Examples of com.nimbusds.jose.JWSHeader$Builder

• com.nimbusds.jose.JWSHeader
  Builder for constructing JSON Web Signature (JWS) headers.

  Example use:

   JWSHeader header = new JWSHeader.Builder(JWSAlgorithm.HS256). contentType("text/plain"). customParam("exp", new Date().getTime()). build(); 

  public void testCritHeaderParamReject()
    throws Exception {

    JWSHeader header = new JWSHeader(JWSAlgorithm.RS256);
    header.setCustomParameter("exp", "2014-04-24");
    header.setCriticalHeaders(new HashSet<String>(Arrays.asList("exp")));

    JWSObject jwsObject = new JWSObject(header, PAYLOAD);

    RSASSASigner signer = new RSASSASigner(PRIVATE_KEY);

  public void testSignAndVerify()
    throws Exception {

    JWSHeader header = JWSHeader.parse(b64header);

    assertEquals("ES256 alg check", JWSAlgorithm.ES256, header.getAlgorithm());

    JWSObject jwsObject = new JWSObject(header, payload);

    assertEquals("State check", JWSObject.State.UNSIGNED, jwsObject.getState());

  public void testVerifyWithReadyVector()
    throws Exception {

    JWSHeader header = JWSHeader.parse(b64header);

    JWSVerifier verifier =  new ECDSAVerifier(new BigInteger(1, x), new BigInteger(1, y));

    boolean verified = verifier.verify(header, signable, b64sig);

  public void testPassMissingCritHeader() {

    CriticalHeaderParameterChecker checker = new CriticalHeaderParameterChecker();

    JWSHeader header = new JWSHeader(JWSAlgorithm.RS256);
    header.setKeyID("1");

    assertTrue(checker.headerPasses(header));
  }

  public void testPassIgnoredCritParams() {

    CriticalHeaderParameterChecker checker = new CriticalHeaderParameterChecker();
    checker.getIgnoredCriticalHeaders().add("exp");

    JWSHeader header = new JWSHeader(JWSAlgorithm.RS256);
    header.setKeyID("1");
    header.setCustomParameter("exp", "2014-04-24");
    header.setCriticalHeaders(new HashSet<String>(Arrays.asList("exp")));

    assertTrue(checker.headerPasses(header));
  }

  public void testReject() {

    CriticalHeaderParameterChecker checker = new CriticalHeaderParameterChecker();

    JWSHeader header = new JWSHeader(JWSAlgorithm.RS256);
    header.setKeyID("1");
    header.setCustomParameter("exp", "2014-04-24");
    header.setCriticalHeaders(new HashSet<String>(Arrays.asList("exp")));

    assertFalse(checker.headerPasses(header));
  }

  public void testSignAndVerify()
    throws Exception {

    JWSHeader header = JWSHeader.parse(b64header);

    assertEquals("HS256 alg check", JWSAlgorithm.HS256, header.getAlgorithm());
    assertEquals("JWT type check", new JOSEObjectType("JWT"), header.getType());

    JWSObject jwsObject = new JWSObject(header, payload);

    assertEquals("State check", JWSObject.State.UNSIGNED, jwsObject.getState());

    // Create HMAC signer
    JWSSigner signer = new MACSigner(sharedSecret);

    // Prepare JWS object with "Hello, world!" payload
    JWSObject jwsObject = new JWSObject(new JWSHeader(JWSAlgorithm.HS256), new Payload("Hello, world!"));

    // Apply the HMAC
    jwsObject.sign(signer);

    assertTrue(jwsObject.getState().equals(JWSObject.State.SIGNED));

  public void testSignAndVerifyWithStringSecret()
    throws Exception {

    final String stringSecret = "3eae8196ad1b";

    JWSHeader header = new JWSHeader(JWSAlgorithm.HS512);

    assertEquals("HS512 alg check", JWSAlgorithm.HS512, header.getAlgorithm());

    JWSObject jwsObject = new JWSObject(header, payload);

    assertEquals("State check", JWSObject.State.UNSIGNED, jwsObject.getState());

  public void testSignWithReadyVector()
    throws Exception {

    JWSHeader header = JWSHeader.parse(b64header);

    JWSSigner signer = new MACSigner(sharedSecret);

    Base64URL b64sigComputed = signer.sign(header, signable);