From c7ec7c0aa12dc1909e5476172867feebf7789044 Mon Sep 17 00:00:00 2001 From: Vlado Kragujevski Date: Wed, 28 Feb 2024 16:51:52 +0100 Subject: [PATCH] Downgrade JJWT library version --- symphony-bdk-bom/build.gradle | 2 +- .../main/java/com/symphony/bdk/core/auth/jwt/JwtHelper.java | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/symphony-bdk-bom/build.gradle b/symphony-bdk-bom/build.gradle index 2fd5e0797..013c6ba13 100644 --- a/symphony-bdk-bom/build.gradle +++ b/symphony-bdk-bom/build.gradle @@ -55,7 +55,7 @@ dependencies { api 'org.apache.commons:commons-text:1.11.0' api 'commons-logging:commons-logging:1.3.0' api 'com.brsanthu:migbase64:2.2' - api 'io.jsonwebtoken:jjwt:0.12.3' + api 'io.jsonwebtoken:jjwt:0.9.1' api 'org.bouncycastle:bcpkix-jdk18on:1.77' api 'com.google.code.findbugs:jsr305:3.0.2' diff --git a/symphony-bdk-core/src/main/java/com/symphony/bdk/core/auth/jwt/JwtHelper.java b/symphony-bdk-core/src/main/java/com/symphony/bdk/core/auth/jwt/JwtHelper.java index 08a99e813..cacddcfc7 100644 --- a/symphony-bdk-core/src/main/java/com/symphony/bdk/core/auth/jwt/JwtHelper.java +++ b/symphony-bdk-core/src/main/java/com/symphony/bdk/core/auth/jwt/JwtHelper.java @@ -117,8 +117,8 @@ public static UserClaim validateJwt(String jwt, String certificate) throws AuthI final Certificate x509Certificate = parseX509Certificate(certificate); try { - final Claims body = Jwts.parser().verifyWith(x509Certificate.getPublicKey()) - .build().parseSignedClaims(jwt).getPayload(); + final Claims body = Jwts.parser().setSigningKey(x509Certificate.getPublicKey()) + .parseClaimsJws(jwt).getBody(); return mapper.convertValue(body.get("user"), UserClaim.class); } catch (JwtException e) { throw new AuthInitializationException("Unable to validate JWT", e);