Package org.keycloak.broker.provider
Interface JWTAuthorizationGrantProvider<C extends IdentityProviderModel>
- All Superinterfaces:
IdentityProvider<C>,Provider
- All Known Implementing Classes:
GitLabIdentityProvider,GoogleIdentityProvider,JWTAuthorizationGrantIdentityProvider,KeycloakOIDCIdentityProvider,LinkedInOIDCIdentityProvider,OIDCIdentityProvider
public interface JWTAuthorizationGrantProvider<C extends IdentityProviderModel>
extends IdentityProvider<C>
-
Method Summary
Modifier and TypeMethodDescriptionintintbooleanMethods inherited from interface org.keycloak.broker.provider.IdentityProvider
export, getConfig, isMapperSupported, reloadKeys
-
Method Details
-
validateAuthorizationGrantAssertion
BrokeredIdentityContext validateAuthorizationGrantAssertion(JWTAuthorizationGrantValidationContext assertion) throws IdentityBrokerException - Throws:
IdentityBrokerException
-
getAllowedClockSkew
int getAllowedClockSkew() -
isAssertionReuseAllowed
boolean isAssertionReuseAllowed() -
getAllowedAudienceForJWTGrant
- Returns:
- list of allowed audience values. JWT assertion is considered valid if it's audience is one of the audiences returned from this method
-
getMaxAllowedExpiration
int getMaxAllowedExpiration() -
getAssertionSignatureAlg
String getAssertionSignatureAlg()
-