FusionAuth Authorization

I am developing a Spring Boot REST API, this API exposes a "/verify" endpoint to validate the token and the access to a certain resource. In FusionAuth I have roles attached to my users. So is the a method to validate if the user has that role so i can let them pass?

Solution

In FusionAuth, the access token is a JWT, which contains a JSON payload like this:

{
  "applicationId": "3c219e58-ed0e-4b18-ad48-f4f92793ae32",
  // ...
  "roles": [
    "necessary_role",
    "other_role"
  ],
  // ...
}

To get that JSON out of the JWT, you can decode it yourself or pass it to one of a few FusionAuth endpoints that will return readable JSON:

Introspect /oauth2/introspect
UserInfo /oauth2/userinfo
Validate /api/jwt/validate

Once you have readable JSON, you just need to examine the roles array for the role in question:

if (jwt.roles.contains("necessary_role") {
  // handle user with necessary_role
} else {
  // handle user without necessary_role
}

NoClassDefFoundError org/apache/poi/ss/usermodel/Workbook
Tinkerpop vertex property single cardinality is not working
What's the difference between ZonedDateTime and OffsetDateTime?
Error: The method add(Shape) in the type ArrayList<Shape> is not applicable for the arguments (Shape.Rectangle)
How do I save ArrayLists with different names in a while loop?
How to parse a BPMN file with Java?
IntelliJ - test configuration. How to configure once run for everyone?
Jasper Reports: JRBeanCollectionDataSource cannot be resolved to a type
What is a "static class" in Java?
Spring's @RequestParam with Enum
Do Java arrays have a maximum size?
How to automatically convert if-else if statement to switch
net.sf.jsqlparser.parser.ParseException: Encountered unexpected token: "@" "@"
Java: Making System.out.println() argument span multiple lines?
Identifier versus keyword
How can I multiply all the digits in an integer (between 000 & 1000 exclusive) without using control statements or loops?
Jackson deserialize generic class with field T as POJO or String array
Role-based authentication not working with Keycloak and Java Spring
Installing two apk using one apk
@KafkaHandler in the consumer doesn't consume the topic message as an object class, only as a string
map vs flatMap in reactor
Request Matcher not working to permit allowed path
Java - Sending an object that points to a BufferedImage through a Socket
does NewDirectByteBuffer create a copy in native code
Excel-like JTable Cell Editor, with an empty cell at edition start
Adding binary numbers
Java Spring API NoClassDefFoundError: javax/persistence/EntityManagerFactory
Leetcode - Find the student that will replace the chalk
UnsatisfiedDependencyException: Error creating bean with name
Is there a way to save multiple config files in a sub-folder of the plugin-folder (Spigot & Maven)