Forem: NISHANT RATHORE The latest articles on Forem by NISHANT RATHORE (@nishant_rathore_a4555652e). https://forem.com/nishant_rathore_a4555652e https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3052763%2Fffcd9c97-0f44-42f0-b77e-52b82e131842.jpg Forem: NISHANT RATHORE https://forem.com/nishant_rathore_a4555652e en Implementing JWT Authentication in Spring Boot NISHANT RATHORE Mon, 28 Apr 2025 15:01:45 +0000 https://forem.com/nishant_rathore_a4555652e/implementing-jwt-authentication-in-spring-boot-3l7 https://forem.com/nishant_rathore_a4555652e/implementing-jwt-authentication-in-spring-boot-3l7 <h2> What is JWT? </h2> <p>JSON Web Token (JWT) is a compact, URL-safe token format used for securely transmitting information between parties as a JSON object. JWTs are commonly used for authentication and authorization in web applications, allowing users to securely access protected resources. The token consists of three parts:</p> <ul> <li><p><strong>Header</strong>: Contains the token type and signing algorithm.</p></li> <li><p><strong>Payload</strong>: Holds user claims and metadata.</p></li> <li><p><strong>Signature</strong>: Ensures token integrity and authenticity.</p></li> </ul> <p>JWTs are <strong>stateless</strong>, meaning the server does not need to store session information. Instead, the token itself contains the required data, making it a scalable and efficient authentication mechanism.</p> <h1> <strong>Implementation of JWT in Spring Boot</strong> </h1> <h2> 1. Add Dependencies </h2> <p>Include the required dependencies in <code>pom.xml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight xml"><code><span class="nt">&lt;dependency&gt;</span> <span class="nt">&lt;groupId&gt;</span>org.springframework.boot<span class="nt">&lt;/groupId&gt;</span> <span class="nt">&lt;artifactId&gt;</span>spring-boot-starter-security<span class="nt">&lt;/artifactId&gt;</span> <span class="nt">&lt;/dependency&gt;</span> <span class="nt">&lt;dependency&gt;</span> <span class="nt">&lt;groupId&gt;</span>io.jsonwebtoken<span class="nt">&lt;/groupId&gt;</span> <span class="nt">&lt;artifactId&gt;</span>jjwt<span class="nt">&lt;/artifactId&gt;</span> <span class="nt">&lt;version&gt;</span>0.11.5<span class="nt">&lt;/version&gt;</span> <span class="nt">&lt;/dependency&gt;</span> <span class="nt">&lt;dependency&gt;</span> <span class="nt">&lt;groupId&gt;</span>org.springframework.boot<span class="nt">&lt;/groupId&gt;</span> <span class="nt">&lt;artifactId&gt;</span>spring-boot-starter-web<span class="nt">&lt;/artifactId&gt;</span> <span class="nt">&lt;/dependency&gt;</span> </code></pre> </div> <h2> 2. Add JWT Util </h2> <p>Create a utility class to generate and validate JWT tokens.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">io.jsonwebtoken.*</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">io.jsonwebtoken.security.Keys</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.stereotype.Component</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.security.Key</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.util.Date</span><span class="o">;</span> <span class="nd">@Component</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">JwtUtil</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">String</span> <span class="no">SECRET_KEY</span> <span class="o">=</span> <span class="s">"your-secret-key-your-secret-key-your-secret-key"</span><span class="o">;</span> <span class="kd">private</span> <span class="kd">final</span> <span class="kt">long</span> <span class="no">EXPIRATION_TIME</span> <span class="o">=</span> <span class="mi">1000</span> <span class="o">*</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">60</span><span class="o">;</span> <span class="c1">// 1 hour</span> <span class="kd">private</span> <span class="nc">Key</span> <span class="nf">getSigningKey</span><span class="o">()</span> <span class="o">{</span> <span class="k">return</span> <span class="nc">Keys</span><span class="o">.</span><span class="na">hmacShaKeyFor</span><span class="o">(</span><span class="no">SECRET_KEY</span><span class="o">.</span><span class="na">getBytes</span><span class="o">());</span> <span class="o">}</span> <span class="kd">public</span> <span class="nc">String</span> <span class="nf">generateToken</span><span class="o">(</span><span class="nc">String</span> <span class="n">username</span><span class="o">)</span> <span class="o">{</span> <span class="k">return</span> <span class="nc">Jwts</span><span class="o">.</span><span class="na">builder</span><span class="o">()</span> <span class="o">.</span><span class="na">setSubject</span><span class="o">(</span><span class="n">username</span><span class="o">)</span> <span class="o">.</span><span class="na">setIssuedAt</span><span class="o">(</span><span class="k">new</span> <span class="nc">Date</span><span class="o">())</span> <span class="o">.</span><span class="na">setExpiration</span><span class="o">(</span><span class="k">new</span> <span class="nc">Date</span><span class="o">(</span><span class="nc">System</span><span class="o">.</span><span class="na">currentTimeMillis</span><span class="o">()</span> <span class="o">+</span> <span class="no">EXPIRATION_TIME</span><span class="o">))</span> <span class="o">.</span><span class="na">signWith</span><span class="o">(</span><span class="n">getSigningKey</span><span class="o">(),</span> <span class="nc">SignatureAlgorithm</span><span class="o">.</span><span class="na">HS256</span><span class="o">)</span> <span class="o">.</span><span class="na">compact</span><span class="o">();</span> <span class="o">}</span> <span class="kd">public</span> <span class="nc">String</span> <span class="nf">extractUsername</span><span class="o">(</span><span class="nc">String</span> <span class="n">token</span><span class="o">)</span> <span class="o">{</span> <span class="k">return</span> <span class="nc">Jwts</span><span class="o">.</span><span class="na">parserBuilder</span><span class="o">()</span> <span class="o">.</span><span class="na">setSigningKey</span><span class="o">(</span><span class="n">getSigningKey</span><span class="o">())</span> <span class="o">.</span><span class="na">build</span><span class="o">()</span> <span class="o">.</span><span class="na">parseClaimsJws</span><span class="o">(</span><span class="n">token</span><span class="o">)</span> <span class="o">.</span><span class="na">getBody</span><span class="o">()</span> <span class="o">.</span><span class="na">getSubject</span><span class="o">();</span> <span class="o">}</span> <span class="kd">public</span> <span class="kt">boolean</span> <span class="nf">validateToken</span><span class="o">(</span><span class="nc">String</span> <span class="n">token</span><span class="o">)</span> <span class="o">{</span> <span class="k">try</span> <span class="o">{</span> <span class="nc">Jwts</span><span class="o">.</span><span class="na">parserBuilder</span><span class="o">()</span> <span class="o">.</span><span class="na">setSigningKey</span><span class="o">(</span><span class="n">getSigningKey</span><span class="o">())</span> <span class="o">.</span><span class="na">build</span><span class="o">()</span> <span class="o">.</span><span class="na">parseClaimsJws</span><span class="o">(</span><span class="n">token</span><span class="o">);</span> <span class="k">return</span> <span class="kc">true</span><span class="o">;</span> <span class="o">}</span> <span class="k">catch</span> <span class="o">(</span><span class="nc">JwtException</span> <span class="n">e</span><span class="o">)</span> <span class="o">{</span> <span class="k">return</span> <span class="kc">false</span><span class="o">;</span> <span class="o">}</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 3. Add JWT Filter </h2> <p>The filter extracts the JWT token from the request and validates it.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">jakarta.servlet.FilterChain</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">jakarta.servlet.ServletException</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">jakarta.servlet.http.HttpServletRequest</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">jakarta.servlet.http.HttpServletResponse</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.beans.factory.annotation.Autowired</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.context.ApplicationContext</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.authentication.UsernamePasswordAuthenticationToken</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.core.context.SecurityContextHolder</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.core.userdetails.UserDetails</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.web.authentication.WebAuthenticationDetailsSource</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.stereotype.Component</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.web.filter.OncePerRequestFilter</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.io.IOException</span><span class="o">;</span> <span class="nd">@Component</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">JwtFilter</span> <span class="kd">extends</span> <span class="nc">OncePerRequestFilter</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">ApplicationContext</span> <span class="n">applicationContext</span><span class="o">;</span> <span class="nd">@Autowired</span> <span class="kd">public</span> <span class="nf">JwtFilter</span><span class="o">(</span><span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">,</span> <span class="nc">ApplicationContext</span> <span class="n">applicationContext</span><span class="o">)</span> <span class="o">{</span> <span class="k">this</span><span class="o">.</span><span class="na">jwtUtil</span> <span class="o">=</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="k">this</span><span class="o">.</span><span class="na">applicationContext</span> <span class="o">=</span> <span class="n">applicationContext</span><span class="o">;</span> <span class="o">}</span> <span class="nd">@Override</span> <span class="kd">protected</span> <span class="kt">void</span> <span class="nf">doFilterInternal</span><span class="o">(</span><span class="nc">HttpServletRequest</span> <span class="n">request</span><span class="o">,</span> <span class="nc">HttpServletResponse</span> <span class="n">response</span><span class="o">,</span> <span class="nc">FilterChain</span> <span class="n">filterChain</span><span class="o">)</span> <span class="kd">throws</span> <span class="nc">ServletException</span><span class="o">,</span> <span class="nc">IOException</span> <span class="o">{</span> <span class="nc">String</span> <span class="n">authHeader</span> <span class="o">=</span> <span class="n">request</span><span class="o">.</span><span class="na">getHeader</span><span class="o">(</span><span class="s">"Authorization"</span><span class="o">);</span> <span class="nc">String</span> <span class="n">token</span> <span class="o">=</span> <span class="kc">null</span><span class="o">;</span> <span class="nc">String</span> <span class="n">username</span> <span class="o">=</span> <span class="kc">null</span><span class="o">;</span> <span class="k">if</span> <span class="o">(</span><span class="n">authHeader</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="n">authHeader</span><span class="o">.</span><span class="na">startsWith</span><span class="o">(</span><span class="s">"Bearer "</span><span class="o">))</span> <span class="o">{</span> <span class="n">token</span> <span class="o">=</span> <span class="n">authHeader</span><span class="o">.</span><span class="na">substring</span><span class="o">(</span><span class="mi">7</span><span class="o">);</span> <span class="n">username</span> <span class="o">=</span> <span class="n">jwtUtil</span><span class="o">.</span><span class="na">extractUsername</span><span class="o">(</span><span class="n">token</span><span class="o">);</span> <span class="o">}</span> <span class="k">if</span> <span class="o">(</span><span class="n">username</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nc">SecurityContextHolder</span><span class="o">.</span><span class="na">getContext</span><span class="o">().</span><span class="na">getAuthentication</span><span class="o">()</span> <span class="o">==</span> <span class="kc">null</span><span class="o">)</span> <span class="o">{</span> <span class="nc">UserDetails</span> <span class="n">userDetails</span> <span class="o">=</span> <span class="n">applicationContext</span><span class="o">.</span><span class="na">getBean</span><span class="o">(</span><span class="nc">CustomUserDetailsService</span><span class="o">.</span><span class="na">class</span><span class="o">).</span><span class="na">loadUserByUsername</span><span class="o">(</span><span class="n">username</span><span class="o">);</span> <span class="k">if</span> <span class="o">(</span><span class="n">jwtUtil</span><span class="o">.</span><span class="na">validateToken</span><span class="o">(</span><span class="n">token</span><span class="o">))</span> <span class="o">{</span> <span class="nc">UsernamePasswordAuthenticationToken</span> <span class="n">authToken</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">UsernamePasswordAuthenticationToken</span><span class="o">(</span><span class="n">userDetails</span><span class="o">,</span> <span class="kc">null</span><span class="o">,</span> <span class="n">userDetails</span><span class="o">.</span><span class="na">getAuthorities</span><span class="o">());</span> <span class="n">authToken</span><span class="o">.</span><span class="na">setDetails</span><span class="o">(</span><span class="k">new</span> <span class="nc">WebAuthenticationDetailsSource</span><span class="o">().</span><span class="na">buildDetails</span><span class="o">(</span><span class="n">request</span><span class="o">));</span> <span class="nc">SecurityContextHolder</span><span class="o">.</span><span class="na">getContext</span><span class="o">().</span><span class="na">setAuthentication</span><span class="o">(</span><span class="n">authToken</span><span class="o">);</span> <span class="o">}</span> <span class="o">}</span> <span class="n">filterChain</span><span class="o">.</span><span class="na">doFilter</span><span class="o">(</span><span class="n">request</span><span class="o">,</span> <span class="n">response</span><span class="o">);</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 4. Add Security Configuration </h2> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">org.springframework.context.annotation.Bean</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.context.annotation.Configuration</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.authentication.AuthenticationManager</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.config.annotation.web.builders.HttpSecurity</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.config.http.SessionCreationPolicy</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.web.SecurityFilterChain</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter</span><span class="o">;</span> <span class="nd">@Configuration</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">SecurityConfig</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">JwtFilter</span> <span class="n">jwtFilter</span><span class="o">;</span> <span class="kd">public</span> <span class="nf">SecurityConfig</span><span class="o">(</span><span class="nc">JwtFilter</span> <span class="n">jwtFilter</span><span class="o">)</span> <span class="o">{</span> <span class="k">this</span><span class="o">.</span><span class="na">jwtFilter</span> <span class="o">=</span> <span class="n">jwtFilter</span><span class="o">;</span> <span class="o">}</span> <span class="nd">@Bean</span> <span class="kd">public</span> <span class="nc">AuthenticationManager</span> <span class="nf">authenticationManager</span><span class="o">(</span><span class="nc">AuthenticationConfiguration</span> <span class="n">authenticationConfiguration</span><span class="o">)</span> <span class="kd">throws</span> <span class="nc">Exception</span> <span class="o">{</span> <span class="k">return</span> <span class="n">authenticationConfiguration</span><span class="o">.</span><span class="na">getAuthenticationManager</span><span class="o">();</span> <span class="o">}</span> <span class="nd">@Bean</span> <span class="kd">public</span> <span class="nc">SecurityFilterChain</span> <span class="nf">securityFilterChain</span><span class="o">(</span><span class="nc">HttpSecurity</span> <span class="n">http</span><span class="o">)</span> <span class="kd">throws</span> <span class="nc">Exception</span> <span class="o">{</span> <span class="n">http</span><span class="o">.</span><span class="na">csrf</span><span class="o">().</span><span class="na">disable</span><span class="o">()</span> <span class="o">.</span><span class="na">authorizeHttpRequests</span><span class="o">()</span> <span class="o">.</span><span class="na">requestMatchers</span><span class="o">(</span><span class="s">"/auth/login"</span><span class="o">).</span><span class="na">permitAll</span><span class="o">()</span> <span class="o">.</span><span class="na">anyRequest</span><span class="o">().</span><span class="na">authenticated</span><span class="o">()</span> <span class="o">.</span><span class="na">and</span><span class="o">()</span> <span class="o">.</span><span class="na">sessionManagement</span><span class="o">().</span><span class="na">sessionCreationPolicy</span><span class="o">(</span><span class="nc">SessionCreationPolicy</span><span class="o">.</span><span class="na">STATELESS</span><span class="o">)</span> <span class="o">.</span><span class="na">and</span><span class="o">()</span> <span class="o">.</span><span class="na">addFilterBefore</span><span class="o">(</span><span class="n">jwtFilter</span><span class="o">,</span> <span class="nc">UsernamePasswordAuthenticationFilter</span><span class="o">.</span><span class="na">class</span><span class="o">);</span> <span class="k">return</span> <span class="n">http</span><span class="o">.</span><span class="na">build</span><span class="o">();</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 5. Add Interceptor </h2> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">org.springframework.stereotype.Component</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.web.servlet.HandlerInterceptor</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">javax.servlet.http.HttpServletRequest</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">javax.servlet.http.HttpServletResponse</span><span class="o">;</span> <span class="nd">@Component</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">JwtInterceptor</span> <span class="kd">implements</span> <span class="nc">HandlerInterceptor</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="kd">public</span> <span class="nf">JwtInterceptor</span><span class="o">(</span><span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">)</span> <span class="o">{</span> <span class="k">this</span><span class="o">.</span><span class="na">jwtUtil</span> <span class="o">=</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="o">}</span> <span class="nd">@Override</span> <span class="kd">public</span> <span class="kt">boolean</span> <span class="nf">preHandle</span><span class="o">(</span><span class="nc">HttpServletRequest</span> <span class="n">request</span><span class="o">,</span> <span class="nc">HttpServletResponse</span> <span class="n">response</span><span class="o">,</span> <span class="nc">Object</span> <span class="n">handler</span><span class="o">)</span> <span class="o">{</span> <span class="nc">String</span> <span class="n">authHeader</span> <span class="o">=</span> <span class="n">request</span><span class="o">.</span><span class="na">getHeader</span><span class="o">(</span><span class="s">"Authorization"</span><span class="o">);</span> <span class="k">if</span> <span class="o">(</span><span class="n">authHeader</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="n">authHeader</span><span class="o">.</span><span class="na">startsWith</span><span class="o">(</span><span class="s">"Bearer "</span><span class="o">))</span> <span class="o">{</span> <span class="nc">String</span> <span class="n">token</span> <span class="o">=</span> <span class="n">authHeader</span><span class="o">.</span><span class="na">substring</span><span class="o">(</span><span class="mi">7</span><span class="o">);</span> <span class="k">if</span> <span class="o">(</span><span class="n">jwtUtil</span><span class="o">.</span><span class="na">validateToken</span><span class="o">(</span><span class="n">token</span><span class="o">))</span> <span class="o">{</span> <span class="k">return</span> <span class="kc">true</span><span class="o">;</span> <span class="o">}</span> <span class="o">}</span> <span class="n">response</span><span class="o">.</span><span class="na">setStatus</span><span class="o">(</span><span class="nc">HttpServletResponse</span><span class="o">.</span><span class="na">SC_UNAUTHORIZED</span><span class="o">);</span> <span class="k">return</span> <span class="kc">false</span><span class="o">;</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 6. Register Interceptors </h2> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">org.springframework.beans.factory.annotation.Autowired</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.context.annotation.Configuration</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.web.servlet.config.annotation.InterceptorRegistry</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.web.servlet.config.annotation.WebMvcConfigurer</span><span class="o">;</span> <span class="nd">@Configuration</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">InterceptorConfig</span> <span class="kd">implements</span> <span class="nc">WebMvcConfigurer</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">JwtInterceptor</span> <span class="n">jwtInterceptor</span><span class="o">;</span> <span class="nd">@Autowired</span> <span class="kd">public</span> <span class="nf">InterceptorConfig</span><span class="o">(</span><span class="nc">JwtInterceptor</span> <span class="n">jwtInterceptor</span><span class="o">)</span> <span class="o">{</span> <span class="k">this</span><span class="o">.</span><span class="na">jwtInterceptor</span> <span class="o">=</span> <span class="n">jwtInterceptor</span><span class="o">;</span> <span class="o">}</span> <span class="nd">@Override</span> <span class="kd">public</span> <span class="kt">void</span> <span class="nf">addInterceptors</span><span class="o">(</span><span class="nc">InterceptorRegistry</span> <span class="n">registry</span><span class="o">)</span> <span class="o">{</span> <span class="n">registry</span><span class="o">.</span><span class="na">addInterceptor</span><span class="o">(</span><span class="n">jwtInterceptor</span><span class="o">).</span><span class="na">excludePathPatterns</span><span class="o">(</span><span class="s">"/auth/login"</span><span class="o">);</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 7. Create Controller </h2> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">org.springframework.http.ResponseEntity</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">org.springframework.web.bind.annotation.*</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.util.Map</span><span class="o">;</span> <span class="nd">@RestController</span> <span class="nd">@RequestMapping</span><span class="o">(</span><span class="s">"/auth"</span><span class="o">)</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">AuthController</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">UserService</span> <span class="n">userService</span><span class="o">;</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="kd">public</span> <span class="nf">AuthController</span><span class="o">(</span><span class="nc">UserService</span> <span class="n">userService</span><span class="o">,</span> <span class="nc">JwtUtil</span> <span class="n">jwtUtil</span><span class="o">)</span> <span class="o">{</span> <span class="k">this</span><span class="o">.</span><span class="na">userService</span> <span class="o">=</span> <span class="n">userService</span><span class="o">;</span> <span class="k">this</span><span class="o">.</span><span class="na">jwtUtil</span> <span class="o">=</span> <span class="n">jwtUtil</span><span class="o">;</span> <span class="o">}</span> <span class="nd">@PostMapping</span><span class="o">(</span><span class="s">"/login"</span><span class="o">)</span> <span class="kd">public</span> <span class="nc">ResponseEntity</span><span class="o">&lt;?&gt;</span> <span class="n">login</span><span class="o">(</span><span class="nd">@RequestBody</span> <span class="nc">Map</span><span class="o">&lt;</span><span class="nc">String</span><span class="o">,</span> <span class="nc">String</span><span class="o">&gt;</span> <span class="n">credentials</span><span class="o">)</span> <span class="o">{</span> <span class="nc">String</span> <span class="n">username</span> <span class="o">=</span> <span class="n">credentials</span><span class="o">.</span><span class="na">get</span><span class="o">(</span><span class="s">"username"</span><span class="o">);</span> <span class="nc">String</span> <span class="n">password</span> <span class="o">=</span> <span class="n">credentials</span><span class="o">.</span><span class="na">get</span><span class="o">(</span><span class="s">"password"</span><span class="o">);</span> <span class="k">if</span> <span class="o">(</span><span class="n">userService</span><span class="o">.</span><span class="na">authenticate</span><span class="o">(</span><span class="n">username</span><span class="o">,</span> <span class="n">password</span><span class="o">))</span> <span class="o">{</span> <span class="nc">String</span> <span class="n">token</span> <span class="o">=</span> <span class="n">jwtUtil</span><span class="o">.</span><span class="na">generateToken</span><span class="o">(</span><span class="n">username</span><span class="o">);</span> <span class="k">return</span> <span class="nc">ResponseEntity</span><span class="o">.</span><span class="na">ok</span><span class="o">(</span><span class="nc">Map</span><span class="o">.</span><span class="na">of</span><span class="o">(</span><span class="s">"Bearer"</span><span class="o">,</span> <span class="n">token</span><span class="o">));</span> <span class="o">}</span> <span class="k">else</span> <span class="o">{</span> <span class="k">return</span> <span class="nc">ResponseEntity</span><span class="o">.</span><span class="na">status</span><span class="o">(</span><span class="mi">401</span><span class="o">).</span><span class="na">body</span><span class="o">(</span><span class="s">"Invalid Credentials"</span><span class="o">);</span> <span class="o">}</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 8. Create Service </h2> <div class="highlight js-code-highlight"> <pre class="highlight java"><code><span class="kn">import</span> <span class="nn">org.springframework.stereotype.Service</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.util.HashMap</span><span class="o">;</span> <span class="kn">import</span> <span class="nn">java.util.Map</span><span class="o">;</span> <span class="nd">@Service</span> <span class="kd">public</span> <span class="kd">class</span> <span class="nc">UserService</span> <span class="o">{</span> <span class="kd">private</span> <span class="kd">final</span> <span class="nc">Map</span><span class="o">&lt;</span><span class="nc">String</span><span class="o">,</span> <span class="nc">String</span><span class="o">&gt;</span> <span class="n">users</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">HashMap</span><span class="o">&lt;&gt;();</span> <span class="kd">public</span> <span class="nf">UserService</span><span class="o">()</span> <span class="o">{</span> <span class="n">users</span><span class="o">.</span><span class="na">put</span><span class="o">(</span><span class="s">"admin"</span><span class="o">,</span> <span class="s">"password"</span><span class="o">);</span> <span class="o">}</span> <span class="kd">public</span> <span class="kt">boolean</span> <span class="nf">authenticate</span><span class="o">(</span><span class="nc">String</span> <span class="n">username</span><span class="o">,</span> <span class="nc">String</span> <span class="n">password</span><span class="o">)</span> <span class="o">{</span> <span class="k">return</span> <span class="n">users</span><span class="o">.</span><span class="na">containsKey</span><span class="o">(</span><span class="n">username</span><span class="o">)</span> <span class="o">&amp;&amp;</span> <span class="n">users</span><span class="o">.</span><span class="na">get</span><span class="o">(</span><span class="n">username</span><span class="o">).</span><span class="na">equals</span><span class="o">(</span><span class="n">password</span><span class="o">);</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <h2> 9. Testing </h2> <ul> <li><p>Send a <strong>POST request</strong> to <code>/auth/login</code> with a valid username and password.</p></li> <li><p>If successful, it returns a <strong>JWT token</strong>.</p></li> <li><p>Use this token in the <strong>Authorization header</strong> (<code>Bearer &lt;token&gt;</code>) when making requests to secured endpoints.</p></li> </ul> <p>Now your <strong>Spring Boot app</strong> supports <strong>JWT authentication</strong> with proper security configurations! 🚀</p> <h2> Conclusion </h2> <p>JWT authentication provides a <strong>scalable, stateless</strong> security solution for your Spring Boot applications. By implementing JWT filters and interceptors, you can efficiently manage user authentication and authorization while ensuring a secure API.</p> <p>You can now integrate JWT authentication into your microservices or enhance it with <strong>refresh tokens</strong> and <strong>role-based access control (RBAC)</strong> for even better security!</p> How to Integrate JWT in Spring Boot NISHANT RATHORE Mon, 28 Apr 2025 15:01:12 +0000 https://forem.com/nishant_rathore_a4555652e/how-to-integrate-jwt-in-spring-boot-2im1 https://forem.com/nishant_rathore_a4555652e/how-to-integrate-jwt-in-spring-boot-2im1 <h2> Introduction </h2> <p>JWT (JSON Web Token) is a popular method for securing APIs...</p> <h3> Step 1: Setup Spring Boot Project... </h3> tutorial springboot security api Add Demo Blog using hashnodeApis NISHANT RATHORE Mon, 28 Apr 2025 15:00:40 +0000 https://forem.com/nishant_rathore_a4555652e/add-demo-blog-using-hashnodeapis-12od https://forem.com/nishant_rathore_a4555652e/add-demo-blog-using-hashnodeapis-12od <h2> Introduction </h2> <p>JWT (JSON Web Token) is a secure way to authenticate users...</p> api security tutorial webdev The Future of AI: How Artificial Intelligence is Transforming Our World NISHANT RATHORE Mon, 28 Apr 2025 15:00:08 +0000 https://forem.com/nishant_rathore_a4555652e/the-future-of-ai-how-artificial-intelligence-is-transforming-our-world-5ef0 https://forem.com/nishant_rathore_a4555652e/the-future-of-ai-how-artificial-intelligence-is-transforming-our-world-5ef0 <h2> Introduction </h2> <p>Artificial Intelligence (AI) is rapidly evolving, shaping industries and revolutionizing the way we live and work. From self-driving cars to intelligent chatbots, AI is making an undeniable impact. </p> <h2> The Rise of AI </h2> <p>Over the past decade, AI advancements have surged, with machine learning, deep learning, and natural language processing driving innovation. Companies like OpenAI, Google, and Tesla are pushing the boundaries of what AI can achieve. </p> <h2> AI in Healthcare </h2> <p>AI is transforming healthcare by improving diagnostics, predicting diseases, and personalizing treatments. Algorithms can analyze medical images with high accuracy, assisting doctors in making better decisions. </p> <h2> Everyday AI </h2> <p>From voice assistants like Siri and Alexa to recommendation engines on Netflix and Spotify, AI is embedded in our daily lives, making interactions more seamless and efficient. </p> <h2> Conclusion </h2> <p>AI is not just the future—it is the present. As technology advances, ethical considerations, data privacy, and responsible AI development will become increasingly crucial. The potential for AI to enhance human lives is limitless, but it must be implemented wisely. </p> <p>🚀 <strong>Stay tuned for more insights on AI and emerging technologies!</strong></p> 5 Productivity Hacks to Supercharge Your Workflow NISHANT RATHORE Mon, 28 Apr 2025 14:59:35 +0000 https://forem.com/nishant_rathore_a4555652e/5-productivity-hacks-to-supercharge-your-workflow-f43 https://forem.com/nishant_rathore_a4555652e/5-productivity-hacks-to-supercharge-your-workflow-f43 <h2> Introduction </h2> <p>In today's fast-paced world, staying productive can be a challenge. Between emails, meetings, and distractions, it’s easy to lose focus. Here are five powerful productivity hacks to help you stay on track and accomplish more. </p> <h2> 1. The Pomodoro Technique </h2> <p>Break your work into 25-minute focused sessions, followed by a 5-minute break. This technique helps maintain concentration and prevents burnout. </p> <h2> 2. Prioritize with the Eisenhower Matrix </h2> <p>Classify tasks into four categories: </p> <ul> <li> <strong>Urgent &amp; Important</strong> – Do these immediately. </li> <li> <strong>Important but Not Urgent</strong> – Schedule these for later. </li> <li> <strong>Urgent but Not Important</strong> – Delegate these tasks. </li> <li> <strong>Neither Urgent nor Important</strong> – Eliminate or minimize these. </li> </ul> <h2> 3. Use the 2-Minute Rule </h2> <p>If a task takes less than two minutes, do it immediately instead of adding it to your to-do list. This helps clear small tasks quickly. </p> <h2> 4. Leverage Automation </h2> <p>Use tools like Zapier, Notion, or Trello to automate repetitive tasks. This saves time and reduces mental clutter. </p> <h2> 5. Block Distractions </h2> <p>Turn off notifications, set specific work hours, and use website blockers to stay focused on deep work. </p> <h2> Conclusion </h2> <p>Productivity isn’t about working harder—it’s about working smarter. Implement these hacks into your daily routine, and watch your efficiency soar! </p> <p>⚡ <strong>What’s your favorite productivity hack? Share your thoughts in the comments!</strong> </p> The Beginner’s Guide to Learning JavaScript NISHANT RATHORE Mon, 28 Apr 2025 14:59:03 +0000 https://forem.com/nishant_rathore_a4555652e/the-beginners-guide-to-learning-javascript-5fgb https://forem.com/nishant_rathore_a4555652e/the-beginners-guide-to-learning-javascript-5fgb <h2> Introduction </h2> <p>JavaScript is one of the most popular programming languages in the world. It powers websites, web applications, and even backend systems. If you're new to coding, JavaScript is a great language to start with! </p> <h2> 1. Why Learn JavaScript? </h2> <ul> <li>It's beginner-friendly. </li> <li>It runs in the browser—no setup required! </li> <li>It’s widely used in web development, making it a valuable skill. </li> </ul> <h2> 2. Getting Started </h2> <p>To write JavaScript, all you need is a browser and a text editor. You can start by opening your browser’s developer console (press <code>F12</code> in Chrome) and typing: </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> js console.log("Hello, JavaScript!"); </code></pre> </div> javascript tutorial beginners webdev