Warning: file_get_contents(/data/phpspider/zhask/data//catemap/9/java/385.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Java 调用Microsoft Identity Platform时访问令牌签名验证失败_Java_Azure Active Directory_Jwt_Auth0_Microsoft Identity Platform - Fatal编程技术网
Fatal编程技术网
  • java/
  • Java 调用Microsoft Identity Platform时访问令牌签名验证失败

Java 调用Microsoft Identity Platform时访问令牌签名验证失败

java azure-active-directory jwt

Java 调用Microsoft Identity Platform时访问令牌签名验证失败,java,azure-active-directory,jwt,auth0,microsoft-identity-platform,Java,Azure Active Directory,Jwt,Auth0,Microsoft Identity Platform,我正在使用auth0并试图通过调用Microsoft identity platform来验证签名,但在调用verify方法时收到以下错误。请同时查找我的代码片段 代码段: try { DecodedJWT decodedJWT = JWT.decode(accessToken); // your string JwkProvider provider = new JwkProviderBuilder(new URL("https://login.

我正在使用auth0并试图通过调用Microsoft identity platform来验证签名,但在调用verify方法时收到以下错误。请同时查找我的代码片段

代码段:

  try {
        DecodedJWT decodedJWT = JWT.decode(accessToken); // your string
        JwkProvider provider =  new JwkProviderBuilder(new URL("https://login.microsoftonline.com/tid/discovery/v2.0/keys")).build();
        Jwk jwk = provider.get(decodedJWT.getKeyId());
        Algorithm algorithm = Algorithm.RSA256((RSAPublicKey) jwk.getPublicKey(), null);
        JWTVerifier verifier = JWT.require(algorithm)
                                  .withIssuer("auth0")
                                  .build();
       
        
        verifier.verify(decodedJWT);
        

    } catch (JWTVerificationException | JwkException | MalformedURLException e) {
        e.printStackTrace();
    }
错误

com.auth0.jwt.exceptions.SignatureReferationException:使用算法SHA256withRSA验证时,令牌的签名无效 在com.auth0.jwt.algorithms.rsaagorithm.verify上(rsaagorithm.java:50) 在com.auth0.jwt.JWTVerifier.verify上(JWTVerifier.java:299) 位于com.identity.telsmsidentity.util.MSTokenValidator.validateMSToken(MSTokenValidator.java:43) 位于com.identity.telsmsidentity.controller.TelsPageController.validateToken(TelsPageController.java:98) 位于com.identity.telsmsidentity.controller.TelsPageController.getUserInfoFromGraph(TelsPageController.java:59) 位于java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(本机方法) 位于java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:64) 位于java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) 位于java.base/java.lang.reflect.Method.invoke(Method.java:564) 位于org.springframework.web.method.support.InvocableHandlerMethod.doInvoke(InvocableHandlerMethod.java:189) 位于org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:138) 位于org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:102) 位于org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod(RequestMappingHandlerAdapter.java:892) 位于org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:797) 位于org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:87) 位于org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1038) 位于org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:942) 位于org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1005) 位于org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:897) 位于javax.servlet.http.HttpServlet.service(HttpServlet.java:634)

下面的代码适用于我,请确保您的令牌版本并使用相应的版本:

String token = "";
String tenantID = "";
// For Azure AD V1 token
String providerURLV1 = "https://login.microsoftonline.com/" + tenantID + "/discovery/keys";
String issuerV1 = "https://sts.windows.net/" + tenantID + "/";
// For Azure AD V2 token
String providerURLV2 = "https://login.microsoftonline.com/" + tenantID + "/discovery/v2.0/keys";
String issuerV2 = "https://login.microsoftonline.com/" + tenantID + "/v2.0";

try {
    DecodedJWT decodedJWT = JWT.decode(token);
    JwkProvider provider = new JwkProviderBuilder(new URL(providerURLV1)).build();
    Jwk jwk = provider.get(decodedJWT.getKeyId());
    Algorithm algorithm = Algorithm.RSA256((RSAPublicKey) jwk.getPublicKey(), null);
    JWTVerifier verifier = JWT.require(algorithm).withIssuer(issuerV1).build();

    System.out.println(verifier.verify(decodedJWT).getClaims());

} catch (Exception e) {
    e.printStackTrace();
}
结果:

您的代币是由Auth0还是Azure AD发行的?此代币是由Azure AD发行的,但即使我提供的发行人是Azure AD,也会出现相同的错误。不确定我是否提供了正确的信息。@Aryansh很高兴提供帮助:)您好@Stanley,我很抱歉,仍然收到相同的错误。请注意,我使用的是V1版本。Stanley,我注意到有一件事我无法从浏览器访问发卡机构URL。这是出于设计,发卡机构URL不是用于从浏览器访问的。您能否通过
catch(Exception e){e.printStackTrace();}
com.auth0.jwt.exceptions.signatureificationexception:当使用com.auth0.jwt.algorithms.rsaagorithm.verify(rsaagorithm.java:50)上的算法SHA256withRSA验证时,令牌的签名无效com.identity.telsmsidentity.controller.TelsPageController.getUserInfoFromGraph