Merge pull request #9 from mzlnk/feature/GH-8

mzlnk · web-flow · commit 7343af9e3f44 · 2021-05-23T13:04:21.000+02:00
GH-8: temporary workaround for authorization error while using JWT tokens
diff --git a/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/AutoConfiguration.java b/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/AutoConfiguration.java
@@ -42,7 +42,6 @@ public MultitenantAuthenticationManagerResolver multitenantAuthenticationManager
     }
 
     @Bean
-    @Order(1)
     public AuthenticationTenantContextFilter authenticationTenantContextFilter(MultitenantAuthenticationManagerResolver resolver) {
         return new AuthenticationTenantContextFilter(resolver);
     }
diff --git a/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/context/AuthenticationTenantContextFilter.java b/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/context/AuthenticationTenantContextFilter.java
@@ -1,6 +1,7 @@
 package io.mzlnk.springframework.multitenant.oauth2.resourceserver.context;
 
 import io.mzlnk.springframework.multitenant.oauth2.resourceserver.resolver.MultitenantAuthenticationManagerResolver;
+import org.springframework.core.annotation.Order;
 import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.oauth2.jwt.Jwt;
 import org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionAuthenticatedPrincipal;
@@ -14,8 +15,12 @@
 import java.net.URL;
 import java.util.Optional;
 
+import static io.mzlnk.springframework.multitenant.oauth2.resourceserver.context.AuthenticationTenantContextFilter.ORDER;
+
+@Order(ORDER)
 public class AuthenticationTenantContextFilter extends OncePerRequestFilter {
 
+    public static final int ORDER = 4000;
     private final MultitenantAuthenticationManagerResolver resolver;
 
     public AuthenticationTenantContextFilter(MultitenantAuthenticationManagerResolver resolver) {
diff --git a/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/resolver/jwt/JwtAuthenticationManagerResolver.java b/autoconfigure/src/main/java/io/mzlnk/springframework/multitenant/oauth2/resourceserver/resolver/jwt/JwtAuthenticationManagerResolver.java
@@ -52,7 +52,7 @@ public Builder withTrustedIssuerResolver(Collection<String> trustedIssuers) {
         }
 
         public JwtAuthenticationManagerResolver build() {
-            return new JwtAuthenticationManagerResolver(this.publicKeyResolver, this.trustedIssuerResolver);
+            return new JwtAuthenticationManagerResolver(this.trustedIssuerResolver, this.publicKeyResolver);
         }
 
     }

Original file line number	Diff line number	Diff line change
`@@ -42,7 +42,6 @@ public MultitenantAuthenticationManagerResolver multitenantAuthenticationManager`
`42`	`42`	`}`
`43`	`43`
`44`	`44`	`@Bean`
`45`		`- @Order(1)`
`46`	`45`	`public AuthenticationTenantContextFilter authenticationTenantContextFilter(MultitenantAuthenticationManagerResolver resolver) {`
`47`	`46`	`return new AuthenticationTenantContextFilter(resolver);`
`48`	`47`	`}`
Original file line number	Diff line number	Diff line change
`@@ -52,7 +52,7 @@ public Builder withTrustedIssuerResolver(Collection<String> trustedIssuers) {`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`public JwtAuthenticationManagerResolver build() {`
`55`		`- return new JwtAuthenticationManagerResolver(this.publicKeyResolver, this.trustedIssuerResolver);`
	`55`	`+ return new JwtAuthenticationManagerResolver(this.trustedIssuerResolver, this.publicKeyResolver);`
`56`	`56`	`}`
`57`	`57`
`58`	`58`	`}`