From 698b3ca7b612102f2956fe0f147b0ec878d26112 Mon Sep 17 00:00:00 2001 From: curry772 Date: Thu, 28 May 2026 13:28:41 +0900 Subject: [PATCH] =?UTF-8?q?JWT=20=EC=84=9C=EB=AA=85=20=EC=95=8C=EA=B3=A0?= =?UTF-8?q?=EB=A6=AC=EC=A6=98=20RS256=20=E2=86=92=20PS256=20=EA=B5=90?= =?UTF-8?q?=EC=B2=B4=20=E2=80=94=20AuthorizationServerConfig=20PssJwtAcces?= =?UTF-8?q?sTokenConverter=20=EC=A0=81=EC=9A=A9?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - jwtAccessTokenConverter()에서 PssJwtAccessTokenConverter 사용으로 변경 - 기존 JwtAccessTokenConverter + setKeyPair() → new PssJwtAccessTokenConverter(privateKey, publicKey) - PEM 도출·setVerifierKey() 호출은 생성자 내부로 이전 - elink-online-common 서브모듈 업데이트 (RsaPssSigner, RsaPssVerifier, PssJwtAccessTokenConverter 추가) --- elink-online-common | 2 +- .../authserver/config/AuthorizationServerConfig.java | 10 +++++++--- 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/elink-online-common b/elink-online-common index 6809bf6..f3c2e64 160000 --- a/elink-online-common +++ b/elink-online-common @@ -1 +1 @@ -Subproject commit 6809bf66b85f9473ecfd1a85edddab1b896fbb18 +Subproject commit f3c2e64191b739279437cb2a9125cfcb53a3fbce diff --git a/src/main/java/com/eactive/eai/authserver/config/AuthorizationServerConfig.java b/src/main/java/com/eactive/eai/authserver/config/AuthorizationServerConfig.java index 38e4362..2583268 100644 --- a/src/main/java/com/eactive/eai/authserver/config/AuthorizationServerConfig.java +++ b/src/main/java/com/eactive/eai/authserver/config/AuthorizationServerConfig.java @@ -1,6 +1,8 @@ package com.eactive.eai.authserver.config; import java.security.KeyPair; +import java.security.interfaces.RSAPrivateKey; +import java.security.interfaces.RSAPublicKey; import java.time.LocalDateTime; import java.util.Arrays; @@ -35,6 +37,7 @@ import org.springframework.security.oauth2.provider.token.store.JwtTokenStore; import org.springframework.security.oauth2.provider.token.store.KeyStoreKeyFactory; import com.eactive.eai.authserver.dao.TokenIssuanceLogDAO; +import com.eactive.eai.authserver.jwt.PssJwtAccessTokenConverter; import com.eactive.eai.authserver.service.OAuth2Manager; import com.eactive.eai.authserver.vo.ClientVO; import com.eactive.eai.common.dao.DAOException; @@ -139,9 +142,10 @@ public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdap Resource keystore = new ClassPathResource(keystorePath); KeyStoreKeyFactory keyStoreKeyFactory = new KeyStoreKeyFactory(keystore, keystorePassword.toCharArray()); KeyPair keyPair = keyStoreKeyFactory.getKeyPair(keyAlias, keyPassword.toCharArray()); - JwtAccessTokenConverter converter = new JwtAccessTokenConverter(); - converter.setKeyPair(keyPair); - return converter; + RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate(); + RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic(); + + return new PssJwtAccessTokenConverter(privateKey, publicKey); }