Package com.nimbusds.jose.jwk

Source Code of com.nimbusds.jose.jwk.JWKSet

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
package com.nimbusds.jose.jwk;


import java.text.ParseException;
import java.util.HashMap;
import java.util.LinkedList;
import java.util.List;
import java.util.Map;

import net.minidev.json.JSONArray;
import net.minidev.json.JSONObject;

import com.nimbusds.jose.util.JSONObjectUtils;


/**
* JSON Web Key (JWK) set. Represented by a JSON object that contains an array
* of {@link JWK JSON Web Keys} (JWKs) as the value of its "keys" member.
* Additional (custom) members of the JWK Set JSON object are also supported.
*
* <p>Example JSON Web Key (JWK) set:
*
* <pre>
* {
*   "keys" : [ { "kty" : "EC",
*                "crv" : "P-256",
*                "x"   : "MKBCTNIcKUSDii11ySs3526iDZ8AiTo7Tu6KPAqv7D4",
*                "y"   : "4Etl6SRW2YiLUrN5vfvVHuhp7x8PxltmWWlbbM4IFyM",
*                "use" : "enc",
*                "kid" : "1" },
*
*              { "kty" : "RSA",
*                "n"   : "0vx7agoebGcQSuuPiLJXZptN9nndrQmbXEps2aiAFbWhM78LhWx
*                         4cbbfAAtVT86zwu1RK7aPFFxuhDR1L6tSoc_BJECPebWKRXjBZCiFV4n3oknjhMs
*                         tn64tZ_2W-5JsGY4Hc5n9yBXArwl93lqt7_RN5w6Cf0h4QyQ5v-65YGjQR0_FDW2
*                         QvzqY368QQMicAtaSqzs8KJZgnYb9c7d0zgdAZHzu6qMQvRL5hajrn1n91CbOpbI
*                         SD08qNLyrdkt-bFTWhAI4vMQFh6WeZu0fM4lFd2NcRwr3XPksINHaQ-G_xBniIqb
*                         w0Ls1jF44-csFCur-kEgU8awapJzKnqDKgw",
*                "e"   : "AQAB",
*                "alg" : "RS256",
*                "kid" : "2011-04-29" } ]
* }
* </pre>
*
* @author Vladimir Dzhuvinov
* @version $version$ (2013-09-20)
*/
public class JWKSet {


  /**
   * The MIME type of JWK set objects:
   * {@code application/jwk-set+json; charset=UTF-8}
   */
  public static final String MIME_TYPE = "application/jwk-set+json; charset=UTF-8";


  /**
   * The JWK list.
   */
  private final List<JWK> keys = new LinkedList<JWK>();


  /**
   * Additional custom members.
   */
  private final Map<String,Object> customMembers = new HashMap<String,Object>();


  /**
   * Creates a new empty JSON Web Key (JWK) set.
   */
  public JWKSet() {

    // Nothing to do
  }


  /**
   * Creates a new JSON Web Key (JWK) set with a single key.
   *
   * @param key The JWK. Must not be {@code null}.
   */
  public JWKSet(final JWK key) {

    if (key == null) {
      throw new IllegalArgumentException("The JWK must not be null");
    }

    keys.add(key);
  }


  /**
   * Creates a new JSON Web Key (JWK) set with the specified keys.
   *
   * @param keys The JWK list. Must not be {@code null}.
   */
  public JWKSet(final List<JWK> keys) {

    if (keys == null) {
      throw new IllegalArgumentException("The JWK list must not be null");
    }

    this.keys.addAll(keys);
  }


  /**
   * Creates a new JSON Web Key (JWK) set with the specified keys and
   * additional custom members.
   *
   * @param keys          The JWK list. Must not be {@code null}.
   * @param customMembers The additional custom members. Must not be
   *                      {@code null}.
   */
  public JWKSet(final List<JWK> keys, final Map<String,Object> customMembers) {

    if (keys == null) {
      throw new IllegalArgumentException("The JWK list must not be null");
    }

    this.keys.addAll(keys);

    this.customMembers.putAll(customMembers);
  }


  /**
   * Gets the keys (ordered) of this JSON Web Key (JWK) set.
   *
   * @return The keys, empty list if none.
   */
  public List<JWK> getKeys() {

    return keys;
  }

 
  /**
   * Gets the key from this JSON Web Key (JWK) set as identified by its
   * Key ID (kid) member.
   *
   * <p>If more than one key exists in the JWK Set with the same
   * identifier, this function returns only the first one in the set.
   *
   * @return The key identified by {@code kid} or {@code null} if no key
   *         exists.
   */
  public JWK getKeyByKeyId(String kid) {
   
    for (JWK key : getKeys()) {
         
            if (key.getKeyID() != null && key.getKeyID().equals(kid)) {
              return key;
            }
          }
   
    // no key found
    return null;
  }


  /**
   * Gets the additional custom members of this JSON Web Key (JWK) set.
   *
   * @return The additional custom members, empty map if none.
   */
  public Map<String,Object> getAdditionalMembers() {

    return customMembers;
  }


  /**
   * Returns a copy of this JSON Web Key (JWK) set with all private keys
   * and parameters removed.
   *
   * @return A copy of this JWK set with all private keys and parameters
   *         removed.
   */
  public JWKSet toPublicJWKSet() {

    List<JWK> publicKeyList = new LinkedList<JWK>();

    for (JWK key: keys) {

      JWK publicKey = key.toPublicJWK();

      if (publicKey != null) {
        publicKeyList.add(publicKey);
      }
    }

    return new JWKSet(publicKeyList, customMembers);
  }


  /**
   * Returns the JSON object representation of this JSON Web Key (JWK)
   * set. Private keys and parameters will be omitted from the output.
   * Use the alternative {@link #toJSONObject(boolean)} method if you
   * wish to include them.
   *
   * @return The JSON object representation.
   */
  public JSONObject toJSONObject() {

    return toJSONObject(true);
  }


  /**
   * Returns the JSON object representation of this JSON Web Key (JWK)
   * set.
   *
   * @param publicKeysOnly Controls the inclusion of private keys and
   *                       parameters into the output JWK members. If
   *                       {@code true} private keys and parameters will
   *                       be omitted. If {@code false} all available key
   *                       parameters will be included.
   *
   * @return The JSON object representation.
   */
  public JSONObject toJSONObject(final boolean publicKeysOnly) {

    JSONObject o = new JSONObject(customMembers);

    JSONArray a = new JSONArray();

    for (JWK key: keys) {

      if (publicKeysOnly) {

        // Try to get public key, then serialise
        JWK publicKey = key.toPublicJWK();

        if (publicKey != null) {
          a.add(publicKey.toJSONObject());
        }
      } else {

        a.add(key.toJSONObject());
      }
    }

    o.put("keys", a);

    return o;
  }


  /**
   * Returns the JSON object string representation of this JSON Web Key
   * (JWK) set.
   *
   * @return The JSON object string representation.
   */
  @Override
  public String toString() {

    return toJSONObject().toString();
  }


  /**
   * Parses the specified string representing a JSON Web Key (JWK) set.
   *
   * @param s The string to parse. Must not be {@code null}.
   *
   * @return The JSON Web Key (JWK) set.
   *
   * @throws ParseException If the string couldn't be parsed to a valid
   *                        JSON Web Key (JWK) set.
   */
  public static JWKSet parse(final String s)
    throws ParseException {

    return parse(JSONObjectUtils.parseJSONObject(s));
  }


  /**
   * Parses the specified JSON object representing a JSON Web Key (JWK)
   * set.
   *
   * @param json The JSON object to parse. Must not be {@code null}.
   *
   * @return The JSON Web Key (JWK) set.
   *
   * @throws ParseException If the string couldn't be parsed to a valid
   *                        JSON Web Key (JWK) set.
   */
  public static JWKSet parse(final JSONObject json)
    throws ParseException {

    JSONArray keyArray = JSONObjectUtils.getJSONArray(json, "keys");

    List<JWK> keys = new LinkedList<JWK>();

    for (int i=0; i < keyArray.size(); i++) {

      if (! (keyArray.get(i) instanceof JSONObject)) {
        throw new ParseException("The \"keys\" JSON array must contain JSON objects only", 0);
      }

      JSONObject keyJSON = (JSONObject)keyArray.get(i);

      try {
        keys.add(JWK.parse(keyJSON));

      } catch (ParseException e) {

        throw new ParseException("Invalid JWK at position " + i + ": " + e.getMessage(), 0);
      }
    }

    // Parse additional custom members
    JWKSet jwkSet = new JWKSet(keys);

    for (Map.Entry<String,Object> entry: json.entrySet()) {

      if (entry.getKey() == null || entry.getKey().equals("keys")) {
        continue;
      }

      jwkSet.getAdditionalMembers().put(entry.getKey(), entry.getValue());
    }

    return jwkSet;
  }
}
TOP

Related Classes of com.nimbusds.jose.jwk.JWKSet

  • com.nimbusds.oauth2.sdk.client.ClientMetadataTest
  • net.minidev.json.JSONArray
  • net.minidev.json.JSONObject
  • org.mitre.jose.TestJWKSetKeyStore
  • org.mitre.jwt.encryption.service.impl.TestDefaultJwtEncryptionAndDecryptionService
  • org.mitre.jwt.signer.service.impl.JWKSetCacheService$JWKSetEncryptorFetcher
  • org.mitre.jwt.signer.service.impl.JWKSetCacheService$JWKSetVerifierFetcher
  • org.mitre.openid.connect.view.JwkKeyListView
  • java.text.ParseException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.