Java Backend Configuration for JWT Token Verification

This document outlines the backend configuration needed to process the state parameter sent by the frontend, retrieve the token, and verify it. The frontend configuration is covered in a separate document.

Steps to Get and Verify the Token

Receive the Response:

Ensure your backend is set up to receive the authentication response at the specified endpoint.

Verify the Token:

Validate the authentication token or code received from the authentication provider.

Establish Session:

Create a user session or perform necessary actions based on the successful authentication.
Sample API Response (Status API)

{
  "authenticated": true,
  "access_token": "eyJhbGc****TkyoyIWN9JbYhkuqE",
  "token_type": "Bearer",
  "expires_at": "2024-08-17T05:36:11Z",
  "profile": {
    "id": "6667d***03d109*****",
    "idp_id": "104***6374619797",
    "account_id": "644b7****553***a75",
    "connection_type": "MagicLink",
    "email": "user@example.com",
    "first_name": "fname",
    "last_name": "lname",
    "raw_attributes": {
      "verified_email": true,
      "email": "user@example.com",
      "family_name": "fname",
      "given_name": "lanem",
      "hd": "compile7.com",
      "id": "1043572269163******",
      "name": "full name",
      "picture": "<https://lh3.googleusercontent.com/a>"
    },
    "tenants": [
      {
        "tenant_id": "664e26862cbfbdb*******",
        "tenant_name": "org1",
        "roles": [
          {
            "role_id": "6638***21ce81c",
            "role_name": "Admin",
            "permissions": null
          }
        ],
        "status": "Verified"
      },
      {
        "tenant_id": "666****3adc***d1c0",
        "tenant_name": "org2",
        "roles": [
          {
            "role_id": "66***13bd4****e81c",
            "role_name": "Admin",
            "permissions": null
          }
        ],
        "status": "Verified"
      }
    ],
    "created_at": "2024-06-11T04:58:38.983Z",
    "modified_at": "2024-07-18T05:36:11.231Z",
    "is_active": false,
    "LastLoginAt": "2024-07-18T05:36:11.231Z"
  }
}

Verify JWT Token Using JWKS

Dependencies

Add the necessary dependencies to your pom.xml:

<dependencies>
    <dependency>
        <groupId>org.springframework.boot</groupId>
        <artifactId>spring-boot-starter-security</artifactId>
    </dependency>
    <dependency>
        <groupId>org.springframework.security.oauth.boot</groupId>
        <artifactId>spring-security-oauth2-resource-server</artifactId>
    </dependency>
    <dependency>
        <groupId>org.springframework.security</groupId>
        <artifactId>spring-security-jwt</artifactId>
    </dependency>
    <dependency>
        <groupId>com.nimbusds</groupId>
        <artifactId>nimbus-jose-jwt</artifactId>
    </dependency>
</dependencies>

Security Configuration

Configure JWT token validation in your security configuration class:

Controller

Create a controller to handle the authentication endpoint:

Application Properties

Configure your application properties:

This configuration sets up the Spring Boot backend to authenticate and authorize requests using JWT tokens obtained from a JWKS endpoint. The security configuration ensures that the tokens are validated, and the controller handles authenticated requests.

Get Started - JAVA

Steps to Get and Verify the Token#

Receive the Response:#

Verify the Token:#

Establish Session:#

Verify JWT Token Using JWKS#

Dependencies#

Security Configuration#

Controller#

Application Properties#