@ThreadSafe public class AuthorizationCodeValidator extends Object
c_hash
ID token claim.
Required in the hybrid flow where the authorisation code is returned
together with an ID token at the authorisation endpoint.
Related specifications:
Constructor | Description |
---|---|
AuthorizationCodeValidator() |
Modifier and Type | Method | Description |
---|---|---|
static void |
validate(AuthorizationCode code,
com.nimbusds.jose.JWSAlgorithm jwsAlgorithm,
CodeHash codeHash) |
Validates the specified authorisation code.
|
public AuthorizationCodeValidator()
public static void validate(AuthorizationCode code, com.nimbusds.jose.JWSAlgorithm jwsAlgorithm, CodeHash codeHash) throws InvalidHashException
code
- The authorisation code. Must not be
null
.jwsAlgorithm
- The JWS algorithm of the ID token. Must not
be null
.=codeHash
- The authorisation code hash, as set in the
c_hash
ID token claim. Must not be
null
.InvalidHashException
- If the authorisation code doesn't match
the hash.Copyright © 2018 Connect2id Ltd.. All rights reserved.