Package org.keycloak.authentication.authenticators.client

Class FederatedJWTClientValidator

java.lang.Object

org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

org.keycloak.authentication.authenticators.client.FederatedJWTClientValidator

public class FederatedJWTClientValidator
extends AbstractJWTClientValidator

Nested Class Summary

Nested classes/interfaces inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

AbstractJWTClientValidator.SignatureValidator

Field Summary

Fields inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

client, clientAssertionState, clientAuthenticatorProviderId, context, currentTime, expectedClientAssertionType, realm, signatureValidator

Constructor Summary

Constructors

Constructor	Description
FederatedJWTClientValidator(ClientAuthenticationFlowContext context, AbstractJWTClientValidator.SignatureValidator signatureValidator, String expectedTokenIssuer, int allowedClockSkew, boolean reusePermitted)

Method Summary

Modifier and Type	Method	Description
protected int	getAllowedClockSkew()
protected List<String>	getExpectedAudiences()
protected String	getExpectedSignatureAlgorithm()
protected String	getExpectedTokenIssuer()
protected int	getMaximumExpirationTime()
protected boolean	isMultipleAudienceAllowed()
protected boolean	isReusePermitted()
void	setExpectedClientAssertionType(String clientAssertionType)

Methods inherited from class org.keycloak.authentication.authenticators.client.AbstractJWTClientValidator

failure, failure, failure, getClient, getClientAssertion, getContext, getJws, getState, validate, validateTokenActive

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

FederatedJWTClientValidator

public FederatedJWTClientValidator(ClientAuthenticationFlowContext context,
 AbstractJWTClientValidator.SignatureValidator signatureValidator,
 String expectedTokenIssuer,
 int allowedClockSkew,
 boolean reusePermitted)
                            throws Exception

Throws:

Exception

Method Details

getExpectedTokenIssuer

protected String getExpectedTokenIssuer()

Specified by:

getExpectedTokenIssuer in class AbstractJWTClientValidator

getExpectedAudiences

protected List<String> getExpectedAudiences()

Specified by:

getExpectedAudiences in class AbstractJWTClientValidator

isMultipleAudienceAllowed

protected boolean isMultipleAudienceAllowed()

Specified by:

isMultipleAudienceAllowed in class AbstractJWTClientValidator

getAllowedClockSkew

protected int getAllowedClockSkew()

Specified by:

getAllowedClockSkew in class AbstractJWTClientValidator

getMaximumExpirationTime

protected int getMaximumExpirationTime()

Specified by:

getMaximumExpirationTime in class AbstractJWTClientValidator

isReusePermitted

protected boolean isReusePermitted()

Specified by:

isReusePermitted in class AbstractJWTClientValidator

getExpectedSignatureAlgorithm

protected String getExpectedSignatureAlgorithm()

Specified by:

getExpectedSignatureAlgorithm in class AbstractJWTClientValidator

setExpectedClientAssertionType

public void setExpectedClientAssertionType(String clientAssertionType)