Package org.wildfly.security.http.oidc
Class TokenValidator
- java.lang.Object
-
- org.wildfly.security.http.oidc.TokenValidator
-
public class TokenValidator extends Object
Validator for an ID token, as per OpenID Connect Core 1.0.- Author:
- Farah Juma
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description private static class
TokenValidator.AtHashValidator
private static class
TokenValidator.AzpValidator
static class
TokenValidator.Builder
static class
TokenValidator.VerifiedTokens
-
Field Summary
Fields Modifier and Type Field Description private OidcClientConfiguration
clientConfiguration
private static int
HEADER_INDEX
private org.jose4j.jwt.consumer.JwtConsumerBuilder
jwtConsumerBuilder
-
Constructor Summary
Constructors Modifier Constructor Description private
TokenValidator(TokenValidator.Builder builder)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description static TokenValidator.Builder
builder(OidcClientConfiguration clientConfiguration)
Construct a new builder instance.private static String
getAccessTokenHash(String accessTokenString, String jwsAlgorithm)
TokenValidator.VerifiedTokens
parseAndVerifyToken(String idToken, String accessToken)
Parse and verify the given ID token.
-
-
-
Field Detail
-
HEADER_INDEX
private static final int HEADER_INDEX
- See Also:
- Constant Field Values
-
jwtConsumerBuilder
private org.jose4j.jwt.consumer.JwtConsumerBuilder jwtConsumerBuilder
-
clientConfiguration
private OidcClientConfiguration clientConfiguration
-
-
Constructor Detail
-
TokenValidator
private TokenValidator(TokenValidator.Builder builder)
-
-
Method Detail
-
parseAndVerifyToken
public TokenValidator.VerifiedTokens parseAndVerifyToken(String idToken, String accessToken) throws OidcException
Parse and verify the given ID token.- Parameters:
idToken
- the ID token- Returns:
- the
JwtContext
if the ID token was valid - Throws:
OidcException
- if the ID token is invalid
-
builder
public static TokenValidator.Builder builder(OidcClientConfiguration clientConfiguration)
Construct a new builder instance.- Parameters:
clientConfiguration
- the OIDC client configuration- Returns:
- the new builder instance
-
getAccessTokenHash
private static String getAccessTokenHash(String accessTokenString, String jwsAlgorithm) throws NoSuchAlgorithmException
- Throws:
NoSuchAlgorithmException
-
-