JWTAuthorizationGrantValidator (Keycloak Docs Distribution 999.0.0-SNAPSHOT API)

All Superinterfaces:: JWTAuthorizationGrantValidationContext

All Known Implementing Classes:: DefaultJWTAuthorizationGrantValidator, IDJWTAuthorizationGrantValidator

public interface JWTAuthorizationGrantValidator extends JWTAuthorizationGrantValidationContext

Interface for the assertion validator of JWTAuthorizationGrant

Author:: Yutaka Obuchi

Method Summary

Modifier and Type

Method

Description

void

validateClient()

void

validateIssuer()

boolean

validateSignatureAlgorithm(String expectedSignatureAlg)

void

validateSubject()

boolean

validateTokenActive(int allowedClockSkew, int maxExp, boolean reusePermitted)

boolean

validateTokenAudience(List<String> expectedAudiences, boolean multipleAudienceAllowed)

Methods inherited from interface org.keycloak.protocol.oidc.JWTAuthorizationGrantValidationContext
getAssertion, getIssuer, getJws, getJWT, getRestrictedScopes, getScopeParam, getSubject, setRestrictedScopes

Method Details
- validateClient
  
  void validateClient()
- validateIssuer
  
  void validateIssuer()
- validateSubject
  
  void validateSubject()
- validateTokenActive
  
  boolean validateTokenActive(int allowedClockSkew, int maxExp, boolean reusePermitted)
- validateSignatureAlgorithm
  
  boolean validateSignatureAlgorithm(String expectedSignatureAlg)
- validateTokenAudience
  
  boolean validateTokenAudience(List<String> expectedAudiences, boolean multipleAudienceAllowed)