Package io.micronaut.security.oauth2.endpoint.token.response.validation

Class DefaultOpenIdTokenResponseValidator

    • Constructor Detail

      • DefaultOpenIdTokenResponseValidator

        public DefaultOpenIdTokenResponseValidator​(java.util.Collection<OpenIdClaimsValidator> idTokenValidators,
                                           java.util.Collection<GenericJwtClaimsValidator> genericJwtClaimsValidators,
                                           NonceClaimValidator nonceClaimValidator,
                                           JwkValidator jwkValidator)
        Parameters:
        idTokenValidators - OpenID JWT claim validators
        genericJwtClaimsValidators - Generic JWT claim validators
        nonceClaimValidator - The nonce claim validator
        jwkValidator - The JWK validator

    • Method Detail

      • validate

        public java.util.Optional<com.nimbusds.jwt.JWT> validate​(OauthClientConfiguration clientConfiguration,
                                                         OpenIdProviderMetadata openIdProviderMetadata,
                                                         OpenIdTokenResponse openIdTokenResponse,
                                                         @Nullable
                                                         java.lang.String nonce)
        Specified by:
        validate in interface OpenIdTokenResponseValidator
        Parameters:
        clientConfiguration - The OAuth 2.0 client configuration
        openIdProviderMetadata - The OpenID provider metadata
        openIdTokenResponse - ID Token Access Token response
        nonce - The persisted nonce value
        Returns:
        true if the ID Token access response is considered valid