ToastShaman/dropwizard-auth-jwt ToastShaman/dropwizard-auth-jwt

  • Stars
    star
    116
  • Rank 303,894 (Top 6 %)
  • Language
    Java
  • License
    Apache License 2.0
  • Created over 10 years ago
  • Updated 12 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ToastShaman/dropwizard-auth-jwt
github

ToastShaman

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A Dropwizard authentication filter using JSON Web Token (JWT)

Build Status Maven Central

dropwizard-auth-jwt

A Dropwizard authentication filter using JSON Web Token (JWT).

What is it?

JSON Web Token (JWT) is a compact URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is digitally signed using JSON Web Signature (JWS).

Check out http://jwt.io/

What's new in v1.1.2-0

  • Updated upstream dependencies to Dropwizard 1.1.2
  • Updated upstream dependencies to jose4j to 0.6.0

What's new in v1.1.0-0

  • Updated upstream dependencies to Dropwizard 1.1.0

What's new in v1.0.6-0

  • Updated upstream dependencies to Dropwizard 1.0.6 and jose4j to 0.5.5

What's new in v1.0.2-0

  • Updated upstream dependencies to Dropwizard 1.0.2 and jose4j to 0.5.2

What's new in v1.0.0-0

  • Replaced the JWT token generation and verification with jose4j.

What's new in v0.9.2-0

  • Updated the dependencies to Dropwizard 0.9.2.

What's new in v0.9.1-1

  • Added support for CachingAuthenticator.

What's new in v0.9.1-0

  • Added support for Dropwizard 0.9.x.
  • Support for extracting JWT tokens from cookies.

Getting Started

To use this library in your project you can download it from Maven Central.

<dependency>
    <groupId>com.github.toastshaman</groupId>
    <artifactId>dropwizard-auth-jwt</artifactId>
    <version>1.1.2-0</version>
</dependency>

Example

See this code example if you want to use this code your dropwizard application. Once you have started the example application here are some sample requests to generate a valid and an expired token:

curl -X GET -H "Cache-Control: no-cache" 'http://localhost:8080/jwt/generate-valid-token'

or you can create an invalid token instead to see a failure case with:

curl -X GET -H "Cache-Control: no-cache" 'http://localhost:8080/jwt/generate-expired-token'

Once you have a token, you can send it to the following endpoint to get some information about the logged in user:

curl -X GET \
-H "Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpYXQiOjE0NDkzMTQwOTUsInN1YiI6Imdvb2QtZ3V5In0.oFXdelQECJrw6_e4gR1HU3ljFvY8zmf2EHDsBnnea7n2UDBipmNDbx3bw-Bzzq-FwtEO6qzageK2jbJxM6JHbQ" \
-H "Cache-Control: no-cache" 'http://localhost:8080/jwt/check-token'

License

Apache License Version 2.0

http://apache.org/licenses/LICENSE-2.0.txt

Thanks To

A special thanks goes to MartinSahlen for providing a Gist with the Dropwizard 8 implementation of the AuthFactory.

A special thanks goes to Kimble for adding cookie support.

A special thanks goes to alexitooi for adding support for the CachingAuthenticator.

More Repositories

1

awesome-backend

A curated list of awesome frameworks, libraries and software
30
star
2

awesome-microservices

A curated list of additional reading material following my talk at Zuhlke Days 2018.
5
star
3

zuhlke-days-2015-talk

A talk about how to build single page web applications using JavaScript libraries rather than frameworks
JavaScript
4
star
4

tiny-types

Java library for creating tiny/micro types with validation.
Java
2
star
5

documentation-as-code

Reference code and examples on how to generate documentation from code
Python
1
star
6

toastshaman.github.io

My personal blog
CSS
1
star
7

zuhlke-camp-2021

Kotlin
1
star
8

TweetIpAddress

Tweets the public facing IP address of your Raspberry Pi
Ruby
1
star
9

zuhlke-camp-2020

Java
1
star
10

tiny-http-router

Tiny (no-dependencies) HTTP router library.
Java
1
star
11

tiny-log

Tiny library for structured logging
Java
1
star