├── .gitignore
├── src
    └── main
    │   ├── resources
    │       └── application.properties
    │   ├── webapp
    │       └── login.ftl
    │   └── java
    │       └── com
    │           └── hellokoding
    │               └── sso
    │                   └── auth
    │                       ├── WebApplication.java
    │                       ├── JwtUtil.java
    │                       ├── CookieUtil.java
    │                       └── LoginController.java
├── README.md
├── LICENSE
└── pom.xml


/.gitignore:
--------------------------------------------------------------------------------
1 | target
2 | out
3 | .settings
4 | .classpath
5 | .project
6 | .idea
7 | *.iml
8 | *.DS_Store
9 | 


--------------------------------------------------------------------------------
/src/main/resources/application.properties:
--------------------------------------------------------------------------------
1 | spring.freemarker.template-loader-path: /
2 | spring.freemarker.suffix: .ftl


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Single Sign On (SSO) Example with JSON Web Token (JWT), Spring Boot - Authentication Service
 2 | 
 3 | ## Guide
 4 | https://hellokoding.com/hello-single-sign-on-sso-with-json-web-token-jwt-spring-boot/
 5 | 
 6 | ## What you'll need
 7 | - JDK 1.7+
 8 | - Maven 3+
 9 | 
10 | ## Stack
11 | - Java
12 | - Spring Boot
13 | - FreeMarker
14 | 
15 | ## Run
16 | - Run Authentication Service: `mvn spring-boot:run`
17 | - Run [Resource Service](https://github.com/hellokoding/hello-sso-jwt-resource) 1: `mvn spring-boot:run -Dserver.port=8180`
18 | - Run Resource Service 2: `mvn spring-boot:run -Dserver.port=8280`
19 | 


--------------------------------------------------------------------------------
/src/main/webapp/login.ftl:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 | <head>
 4 |     <title>Authentication Service</title>
 5 | </head>
 6 | <body>
 7 | <form method="POST" action="/login?redirect=${RequestParameters.redirect!}">
 8 |     <h2>Log in</h2>
 9 |     <input name="username" type="text" placeholder="Username"
10 |            autofocus="true"/>
11 |     <input name="password" type="password" placeholder="Password"/>
12 |     <div>(try username=hellokoding and password=hellokoding)</div>
13 |     <div style="color: red">${error!}</div>
14 |     <br/>
15 |     <button type="submit">Log In</button>
16 | </form>
17 | </body>
18 | </html>


--------------------------------------------------------------------------------
/src/main/java/com/hellokoding/sso/auth/WebApplication.java:
--------------------------------------------------------------------------------
 1 | package com.hellokoding.sso.auth;
 2 | 
 3 | import org.springframework.boot.SpringApplication;
 4 | import org.springframework.boot.autoconfigure.SpringBootApplication;
 5 | import org.springframework.boot.builder.SpringApplicationBuilder;
 6 | import org.springframework.boot.context.web.SpringBootServletInitializer;
 7 | 
 8 | @SpringBootApplication
 9 | public class WebApplication extends SpringBootServletInitializer {
10 |     @Override
11 |     protected SpringApplicationBuilder configure(SpringApplicationBuilder application) {
12 |         return application.sources(WebApplication.class);
13 |     }
14 | 
15 |     public static void main(String[] args) throws Exception {
16 |         SpringApplication.run(WebApplication.class, args);
17 |     }
18 | }
19 | 
20 | 


--------------------------------------------------------------------------------
/src/main/java/com/hellokoding/sso/auth/JwtUtil.java:
--------------------------------------------------------------------------------
 1 | package com.hellokoding.sso.auth;
 2 | 
 3 | import io.jsonwebtoken.JwtBuilder;
 4 | import io.jsonwebtoken.Jwts;
 5 | import io.jsonwebtoken.SignatureAlgorithm;
 6 | 
 7 | import javax.servlet.http.HttpServletRequest;
 8 | import java.util.Date;
 9 | 
10 | public class JwtUtil {
11 |     public static String generateToken(String signingKey, String subject) {
12 |         long nowMillis = System.currentTimeMillis();
13 |         Date now = new Date(nowMillis);
14 | 
15 |         JwtBuilder builder = Jwts.builder()
16 |                 .setSubject(subject)
17 |                 .setIssuedAt(now)
18 |                 .signWith(SignatureAlgorithm.HS256, signingKey);
19 | 
20 |         return builder.compact();
21 |     }
22 | 
23 |     public static String getSubject(HttpServletRequest httpServletRequest, String jwtTokenCookieName, String signingKey){
24 |         String token = CookieUtil.getValue(httpServletRequest, jwtTokenCookieName);
25 |         if(token == null) return null;
26 |         return Jwts.parser().setSigningKey(signingKey).parseClaimsJws(token).getBody().getSubject();
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2016 Hello Koding
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/src/main/java/com/hellokoding/sso/auth/CookieUtil.java:
--------------------------------------------------------------------------------
 1 | package com.hellokoding.sso.auth;
 2 | 
 3 | import org.springframework.web.util.WebUtils;
 4 | 
 5 | import javax.servlet.http.Cookie;
 6 | import javax.servlet.http.HttpServletRequest;
 7 | import javax.servlet.http.HttpServletResponse;
 8 | 
 9 | public class CookieUtil {
10 |     public static void create(HttpServletResponse httpServletResponse, String name, String value, Boolean secure, Integer maxAge, String domain) {
11 |         Cookie cookie = new Cookie(name, value);
12 |         cookie.setSecure(secure);
13 |         cookie.setHttpOnly(true);
14 |         cookie.setMaxAge(maxAge);
15 |         cookie.setDomain(domain);
16 |         cookie.setPath("/");
17 |         httpServletResponse.addCookie(cookie);
18 |     }
19 | 
20 |     public static void clear(HttpServletResponse httpServletResponse, String name) {
21 |         Cookie cookie = new Cookie(name, null);
22 |         cookie.setPath("/");
23 |         cookie.setHttpOnly(true);
24 |         cookie.setMaxAge(0);
25 |         httpServletResponse.addCookie(cookie);
26 |     }
27 | 
28 |     public static String getValue(HttpServletRequest httpServletRequest, String name) {
29 |         Cookie cookie = WebUtils.getCookie(httpServletRequest, name);
30 |         return cookie != null ? cookie.getValue() : null;
31 |     }
32 | }
33 | 


--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
 3 |     <modelVersion>4.0.0</modelVersion>
 4 |     <artifactId>hello-sso-jwt-auth</artifactId>
 5 |     <name>hello-sso-jwt-auth</name>
 6 |     <description>hello-sso-jwt-auth</description>
 7 |     <parent>
 8 |         <groupId>org.springframework.boot</groupId>
 9 |         <artifactId>spring-boot-starter-parent</artifactId>
10 |         <version>1.3.5.RELEASE</version>
11 |     </parent>
12 | 
13 |     <properties>
14 |         <java.version>1.7</java.version>
15 |     </properties>
16 | 
17 |     <dependencies>
18 |         <dependency>
19 |             <groupId>org.springframework.boot</groupId>
20 |             <artifactId>spring-boot-starter-freemarker</artifactId>
21 |         </dependency>
22 |         <dependency>
23 |             <groupId>io.jsonwebtoken</groupId>
24 |             <artifactId>jjwt</artifactId>
25 |             <version>0.6.0</version>
26 |         </dependency>
27 |     </dependencies>
28 |     <build>
29 |         <plugins>
30 |             <plugin>
31 |                 <groupId>org.springframework.boot</groupId>
32 |                 <artifactId>spring-boot-maven-plugin</artifactId>
33 |             </plugin>
34 |         </plugins>
35 |     </build>
36 | </project>


--------------------------------------------------------------------------------
/src/main/java/com/hellokoding/sso/auth/LoginController.java:
--------------------------------------------------------------------------------
 1 | package com.hellokoding.sso.auth;
 2 | 
 3 | import org.springframework.stereotype.Controller;
 4 | import org.springframework.ui.Model;
 5 | import org.springframework.web.bind.annotation.RequestMapping;
 6 | import org.springframework.web.bind.annotation.RequestMethod;
 7 | 
 8 | import javax.servlet.http.HttpServletResponse;
 9 | import java.util.HashMap;
10 | import java.util.Map;
11 | 
12 | @Controller
13 | public class LoginController {
14 |     private static final String jwtTokenCookieName = "JWT-TOKEN";
15 |     private static final String signingKey = "signingKey";
16 |     private static final Map<String, String> credentials = new HashMap<>();
17 | 
18 |     public LoginController() {
19 |         credentials.put("hellokoding", "hellokoding");
20 |         credentials.put("hellosso", "hellosso");
21 |     }
22 | 
23 |     @RequestMapping("/")
24 |     public String home(){
25 |         return "redirect:/login";
26 |     }
27 | 
28 |     @RequestMapping("/login")
29 |     public String login(){
30 |         return "login";
31 |     }
32 | 
33 |     @RequestMapping(value = "login", method = RequestMethod.POST)
34 |     public String login(HttpServletResponse httpServletResponse, String username, String password, String redirect, Model model){
35 |         if (username == null || !credentials.containsKey(username) || !credentials.get(username).equals(password)){
36 |             model.addAttribute("error", "Invalid username or password!");
37 |             return "login";
38 |         }
39 | 
40 |         String token = JwtUtil.generateToken(signingKey, username);
41 |         CookieUtil.create(httpServletResponse, jwtTokenCookieName, token, false, -1, "localhost");
42 | 
43 |         return "redirect:" + redirect;
44 |     }
45 | }
46 | 


--------------------------------------------------------------------------------