Package org.keycloak.authentication.authenticators.client

Class FederatedJWTClientValidator

java.lang.Object

org.keycloak.authentication.authenticators.client.AbstractBaseJWTValidator

org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

org.keycloak.authentication.authenticators.client.FederatedJWTClientValidator

public class FederatedJWTClientValidator
extends AbstractJWTClientValidator

Nested Class Summary

Nested classes/interfaces inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

AbstractJWTClientValidator.SignatureValidator

Field Summary

Fields inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

clientAuthenticatorProviderId, context, expectedClientAssertionType, realm, signatureValidator

Fields inherited from class org.keycloak.authentication.authenticators.client.AbstractBaseJWTValidator

clientAssertionState, currentTime, session

Constructor Summary

Constructors

Constructor	Description
FederatedJWTClientValidator(ClientAuthenticationFlowContext context, AbstractJWTClientValidator.SignatureValidator signatureValidator, String expectedTokenIssuer, int allowedClockSkew, boolean reusePermitted)

Method Summary

Modifier and Type	Method	Description
protected int	getAllowedClockSkew()
protected List<String>	getExpectedAudiences()
protected String	getExpectedSignatureAlgorithm()
protected String	getExpectedTokenIssuer()
protected int	getMaximumExpirationTime()
protected boolean	isMultipleAudienceAllowed()
protected boolean	isReusePermitted()
void	setExpectedClientAssertionType(String clientAssertionType)

Methods inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

failure, failure, failure, failureCallback, getClient, getContext, validate

Methods inherited from class org.keycloak.authentication.authenticators.client.AbstractBaseJWTValidator

getClientAssertion, getJws, getState, validateSignatureAlgorithm, validateTokenActive, validateTokenAudience, validateTokenReuse

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

FederatedJWTClientValidator

public FederatedJWTClientValidator(ClientAuthenticationFlowContext context,
 AbstractJWTClientValidator.SignatureValidator signatureValidator,
 String expectedTokenIssuer,
 int allowedClockSkew,
 boolean reusePermitted)
                            throws Exception

Throws:

Exception

Method Details

getExpectedTokenIssuer

protected String getExpectedTokenIssuer()

Specified by:

getExpectedTokenIssuer in class AbstractJWTClientValidator

getExpectedAudiences

protected List<String> getExpectedAudiences()

Specified by:

getExpectedAudiences in class AbstractJWTClientValidator

isMultipleAudienceAllowed

protected boolean isMultipleAudienceAllowed()

Specified by:

isMultipleAudienceAllowed in class AbstractJWTClientValidator

getAllowedClockSkew

protected int getAllowedClockSkew()

Specified by:

getAllowedClockSkew in class AbstractJWTClientValidator

getMaximumExpirationTime

protected int getMaximumExpirationTime()

Specified by:

getMaximumExpirationTime in class AbstractJWTClientValidator

isReusePermitted

protected boolean isReusePermitted()

Specified by:

isReusePermitted in class AbstractJWTClientValidator

getExpectedSignatureAlgorithm

protected String getExpectedSignatureAlgorithm()

Specified by:

getExpectedSignatureAlgorithm in class AbstractJWTClientValidator

setExpectedClientAssertionType

public void setExpectedClientAssertionType(String clientAssertionType)