refactor(security): update deprecated jwts methods

Author: suphawit-wt

src/main/java/com/todo/todoapi/security/JwtTokenProvider.java

@@ -1,19 +1,18 @@
 package com.todo.todoapi.security;
 
 import java.nio.charset.StandardCharsets;
-import java.security.Key;
 import java.time.Duration;
 import java.time.Instant;
 import java.util.Date;
 
+import javax.crypto.SecretKey;
+
 import io.jsonwebtoken.Claims;
 import io.jsonwebtoken.ExpiredJwtException;
-import io.jsonwebtoken.Header;
 import io.jsonwebtoken.Jws;
 import io.jsonwebtoken.JwtParser;
 import io.jsonwebtoken.Jwts;
 import io.jsonwebtoken.MalformedJwtException;
-import io.jsonwebtoken.SignatureAlgorithm;
 import io.jsonwebtoken.UnsupportedJwtException;
 import io.jsonwebtoken.security.Keys;
 import org.springframework.beans.factory.annotation.Value;
@@ -36,19 +35,23 @@ public JwtTokenProvider(
   }
 
   public final String generateAccessToken(final String username) {
-    Key key = initializeKey(jwtSecret);
+    SecretKey key = initializeKey(jwtSecret);
     Instant now = Instant.now();
     Instant expiry = now.plus(Duration.ofHours(12));
 
     return Jwts.builder()
-        .setHeaderParam("typ", Header.JWT_TYPE)
-        .setSubject(username)
-        .setIssuedAt(Date.from(now))
-        .setExpiration(Date.from(expiry))
-        .setIssuer(jwtIssuer)
-        .setAudience(jwtAudience)
-        .setNotBefore(Date.from(now))
-        .signWith(key, SignatureAlgorithm.HS256)
+        .header()
+        .type("JWT")
+        .and()
+        .subject(username)
+        .issuedAt(Date.from(now))
+        .expiration(Date.from(expiry))
+        .issuer(jwtIssuer)
+        .audience()
+        .add(jwtAudience)
+        .and()
+        .notBefore(Date.from(now))
+        .signWith(key, Jwts.SIG.HS256)
         .compact();
   }
 
@@ -59,14 +62,14 @@ public final String getUsername(final String jwtToken) {
 
   public final boolean validateToken(final String jwtToken) {
     try {
-      Key key = initializeKey(jwtSecret);
+      SecretKey key = initializeKey(jwtSecret);
 
-      Jwts.parserBuilder()
+      Jwts.parser()
           .requireIssuer(jwtIssuer)
           .requireAudience(jwtAudience)
-          .setSigningKey(key)
+          .verifyWith(key)
           .build()
-          .parseClaimsJws(jwtToken);
+          .parseSignedClaims(jwtToken);
       return true;
     } catch (MalformedJwtException
         | ExpiredJwtException
@@ -76,7 +79,7 @@ public final boolean validateToken(final String jwtToken) {
     }
   }
 
-  private Key initializeKey(String jwtSecret) {
+  private SecretKey initializeKey(String jwtSecret) {
     try {
       return Keys.hmacShaKeyFor(jwtSecret.getBytes(StandardCharsets.UTF_8));
     } catch (Exception e) {
@@ -85,10 +88,10 @@ private Key initializeKey(String jwtSecret) {
   }
 
   private Claims getJwtClaims(final String jwtToken) {
-    Key key = initializeKey(jwtSecret);
+    SecretKey key = initializeKey(jwtSecret);
 
-    JwtParser parser = Jwts.parserBuilder().setSigningKey(key).build();
-    Jws<Claims> jwt = parser.parseClaimsJws(jwtToken);
-    return jwt.getBody();
+    JwtParser parser = Jwts.parser().verifyWith(key).build();
+    Jws<Claims> jwt = parser.parseSignedClaims(jwtToken);
+    return jwt.getPayload();
   }
 }