Configure signature algorithm when using public key jwt decoder

Michael Kreis · snicoll · commit 69e33d6e62de · 2020-03-23T10:56:59.000+01:00
See gh-20523
diff --git a/spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/servlet/OAuth2ResourceServerJwtConfiguration.java b/spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/servlet/OAuth2ResourceServerJwtConfiguration.java
@@ -78,7 +78,8 @@ JwtDecoder jwtDecoderByJwkKeySetUri() {
 		JwtDecoder jwtDecoderByPublicKeyValue() throws Exception {
 			RSAPublicKey publicKey = (RSAPublicKey) KeyFactory.getInstance("RSA")
 					.generatePublic(new X509EncodedKeySpec(getKeySpec(this.properties.readPublicKey())));
-			return NimbusJwtDecoder.withPublicKey(publicKey).build();
+			return NimbusJwtDecoder.withPublicKey(publicKey)
+					.signatureAlgorithm(SignatureAlgorithm.from(this.properties.getJwsAlgorithm())).build();
 		}
 
 		private byte[] getKeySpec(String keyValue) {

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,8 @@ JwtDecoder jwtDecoderByJwkKeySetUri() {`
`78`	`78`	`JwtDecoder jwtDecoderByPublicKeyValue() throws Exception {`
`79`	`79`	`RSAPublicKey publicKey = (RSAPublicKey) KeyFactory.getInstance("RSA")`
`80`	`80`	`.generatePublic(new X509EncodedKeySpec(getKeySpec(this.properties.readPublicKey())));`
`81`		`- return NimbusJwtDecoder.withPublicKey(publicKey).build();`
	`81`	`+ return NimbusJwtDecoder.withPublicKey(publicKey)`
	`82`	`+ .signatureAlgorithm(SignatureAlgorithm.from(this.properties.getJwsAlgorithm())).build();`
`82`	`83`	`}`
`83`	`84`
`84`	`85`	`private byte[] getKeySpec(String keyValue) {`