Inject API Keys in Spring Boot

When using Spring Boot Oauth2, I can use JWT tokens to authenticate to microservices for client password and credential types.

However, I have a scenario where I need to use API keys like: test_dk_ChDGGFHFJ9dsd9dbH for test accounts and live_dk_Jhdhjkk78GThJk9N9 for real accounts.

I need to generate these API keys when creating a user, and the user has to send them either as an HTTP Basic header, ie: curl -u test_dk_ChDGGFHFJ9dsd9dbH and via bearer authentication, ie: curl -H "Authorization: Bearer test_dk_ChDGGFHFHJ9dsd9db

How to implement this generation and authentication in spring?
How can I make sure the API keys are prefixed for test and live accounts?

+3

spring-boot spring-security-oauth2 api-key

Santa teclado Jul 24 17 at 19:08

source to share

No one has answered this question yet

Check out similar questions:

708

How to configure port for Spring Boot application

7

How to register custom BasicAuthenticationFilter AuthenticationProvider in Spring Boot with Spring Security OAuth2

3

Spring Cloud Security with WSO2 Identity Server

2

Oauth2 Authentication with Spring Boot

2

How to implement "Personal Access Tokens" using Spring Boot and Spring Security OAuth2

1

Spring Boot 1.5.10: Implementing Implicit Grant

0

Spring Boot Security Bypass Protection Does Not Work When Passing Bearer Token

0

Boot drive security oauth2 get access_token from cookie

0

Implementing personal tokens (ala api-key) using JWT in Spring Boot

All Articles