Fix JwtAuthenticationToken cannot be cast to class BearerTokenAuthentication error

jreynard-code · jreynard-code · commit 3c960f48fa68 · 2023-05-16T16:03:34.000+02:00
diff --git a/src/main/kotlin/com/cosmotech/api/utils/SecurityUtils.kt b/src/main/kotlin/com/cosmotech/api/utils/SecurityUtils.kt
@@ -9,6 +9,7 @@ import com.nimbusds.jwt.JWTParser
 import org.springframework.security.core.Authentication
 import org.springframework.security.core.context.SecurityContextHolder
 import org.springframework.security.oauth2.server.resource.authentication.BearerTokenAuthentication
+import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationToken
 
 fun getCurrentAuthentication(): Authentication? = SecurityContextHolder.getContext().authentication
 
@@ -23,17 +24,31 @@ fun getCurrentAuthenticatedIssuer(): String {
     throw IllegalStateException("User Authentication not found in Security Context")
   }
 
-  val authentication = getCurrentAuthentication() as BearerTokenAuthentication
-  return authentication.token.tokenValue.let { JWTParser.parse(it).jwtClaimsSet.issuer }
+  val authentication = getCurrentAuthentication()
+
+  if (authentication is JwtAuthenticationToken) {
+    return authentication.token.tokenValue.let { JWTParser.parse(it).jwtClaimsSet.issuer }
+  }
+
+  return (authentication as BearerTokenAuthentication).token.tokenValue.let {
+    JWTParser.parse(it).jwtClaimsSet.issuer
+  }
 }
 
 fun getCurrentAuthenticatedMail(configuration: CsmPlatformProperties): String {
   if (getCurrentAuthentication() == null) {
     throw IllegalStateException("User Authentication not found in Security Context")
   }
 
-  val authentication = getCurrentAuthentication() as BearerTokenAuthentication
-  return authentication.token.tokenValue.let {
+  val authentication = getCurrentAuthentication()
+
+  if (authentication is JwtAuthenticationToken) {
+    return authentication.token.tokenValue.let {
+      JWTParser.parse(it).jwtClaimsSet.getStringClaim(configuration.authorization.mailJwtClaim)
+    }
+  }
+
+  return (authentication as BearerTokenAuthentication).token.tokenValue.let {
     JWTParser.parse(it).jwtClaimsSet.getStringClaim(configuration.authorization.mailJwtClaim)
   }
 }
@@ -43,8 +58,15 @@ fun getCurrentAuthenticatedRoles(configuration: CsmPlatformProperties): List<Str
     throw IllegalStateException("User Authentication not found in Security Context")
   }
 
-  val authentication = getCurrentAuthentication() as BearerTokenAuthentication
-  return authentication.token.tokenValue.let {
+  val authentication = getCurrentAuthentication()
+
+  if (authentication is JwtAuthenticationToken) {
+    return authentication.token.tokenValue.let {
+      JWTParser.parse(it).jwtClaimsSet.getStringListClaim(configuration.authorization.rolesJwtClaim)
+    }
+  }
+
+  return (authentication as BearerTokenAuthentication).token.tokenValue.let {
     JWTParser.parse(it).jwtClaimsSet.getStringListClaim(configuration.authorization.rolesJwtClaim)
   }
 }
