in plugin-rest/spring-security-rest/src/main/groovy/grails/plugin/springsecurity/rest/RestAuthenticationProvider.groovy [49:85]
Authentication authenticate(Authentication authentication) throws AuthenticationException {
log.debug "Use JWT: ${useJwt}"
Assert.isInstanceOf(AccessToken, authentication, "Only AccessToken is supported")
AccessToken authenticationRequest = authentication as AccessToken
AccessToken authenticationResult = new AccessToken(authenticationRequest.accessToken)
if (authenticationRequest.accessToken) {
log.debug "Trying to validate token ${authenticationRequest.accessToken}"
UserDetails userDetails = tokenStorageService.loadUserByToken(authenticationRequest.accessToken) as UserDetails
Integer expiration = null
JWT jwt = null
if (useJwt) {
Date now = new Date()
jwt = jwtService.parse(authenticationRequest.accessToken)
// Prevent refresh tokens from being used for authentication
if (jwt.JWTClaimsSet.getBooleanClaim(AbstractJwtTokenGenerator.REFRESH_ONLY_CLAIM)) {
throw new TokenNotFoundException("Token ${authenticationRequest.accessToken} is not valid")
}
Date expiry = jwt.JWTClaimsSet.expirationTime
if (expiry) {
log.debug "Now is ${now} and token expires at ${expiry}"
TimeDuration timeDuration = TimeCategory.minus(expiry, now)
expiration = Math.round((timeDuration.toMilliseconds() / 1000) as float)
log.debug "Expiration: ${expiration}"
}
}
authenticationResult = new AccessToken(userDetails, userDetails.authorities, authenticationRequest.accessToken, null, expiration, jwt, null)
log.debug "Authentication result: {}", authenticationResult
}
return authenticationResult
}