Package com.nimbusds.openid.connect.sdk.id

Class SectorIDURIValidator

  • public class SectorIDURIValidator
extends Object
    Sector identifier URI validator.

    Related specifications:

    • OpenID Connect Core 1.0, section 8.1.
    • OpenID Connect Dynamic Client Registration 1.0, section 5.
    • OpenID Connect CIBA Flow - Core 1.0, section 4.

    • Constructor Detail

      • SectorIDURIValidator

        public SectorIDURIValidator​(com.nimbusds.jose.util.ResourceRetriever resourceRetriever)
        Creates a new sector ID URI validator.
        Parameters:
        resourceRetriever - The URL resource retriever to use. Must not be null.

    • Method Detail

      • getResourceRetriever

        public com.nimbusds.jose.util.ResourceRetriever getResourceRetriever()
        Returns the URL resource retriever.
        Returns:
        The resource retriever.

      • validate

        public void validate​(URI sectorURI,
                     Set<URI> urisToValidate)
              throws GeneralException
        Validates the specified URIs for being present in a sector ID document.
        Parameters:
        sectorURI - The sector ID URI. Must not be null.
        urisToValidate - The client URIs to check for being present in the sector ID JSON document. Must not be null.
        Throws:
        GeneralException - If validation failed.

      • collectURIsForValidation

        public static Set<URIcollectURIsForValidation​(OIDCClientMetadata clientMetadata)
        Collects the client URIs for sector ID validation.

        For the OAuth 2.0 authorisation code and implicit grants: redirect_uris.

        For the OAuth 2.0 CIBA grant: jwks_uri for the poll and ping token delivery modes, backchannel_client_notification_endpoint for the push mode.

        Parameters:
        clientMetadata - The client metadata. Must not be null.
        Returns:
        The URIs for sector ID validation, empty set if none.