login
 security.oauth2.resource.token-info-uri= http://localhost:8888/oauth/check_token
-#security.oauth2.resource.jwt.key-uri=http://localhost:8888/oauth/token_key
+security.oauth2.resource.jwt.key-uri=http://localhost:8888/oauth/token_key
 security.oauth2.authorization.check-token-access= http://localhost:8888/oauth/check_token
 server.port=8084

--- a/code/jeeplatform-sso-oauth2/src/main/java/org/muses/jeeplatform/oauth/configuration/OAuth2Configuration.java
+++ b/code/jeeplatform-sso-oauth2/src/main/java/org/muses/jeeplatform/oauth/configuration/OAuth2Configuration.java
@@ -100,17 +100,17 @@ public class OAuth2Configuration extends AuthorizationServerConfigurerAdapter {
    @Override
    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
-        //endpoints.tokenStore(jwtTokenStore()).authenticationManager(authenticationManager)
+        endpoints.tokenStore(jwtTokenStore()).authenticationManager(authenticationManager)
-                //.accessTokenConverter(accessTokenConverter())
+                .accessTokenConverter(accessTokenConverter())
                //必须注入userDetailsService否则根据refresh_token无法加载用户信息
                //.userDetailsService(userDetailsService)
                //支持获取token方式
-                //.allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST,HttpMethod.PUT,HttpMethod.DELETE,HttpMethod.OPTIONS)
+                .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST,HttpMethod.PUT,HttpMethod.DELETE,HttpMethod.OPTIONS);
                //刷新token
                //.reuseRefreshTokens(false)
-                //.tokenServices(tokenServices());
+                //endpoints .tokenServices(tokenServices());
        // 使用内存保存生成的token
-        endpoints.authenticationManager(authenticationManager).tokenStore(memoryTokenStore());
+        //endpoints.authenticationManager(authenticationManager).tokenStore(memoryTokenStore());
    }
    /**
@@ -155,23 +155,23 @@ public class OAuth2Configuration extends AuthorizationServerConfigurerAdapter {
        return converter;
    }
-//    @Bean
-//    public TokenStore jwtTokenStore() {
-//        //基于jwt实现令牌（Access Token）保存
-//        return new JwtTokenStore(accessTokenConverter());
-//    }
    @Bean
-    public TokenStore memoryTokenStore() {
+    public TokenStore jwtTokenStore() {
-        // 最基本的InMemoryTokenStore生成token
+        //基于jwt实现令牌（Access Token）保存
-        return new InMemoryTokenStore();
+        return new JwtTokenStore(accessTokenConverter());
    }
+//    @Bean
+//    public TokenStore memoryTokenStore() {
+//        // 最基本的InMemoryTokenStore生成token
+//        return new InMemoryTokenStore();
+//    }
    @Bean
    public DefaultTokenServices tokenServices() {
        final DefaultTokenServices defaultTokenServices = new DefaultTokenServices();
        defaultTokenServices.setTokenEnhancer(accessTokenConverter());
-        defaultTokenServices.setTokenStore(memoryTokenStore());
+        defaultTokenServices.setTokenStore(jwtTokenStore());
        defaultTokenServices.setSupportRefreshToken(false);
        defaultTokenServices.setAccessTokenValiditySeconds((int) TimeUnit.DAYS.toSeconds(30));
        return defaultTokenServices;