org.keycloak.protocol.docker

Class DockerKeyIdentifier

java.lang.Object

org.keycloak.protocol.docker.DockerKeyIdentifier

public class DockerKeyIdentifier
extends Object

The “kid” field has to be in a libtrust fingerprint compatible format. Such a format can be generated by following steps: 1) Take the DER encoded public key which the JWT token was signed against. 2) Create a SHA256 hash out of it and truncate to 240bits. 3) Split the result into 12 base32 encoded groups with : as delimiter. Ex: "kid": "PYYO:TEWU:V7JH:26JV:AQTZ:LJC3:SXVJ:XGHA:34F2:2LAQ:ZRMK:Z7Q6"

See Also:

https://docs.docker.com/registry/spec/auth/jwt/, https://github.com/docker/libtrust/blob/master/key.go#L24

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	DockerKeyIdentifier.DelimitingCollector

Constructor Summary

Constructors

Constructor and Description
DockerKeyIdentifier(Key key)

Method Summary

Modifier and Type	Method and Description
boolean	equals(Object o)
int	hashCode()
String	toString()

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Constructor Detail

DockerKeyIdentifier

public DockerKeyIdentifier(Key key)
                    throws InstantiationException

Throws:

InstantiationException

Method Detail

toString

public String toString()

Overrides:

toString in class Object

equals

public boolean equals(Object o)

Overrides:

equals in class Object

hashCode

public int hashCode()

Overrides:

hashCode in class Object