@ThreadSafe public class AccessTokenValidator extends Object
at_hash
ID token claim. Required
in the implicit flow and the hybrid flow where the access token is returned
at the authorisation endpoint.
Related specifications:
Constructor and Description |
---|
AccessTokenValidator() |
Modifier and Type | Method and Description |
---|---|
static void |
validate(AccessToken accessToken,
com.nimbusds.jose.JWSAlgorithm jwsAlgorithm,
AccessTokenHash accessTokenHash)
Validates the specified access token.
|
public AccessTokenValidator()
public static void validate(AccessToken accessToken, com.nimbusds.jose.JWSAlgorithm jwsAlgorithm, AccessTokenHash accessTokenHash) throws InvalidHashException
accessToken
- The access token. Must not be null
.jwsAlgorithm
- The JWS algorithm of the ID token. Must not
be null
.accessTokenHash
- The access token hash, as set in the
at_hash
ID token claim. Must not be
null
,InvalidHashException
- If the access token doesn't match the
hash.Copyright © 2017 Connect2id Ltd.. All rights reserved.