public class JWTAuthenticationClaimsSet extends JWTAssertionDetails
Used for client secret JWT
and
private key JWT
authentication at the Token endpoint.
Example client authentication claims set:
{ "iss" : "http://client.example.com", "sub" : "http://client.example.com", "aud" : [ "http://idp.example.com/token" ], "jti" : "d396036d-c4d9-40d8-8e98-f7e8327002d9", "exp" : 1311281970, "iat" : 1311280970 }
Related specifications:
Constructor and Description |
---|
JWTAuthenticationClaimsSet(ClientID clientID,
Audience aud)
Creates a new JWT client authentication claims set.
|
JWTAuthenticationClaimsSet(ClientID clientID,
List<Audience> aud,
Date exp,
Date nbf,
Date iat,
JWTID jti)
Creates a new JWT client authentication claims set.
|
Modifier and Type | Method and Description |
---|---|
ClientID |
getClientID()
Gets the client identifier.
|
static JWTAuthenticationClaimsSet |
parse(net.minidev.json.JSONObject jsonObject)
Parses a JWT client authentication claims set from the specified
JSON object.
|
static JWTAuthenticationClaimsSet |
parse(com.nimbusds.jwt.JWTClaimsSet jwtClaimsSet)
Parses a JWT client authentication claims set from the specified JWT
claims set.
|
getCustomClaims, getJWTID, getNotBeforeTime, getReservedClaimsNames, toJSONObject, toJWTClaimsSet
getAudience, getExpirationTime, getID, getIssuer, getIssueTime, getSubject
public JWTAuthenticationClaimsSet(ClientID clientID, Audience aud)
clientID
- The client identifier. Used to specify the issuer
and the subject. Must not be null
.aud
- The audience identifier, typically the URI of the
authorisation server's Token endpoint. Must not be
null
.public JWTAuthenticationClaimsSet(ClientID clientID, List<Audience> aud, Date exp, Date nbf, Date iat, JWTID jti)
clientID
- The client identifier. Used to specify the issuer
and the subject. Must not be null
.aud
- The audience, typically including the URI of the
authorisation server's Token endpoint. Must not be
null
.exp
- The expiration time. Must not be null
.nbf
- The time before which the token must not be
accepted for processing, null
if not
specified.iat
- The time at which the token was issued,
null
if not specified.jti
- Unique identifier for the JWT, null
if
not specified.public ClientID getClientID()
iss
and
sub
claims.public static JWTAuthenticationClaimsSet parse(net.minidev.json.JSONObject jsonObject) throws ParseException
jsonObject
- The JSON object. Must not be null
.ParseException
- If the JSON object couldn't be parsed to a
client authentication claims set.public static JWTAuthenticationClaimsSet parse(com.nimbusds.jwt.JWTClaimsSet jwtClaimsSet) throws ParseException
jwtClaimsSet
- The JWT claims set. Must not be null
.ParseException
- If the JWT claims set couldn't be parsed to a
client authentication claims set.Copyright © 2018 Connect2id Ltd.. All rights reserved.