io.confluent.security.authentication.oauthbearer

Class JwtIssuer

java.lang.Object

io.confluent.security.authentication.oauthbearer.JwtIssuer

Direct Known Subclasses:

JwtIssuerJku, JwtIssuerJwks, JwtIssuerStatic

public abstract class JwtIssuer
extends Object

Constructs a new JwtConsumer instance for JsonWebSignature decoding and validation.

Constructor Summary

Constructors

Constructor and Description
JwtIssuer()

Method Summary

Modifier and Type	Method and Description
abstract Set<String>	audience() The recipient(s) for this token.
org.jose4j.jwt.consumer.JwtConsumer	createConsumer(Collection<Constraint> constraints) Creates a new JwtConsumer to process incoming JsonWebSignatures.
abstract ConstrainedVerificationKeyResolver	keyResolver(Collection<Constraint> constraints) Creates a new ConstrainedVerificationKeyResolver bound to this issuer.
abstract String	name() JsonWebSignature Issuer name.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

JwtIssuer

public JwtIssuer()

Method Detail

name

public abstract String name()

JsonWebSignature Issuer name. This should be the URL of the Authorization Server though there may be some cases where its not. RFC7519

Returns:

JsonWebSignature Issuing authority.

audience

public abstract Set<String> audience()

The recipient(s) for this token. RFC-7519 Section 4.1.3

Returns:

audience claim value.

keyResolver

public abstract ConstrainedVerificationKeyResolver keyResolver(Collection<Constraint> constraints)

Creates a new ConstrainedVerificationKeyResolver bound to this issuer.

Returns:

ConstrainedVerificationKeyResolver instance.

createConsumer

public final org.jose4j.jwt.consumer.JwtConsumer createConsumer(Collection<Constraint> constraints)

Creates a new JwtConsumer to process incoming JsonWebSignatures.

Parameters:

constraints - Custom collection of Constraint instances.

Returns:

JwtConsumer instance.