How to implement jwt authentication in microservices

Hello i have spring mvc microservices applications which has: naming server, api gateway, web service and auth service. Auth service has login for generating tokens and registring users in database and rest api for those operations. In web service I have thymeleaf and mvc controllers which can handle login and register form. However I have no idea how to design app so that api gateway could automaticaly verify those tokens for me as auth logic is in separate service same as mvc forms. Could someone describe to me how to design such app?

Here is my rest controller

@RestController
@AllArgsConstructor
public class AuthController {
    private final AuthenticationService authenticationService;

    @GetMapping("/validate-token")
    public String validateToken(@RequestParam String token) {
        if (authenticationService.validateToken(token))
            return "Token is valid";
        return "Token is not valid!";
    }

    @PostMapping("/generate-token")
    public String generateToken(@RequestBody AuthRequest authRequest) {
        String username = authRequest.getUsername();
        return authenticationService.generateToken(username);
    }

    @PostMapping("/register-user")
    public String registerUser(@RequestBody UserDTO userDTO) {
        User user = new User();
        user.setUsername(userDTO.getUsername());
        user.setEmail(userDTO.getEmail());
        user.setPassword(userDTO.getPassword());
        return authenticationService.saveUser(user);
    }
}

@RestController
@AllArgsConstructor
public class AuthController {
    private final AuthenticationService authenticationService;

    @GetMapping("/validate-token")
    public String validateToken(@RequestParam String token) {
        if (authenticationService.validateToken(token))
            return "Token is valid";
        return "Token is not valid!";
    }

    @PostMapping("/generate-token")
    public String generateToken(@RequestBody AuthRequest authRequest) {
        String username = authRequest.getUsername();
        return authenticationService.generateToken(username);
    }

    @PostMapping("/register-user")
    public String registerUser(@RequestBody UserDTO userDTO) {
        User user = new User();
        user.setUsername(userDTO.getUsername());
        user.setEmail(userDTO.getEmail());
        user.setPassword(userDTO.getPassword());
        return authenticationService.saveUser(user);
    }
}

@RestController
@AllArgsConstructor
public class AuthController {
    private final AuthenticationService authenticationService;

    @GetMapping("/validate-token")
    public String validateToken(@RequestParam String token) {
        if (authenticationService.validateToken(token))
            return "Token is valid";
        return "Token is not valid!";
    }

    @PostMapping("/generate-token")
    public String generateToken(@RequestBody AuthRequest authRequest) {
        String username = authRequest.getUsername();
        return authenticationService.generateToken(username);
    }

    @PostMapping("/register-user")
    public String registerUser(@RequestBody UserDTO userDTO) {
        User user = new User();
        user.setUsername(userDTO.getUsername());
        user.setEmail(userDTO.getEmail());
        user.setPassword(userDTO.getPassword());
        return authenticationService.saveUser(user);
    }
}

@RestController
@AllArgsConstructor
public class AuthController {
    private final AuthenticationService authenticationService;

    @GetMapping("/validate-token")
    public String validateToken(@RequestParam String token) {
        if (authenticationService.validateToken(token))
            return "Token is valid";
        return "Token is not valid!";
    }

    @PostMapping("/generate-token")
    public String generateToken(@RequestBody AuthRequest authRequest) {
        String username = authRequest.getUsername();
        return authenticationService.generateToken(username);
    }

    @PostMapping("/register-user")
    public String registerUser(@RequestBody UserDTO userDTO) {
        User user = new User();
        user.setUsername(userDTO.getUsername());
        user.setEmail(userDTO.getEmail());
        user.setPassword(userDTO.getPassword());
        return authenticationService.saveUser(user);
    }
}

How to implement jwt authentication in microservices

How to implement jwt authentication in microservices

Similar Threads

Similar Threads

Similar Threads