java.lang.Object

com.espacogeek.geek.utils.TokenUtils

@Component public class TokenUtils extends Object

Utility for extracting the JWT access token from the current request. Access tokens are read ONLY from the Authorization: Bearer header — never from cookies — to eliminate CSRF attack vectors.

Constructor Summary

Constructors

Constructor

Description

TokenUtils()
Method Summary

Modifier and Type

Method

Description

String

resolveToken()

Extract the access token from the current request via RequestContextHolder.

String

resolveToken(jakarta.servlet.http.HttpServletRequest request)

Extract the access token from the Authorization: Bearer header of the given request.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- TokenUtils
  
  public TokenUtils()
Method Details
- resolveToken
  
  public String resolveToken(jakarta.servlet.http.HttpServletRequest request)
  
  Extract the access token from the Authorization: Bearer header of the given request. Returns null if the header is absent or not in Bearer format.
- resolveToken
  
  public String resolveToken()
  
  Extract the access token from the current request via RequestContextHolder. Falls back to reading from the SecurityContextHolder when the servlet request is not available (e.g., deep inside a GraphQL execution context).

Class TokenUtils

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

TokenUtils

Method Details

resolveToken

resolveToken