Class JwtIssuer

java.lang.Object
io.confluent.security.authentication.oauthbearer.JwtIssuer
Direct Known Subclasses:
JwtIssuerJku, JwtIssuerJwks, JwtIssuerSpire, JwtIssuerStatic
public abstract class JwtIssuer extends Object
Constructs a new JwtConsumer instance for JsonWebSignature decoding and validation.

  • Constructor Details

    • JwtIssuer

      public JwtIssuer()

  • Method Details

    • name

      public abstract String name()
      JsonWebSignature Issuer name. This should be the URL of the Authorization Server though there may be some cases where its not.
      Returns:
      JsonWebSignature Issuing authority.

    • audience

      public abstract Set<String> audience()
      The recipient(s) for this token.
      Returns:
      audience claim value.

    • keyResolver

      public abstract ConstrainedVerificationKeyResolver keyResolver(Collection<Constraint> constraints, io.confluent.security.util.SecurityContext context)
      Creates a new ConstrainedVerificationKeyResolver bound to this issuer.
      Returns:
      ConstrainedVerificationKeyResolver instance.

    • createConsumer

      public org.jose4j.jwt.consumer.JwtConsumer createConsumer(Collection<Constraint> constraints, boolean requireSubjectClaim, io.confluent.security.util.SecurityContext context)
      Creates a new JwtConsumer to process incoming JsonWebSignatures.
      Parameters:
      constraints - Custom collection of Constraint instances.
      Returns:
      JwtConsumer instance.