春季 OAuth2 中的HMACSHA512不起作用

@Bean
@Primary
public JwtAccessTokenConverter accessTokenConverter() {
    JwtAccessTokenConverter jwtAccessTokenConverter = new JwtAccessTokenConverter();
    jwtAccessTokenConverter.setSigner(new MacSigner("HMACSHA512", new SecretKeySpec("secret_password".getBytes(), "HMACSHA512")));
    return jwtAccessTokenConverter;
}

{
    "error": "invalid_token",
    "error_description": "Cannot convert access token to JSON"
}

jwtAccessTokenConverter.setSigner(new MacSigner("HMACSHA512", new SecretKeySpec("secret_password".getBytes(), "HMACSHA512")));

jwtAccessTokenConverter.setSigningKey("secret_password");

使您的算法更改为512您需要将服务器/资源设置为JWTACCESSTOKENCONVERTER SETVERIFIER与SetSigner所做的相同，例如：

jwtAccessTokenConverter.setVerifier(MacSigner("HMACSHA512", SecretKeySpec("secret_password".toByteArray(), "HMACSHA512")))

记住：两者都需要设置

我们可以通过添加java-jwt依赖项来实现HMACSHA_512算法。

maven依赖性

<dependency>
<groupid>com.auth0</groupid>
<artifactId>java-jwt</artifactId>
<version>3.8.0</version>
</dependency>

gradle依赖性

implementation 'com.auth0:java-jwt:3.8.0'

生成JWT令牌

步骤1：构建标头信息

Map<String, Object> map = new HashMap<String, Object>();
map.put("alg", "HS512");
map.put("typ", "JWT");

步骤2：构造关键信息

Algorithm algorithm = Algorithm.HMAC256("secret");  //secret key

步骤3：我们通过定义注册和自定义声明并结合标头和关键信息来生成JWT令牌

String token = JWT.create()
.withHeader(map)// Setting Header information 
.withIssuer("SERVICE")//Setting load signatures is who generates, for example, servers
.withSubject("this is test token")//Setting the theme of load signature
// .withNotBefore(new Date()) / / set the load definition before any time, and the jwt is not available.
.withAudience("APP")//Audiences who set payload signatures can also understand who accepts signatures
.withIssuedAt(nowDate) //Set the time when the payload generates the signature
.withExpiresAt(expireDate)//Setting the expiration time of load signature
.sign(algorithm);//Signature