SSK
Reputation: 3766
ClassCastException NimbusJwtDecoder cannot be cast to NimbusJwtDecoderJwkSupport
I am getting below error for spring-security while upgrading to Spring boot 2.3.0 from 2.1.5
org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'springSecurityFilterChain' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]: Bean instantiation via factory method failed;
nested exception is org.springframework.beans.BeanInstantiationException: Failed to instantiate [javax.servlet.Filter]: Factory method 'springSecurityFilterChain' threw exception; nested exception is java.lang.ClassCastException: org.springframework.security.oauth2.jwt.NimbusJwtDecoder cannot be cast to org.springframework.security.oauth2.jwt.NimbusJwtDecoderJwkSupport
My Security configuration is
public class OpenIdSecurityConfiguration extends WebSecurityConfigurerAdapter {
@Autowired
private OAuth2ResourceServerProperties resourceServerProperties;
@Autowired
private MyJwtValidator myJwtValidator;
@Override
protected void configure(HttpSecurity http) throws Exception {
super.configure(http);
http.authorizeRequests().anyRequest().authenticated().and()
.oauth2ResourceServer().jwt().decoder(jwtDecoder())
.jwtAuthenticationConverter(new MyAuthenticationConverter());
}
private JwtDecoder jwtDecoder() {
String issuerUri = this.resourceServerProperties.getJwt().getIssuerUri();
NimbusJwtDecoderJwkSupport jwtDecoder = (NimbusJwtDecoderJwkSupport) JwtDecoders
.fromOidcIssuerLocation(issuerUri);
OAuth2TokenValidator<Jwt> issuer = JwtValidators.createDefaultWithIssuer(issuerUri);
OAuth2TokenValidator<Jwt> myIssuer = new DelegatingOAuth2TokenValidator<>(issuer, myJwtValidator);
jwtDecoder.setJwtValidator(myIssuer);
return jwtDecoder;
}
}
I believe something got changed in between but I am unable to get it.
Any help or thought will be appraciated
Thanks !!
Upvotes: 2
Views: 1655
Answers (1)
Related Questions
- ERROR No qualifying bean of type 'org.springframework.security.oauth2.jwt.JwtDecoder' available
- Why am I obtaining this exception trying to build a JWT token? java.lang.NoClassDefFoundError: javax/xml/bind/DatatypeConverter
- JWT decoding with Spring Security
- Spring Security 5.2 -- how to customize NimbusJWTDecoder used by OAuth2ResourceServer?
- Spring Boot // Keycloak HTTPS : Could not obtain the keys oauth2.jwt.NimbusReactiveJwtDecoder$JwkSetUriReactiveJwtDecoderBuilder
- Using a custom JWT Decoder in Spring boot resource server
- Caused by: java.lang.RuntimeException: com.nimbusds.oauth2.sdk.ParseException: Unexpected type of JSON object member with key "mtls_endpoint_aliases"
- Signed JWT rejected: Another algorithm expected, or no matching key(s) found
- Spring Security OAuth2 v5 : NoSuchBeanDefinitionException: 'org.springframework.security.oauth2.jwt.JwtDecoder'
- Class cast exception in JWT