Modifier and Type | Class and Description |
---|---|
class |
TokenVerifier<T extends JsonWebToken> |
static interface |
TokenVerifier.Predicate<T extends JsonWebToken>
Functional interface of checks that verify some part of a JWT.
|
Modifier and Type | Field and Description |
---|---|
static TokenVerifier.Predicate<JsonWebToken> |
TokenVerifier.IS_ACTIVE
Check for token being neither expired nor used before it gets valid.
|
static TokenVerifier.Predicate<JsonWebToken> |
TokenVerifier.SUBJECT_EXISTS_CHECK |
Modifier and Type | Method and Description |
---|---|
static <T extends JsonWebToken> |
TokenVerifier.alternative(TokenVerifier.Predicate<? super T>... predicates)
Creates a predicate that will proceed with checks of the given predicates
and will pass if and only if at least one of the given predicates passes.
|
static <T extends JsonWebToken> |
TokenVerifier.create(String tokenString,
Class<T> clazz)
Creates an instance of
TokenVerifier from the given string on a JWT of the given class. |
static <T extends JsonWebToken> |
TokenVerifier.createWithoutSignature(T token)
Creates an instance of
TokenVerifier for the given token. |
static <T extends JsonWebToken> |
TokenVerifier.optional(TokenVerifier.Predicate<T> mandatoryPredicate)
Creates an optional predicate from a predicate that will proceed with check but always pass.
|
Modifier and Type | Method and Description |
---|---|
boolean |
TokenVerifier.RealmUrlCheck.test(JsonWebToken t) |
boolean |
TokenVerifier.TokenTypeCheck.test(JsonWebToken t) |
boolean |
TokenVerifier.AudienceCheck.test(JsonWebToken t) |
boolean |
TokenVerifier.IssuedForCheck.test(JsonWebToken jsonWebToken) |
Modifier and Type | Class and Description |
---|---|
class |
AbstractActionTokenHandler<T extends JsonWebToken> |
class |
ActionTokenContext<T extends JsonWebToken> |
interface |
ActionTokenHandler<T extends JsonWebToken>
Handler of the action token.
|
interface |
ActionTokenHandlerFactory<T extends JsonWebToken> |
Modifier and Type | Class and Description |
---|---|
class |
DefaultActionToken
Part of action token that is intended to be used e.g.
|
class |
DefaultActionTokenKey |
Modifier and Type | Method and Description |
---|---|
static <T extends JsonWebToken> |
TokenUtils.checkThat(Predicate<T> function,
String errorEvent,
String errorMessage)
Returns a predicate for use in
TokenVerifier using the given boolean-returning function. |
static <T extends JsonWebToken> |
TokenUtils.onlyIf(Predicate<T> condition,
TokenVerifier.Predicate<T> predicate)
Returns a predicate that is applied only if the given
condition evaluates to . |
static <T extends JsonWebToken> |
TokenUtils.predicates(TokenVerifier.Predicate<? super T>... predicate) |
Modifier and Type | Method and Description |
---|---|
static TokenVerifier.Predicate<JsonWebToken> |
TokenUtils.checkThat(BooleanSupplier function,
String errorEvent,
String errorMessage)
Returns a predicate for use in
TokenVerifier using the given boolean-returning function. |
Constructor and Description |
---|
ExplainedTokenVerificationException(JsonWebToken token,
ExplainedVerificationException cause) |
ExplainedTokenVerificationException(JsonWebToken token,
String errorEvent) |
ExplainedTokenVerificationException(JsonWebToken token,
String errorEvent,
String message) |
ExplainedTokenVerificationException(JsonWebToken token,
String errorEvent,
String message,
Throwable cause) |
ExplainedTokenVerificationException(JsonWebToken token,
String errorEvent,
Throwable cause) |
Modifier and Type | Class and Description |
---|---|
class |
ExecuteActionsActionToken |
Modifier and Type | Class and Description |
---|---|
class |
IdpVerifyAccountLinkActionToken
Representation of a token that represents a time-limited verify e-mail action.
|
Modifier and Type | Class and Description |
---|---|
class |
ResetCredentialsActionToken
Representation of a token that represents a time-limited reset credentials action.
|
Modifier and Type | Class and Description |
---|---|
class |
VerifyEmailActionToken
Representation of a token that represents a time-limited verify e-mail action.
|
Modifier and Type | Class and Description |
---|---|
class |
TokenIntrospectionResponse |
Modifier and Type | Method and Description |
---|---|
protected JsonWebToken |
AbstractOAuth2IdentityProvider.generateToken() |
JsonWebToken |
OIDCIdentityProvider.validateToken(String encodedToken) |
protected JsonWebToken |
OIDCIdentityProvider.validateToken(String encodedToken,
boolean ignoreAudience) |
Modifier and Type | Method and Description |
---|---|
protected BrokeredIdentityContext |
OIDCIdentityProvider.extractIdentity(AccessTokenResponse tokenResponse,
String accessToken,
JsonWebToken idToken) |
Modifier and Type | Method and Description |
---|---|
static Object |
AbstractClaimMapper.getClaimValue(JsonWebToken token,
String claim) |
Modifier and Type | Method and Description |
---|---|
JsonWebToken |
TokenVerificationException.getToken() |
Constructor and Description |
---|
TokenNotActiveException(JsonWebToken token) |
TokenNotActiveException(JsonWebToken token,
String message) |
TokenNotActiveException(JsonWebToken token,
String message,
Throwable cause) |
TokenNotActiveException(JsonWebToken token,
Throwable cause) |
TokenSignatureInvalidException(JsonWebToken token) |
TokenSignatureInvalidException(JsonWebToken token,
String message) |
TokenSignatureInvalidException(JsonWebToken token,
String message,
Throwable cause) |
TokenSignatureInvalidException(JsonWebToken token,
Throwable cause) |
TokenVerificationException(JsonWebToken token) |
TokenVerificationException(JsonWebToken token,
String message) |
TokenVerificationException(JsonWebToken token,
String message,
Throwable cause) |
TokenVerificationException(JsonWebToken token,
Throwable cause) |
Modifier and Type | Method and Description |
---|---|
boolean |
TokenManager.NotBeforeCheck.test(JsonWebToken t) |
Modifier and Type | Class and Description |
---|---|
class |
CIBAAuthenticationRequest
Represents an authentication request sent by a consumption device (CD).
|
Modifier and Type | Class and Description |
---|---|
class |
AccessToken |
class |
IDToken |
class |
LogoutToken |
class |
RefreshToken |
Modifier and Type | Method and Description |
---|---|
JsonWebToken |
JsonWebToken.addAudience(String audience) |
JsonWebToken |
JsonWebToken.audience(String... audience) |
JsonWebToken |
JsonWebToken.exp(Long exp) |
JsonWebToken |
JsonWebToken.expiration(int expiration)
Deprecated.
int will overflow with values after 2038. Use
exp(Long) instead. |
JsonWebToken |
JsonWebToken.iat(Long iat) |
JsonWebToken |
JsonWebToken.id(String id) |
JsonWebToken |
JsonWebToken.issuedAt(int issuedAt)
Deprecated.
int will overflow with values after 2038. Use
iat(Long) ()} instead. |
JsonWebToken |
JsonWebToken.issuedFor(String issuedFor) |
JsonWebToken |
JsonWebToken.issuedNow()
Set issuedAt to the current time
|
JsonWebToken |
JsonWebToken.issuer(String issuer) |
JsonWebToken |
JsonWebToken.nbf(Long nbf) |
JsonWebToken |
JsonWebToken.notBefore(int notBefore)
Deprecated.
int will overflow with values after 2038. Use
nbf(Long) instead. |
JsonWebToken |
JsonWebToken.subject(String subject) |
JsonWebToken |
JsonWebToken.type(String type) |
Modifier and Type | Class and Description |
---|---|
class |
DockerResponseToken
* {
"iss": "auth.docker.com",
"sub": "jlhawn",
"aud": "registry.docker.com",
"exp": 1415387315,
"nbf": 1415387015,
"iat": 1415387015,
"jti": "tYJCO1c6cnyy7kAn0c7rKPgbV1H1bFws",
"access": [
{
"type": "repository",
"name": "samalba/my-app",
"actions": [
"push"
]
}
]
}
|
Modifier and Type | Class and Description |
---|---|
class |
PermissionTicketToken |
Modifier and Type | Class and Description |
---|---|
class |
TokenMetadataRepresentation |
Modifier and Type | Method and Description |
---|---|
default JsonWebToken |
ClientCRUDContext.getToken()
returns
JsonWebToken of the token accompanied with the request to register/read/update/unregister client |
Constructor and Description |
---|
DynamicClientRegisterContext(ClientRegistrationContext context,
JsonWebToken token,
RealmModel realm) |
DynamicClientRegisteredContext(ClientRegistrationContext context,
ClientModel registeredClient,
JsonWebToken token,
RealmModel realm) |
DynamicClientUnregisterContext(KeycloakSession session,
ClientModel targetClient,
JsonWebToken token,
RealmModel realm) |
DynamicClientUpdateContext(ClientRegistrationContext context,
ClientModel proposedClientRepresentation,
JsonWebToken token,
RealmModel realm) |
DynamicClientUpdatedContext(KeycloakSession session,
ClientModel updatedClient,
JsonWebToken token,
RealmModel realm) |
DynamicClientViewContext(KeycloakSession session,
ClientModel targetClient,
JsonWebToken token,
RealmModel realm) |
Modifier and Type | Class and Description |
---|---|
class |
InitialAccessToken |
class |
RegistrationAccessToken |
Modifier and Type | Method and Description |
---|---|
JsonWebToken |
ClientRegistrationTokenUtils.TokenVerification.getJwt() |
JsonWebToken |
ClientRegistrationAuth.getJwt() |
Modifier and Type | Method and Description |
---|---|
static ClientRegistrationTokenUtils.TokenVerification |
ClientRegistrationTokenUtils.TokenVerification.success(String kid,
JsonWebToken jwt) |
Modifier and Type | Class and Description |
---|---|
class |
IdentityCookieToken |
Modifier and Type | Method and Description |
---|---|
static <T extends JsonWebToken> |
LoginActionsServiceChecks.checkIsClientValid(T token,
ActionTokenContext<T> context)
Verifies whether the client denoted by client ID in token's
iss (issuedFor )
field both exists and is enabled. |
static <T extends JsonWebToken & ActionTokenKeyModel> |
LoginActionsServiceChecks.checkIsUserValid(T token,
ActionTokenContext<T> context)
Verifies whether the user given by ID both exists in the current realm.
|
static <T extends JsonWebToken> |
LoginActionsServiceChecks.checkNotLoggedInYet(ActionTokenContext<T> context,
AuthenticationSessionModel authSessionFromCookie,
String authSessionId)
Verifies that the authentication session has not yet been converted to user session, in other words
that the user has not yet completed authentication and logged in.
|
static <T extends JsonWebToken & ActionTokenKeyModel> |
LoginActionsServiceChecks.checkTokenWasNotUsedYet(T token,
ActionTokenContext<T> context) |
static <T extends JsonWebToken> |
LoginActionsServiceChecks.doesAuthenticationSessionFromCookieMatchOneFromToken(ActionTokenContext<T> context,
AuthenticationSessionModel authSessionFromCookie,
String authSessionCompoundIdFromToken)
This check verifies that current authentication session is consistent with the one specified in token.
|
protected <T extends JsonWebToken & ActionTokenKeyModel> |
LoginActionsService.handleActionToken(String tokenString,
String execution,
String clientId,
String tabId) |
Modifier and Type | Method and Description |
---|---|
boolean |
LoginActionsServiceChecks.AuthenticationSessionUserIdMatchesOneFromToken.test(JsonWebToken t) |
boolean |
LoginActionsServiceChecks.IsActionRequired.test(JsonWebToken t) |
boolean |
LoginActionsServiceChecks.IsRedirectValid.test(JsonWebToken t) |
Modifier and Type | Method and Description |
---|---|
protected BrokeredIdentityContext |
GitLabIdentityProvider.extractIdentity(AccessTokenResponse tokenResponse,
String accessToken,
JsonWebToken idToken) |
Modifier and Type | Method and Description |
---|---|
protected JsonWebToken |
GoogleIdentityProvider.validateToken(String encodedToken,
boolean ignoreAudience) |
Modifier and Type | Method and Description |
---|---|
static <T extends JsonWebToken> |
TokenUtil.jweDirectVerifyAndDecode(Key aesKey,
Key hmacKey,
String jweStr,
Class<T> expectedClass) |
Modifier and Type | Method and Description |
---|---|
static String |
TokenUtil.jweDirectEncode(Key aesKey,
Key hmacKey,
JsonWebToken jwt) |
Copyright © 2021 JBoss by Red Hat. All rights reserved.