Examples of JWTID

Examples of com.nimbusds.oauth2.sdk.id.JWTID

388
389
390
391
392
393
394
395
396
397
398
399
400
401
    Date iat = null;

    if (jsonObject.containsKey("iat"))
      iat = DateUtils.fromSecondsSinceEpoch(JSONObjectUtils.getLong(jsonObject, "iat"));

    JWTID jti = null;

    if (jsonObject.containsKey("jti"))
      jti = new JWTID(JSONObjectUtils.getString(jsonObject, "jti"));


    // Check client ID

    if (! iss.getValue().equals(sub.getValue()))
View Full Code Here

Examples of com.nimbusds.oauth2.sdk.id.JWTID

39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
    ClientID clientID = new ClientID("http://client.com");
    Audience audience = new Audience("http://idp.com");
    Date exp = DateUtils.fromSecondsSinceEpoch(new Date().getTime() / 1000 + 3600);
    Date nbf = DateUtils.fromSecondsSinceEpoch(new Date().getTime() / 1000);
    Date iat = DateUtils.fromSecondsSinceEpoch(new Date().getTime() / 1000);
    JWTID jti = new JWTID();

    JWTAuthenticationClaimsSet assertion = new JWTAuthenticationClaimsSet(clientID, audience, exp, nbf, iat, jti);

    System.out.println("Client secret JWT claims set: " + assertion.toJSONObject());


    JWSHeader jwsHeader = new JWSHeader(JWSAlgorithm.HS256);

    SignedJWT jwt = new SignedJWT(jwsHeader, assertion.toJWTClaimsSet());

    Secret secret = new Secret();

    MACSigner signer = new MACSigner(secret.getValueBytes());

    jwt.sign(signer);

    ClientSecretJWT clientSecretJWT = new ClientSecretJWT(jwt);

    Map<String,String> params = clientSecretJWT.toParameters();
    params.put("client_id", clientID.getValue()); // add optional client_id to test parser

    System.out.println("Client secret JWT: " + params);

    clientSecretJWT = ClientSecretJWT.parse(params);

    assertEquals("http://client.com", clientSecretJWT.getClientID().getValue());

    jwt = clientSecretJWT.getClientAssertion();

    assertTrue(jwt.getState().equals(JWSObject.State.SIGNED));

    MACVerifier verifier = new MACVerifier(secret.getValueBytes());

    boolean verified = jwt.verify(verifier);

    assertTrue(verified);

    assertion = clientSecretJWT.getJWTAuthenticationClaimsSet();

    assertEquals(clientID.getValue(), assertion.getClientID().getValue());
    assertEquals(clientID.getValue(), assertion.getIssuer().getValue());
    assertEquals(clientID.getValue(), assertion.getSubject().getValue());
    assertEquals(audience.getValue(), assertion.getAudience().getValue());
    assertEquals(exp.getTime(), assertion.getExpirationTime().getTime());
    assertEquals(nbf.getTime(), assertion.getNotBeforeTime().getTime());
    assertEquals(iat.getTime(), assertion.getIssueTime().getTime());
    assertEquals(jti.getValue(), assertion.getJWTID().getValue());

    System.out.println("Client secret JWT expiration: " + assertion.getExpirationTime());
    System.out.println("Client secret JWT issue date: " + assertion.getIssueTime());
    System.out.println("Client secret JWT not before: " + assertion.getNotBeforeTime());
  }
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.