java.lang.Object
- org.keycloak.adapters.rotation.AdapterTokenVerifier

public class AdapterTokenVerifier
extends Object

Author:: Marek Posolda

Nested Class Summary

Nested Classes
Modifier and Type Class Description

static class AdapterTokenVerifier.VerifiedTokens

Constructor Summary

Constructors
Constructor Description

AdapterTokenVerifier()

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method	Description
`static <T extends JsonWebToken> TokenVerifier<T>`	`createVerifier(String tokenString, KeycloakDeployment deployment, boolean withDefaultChecks, Class<T> tokenClass)`	Creates verifier, initializes it from the KeycloakDeployment and adds the publicKey and some default basic checks (activeness and tokenType).
`static AccessToken`	`verifyToken(String tokenString, KeycloakDeployment deployment)`	Verifies bearer token.
`static AdapterTokenVerifier.VerifiedTokens`	`verifyTokens(String accessTokenString, String idTokenString, KeycloakDeployment deployment)`	Verify access token and ID token.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- AdapterTokenVerifier
```
public AdapterTokenVerifier()
```

Method Detail

verifyToken
```
public static AccessToken verifyToken(String tokenString,
                                      KeycloakDeployment deployment)
                               throws org.keycloak.common.VerificationException
```
Verifies bearer token. Typically called when bearer token (access token) is sent to the service, which wants to verify it. Hence it also checks the audience in the token.

Parameters:

tokenString -

deployment -

Returns:

Throws:

org.keycloak.common.VerificationException

verifyTokens

public static AdapterTokenVerifier.VerifiedTokens verifyTokens(String accessTokenString,
                                                               String idTokenString,
                                                               KeycloakDeployment deployment)
                                                        throws org.keycloak.common.VerificationException

Verify access token and ID token. Typically called after successful tokenResponse is received from Keycloak

Parameters:: accessTokenString -; idTokenString -; deployment -
Returns:: verified and parsed accessToken and idToken
Throws:: org.keycloak.common.VerificationException

createVerifier

public static <T extends JsonWebToken> TokenVerifier<T> createVerifier(String tokenString,
                                                                       KeycloakDeployment deployment,
                                                                       boolean withDefaultChecks,
                                                                       Class<T> tokenClass)
                                                                throws org.keycloak.common.VerificationException

Creates verifier, initializes it from the KeycloakDeployment and adds the publicKey and some default basic checks (activeness and tokenType). Useful if caller wants to add/remove/update some checks

Type Parameters:: T -
Parameters:: tokenString -; deployment -; withDefaultChecks -; tokenClass -
Returns:: tokenVerifier
Throws:: org.keycloak.common.VerificationException

Class AdapterTokenVerifier

Nested Class Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

AdapterTokenVerifier

Method Detail

verifyToken

verifyTokens

createVerifier