io.micronaut.security.oauth2.endpoint.token.response.validation

Class DefaultOpenIdTokenResponseValidator

java.lang.Object

io.micronaut.security.oauth2.endpoint.token.response.validation.DefaultOpenIdTokenResponseValidator

All Implemented Interfaces:

OpenIdTokenResponseValidator

@Singleton
public class DefaultOpenIdTokenResponseValidator
extends java.lang.Object
implements OpenIdTokenResponseValidator

Default implementation of OpenIdTokenResponseValidator.

Since:

1.2.0

Author:

Sergio del Amo

Constructor Summary

Constructors

Constructor and Description
DefaultOpenIdTokenResponseValidator(java.util.Collection<OpenIdClaimsValidator> idTokenValidators, java.util.Collection<GenericJwtClaimsValidator> genericJwtClaimsValidators, NonceClaimValidator nonceClaimValidator, JwkValidator jwkValidator)

Method Summary

Modifier and Type	Method and Description
java.util.Optional<com.nimbusds.jwt.JWT>	validate(OauthClientConfiguration clientConfiguration, OpenIdProviderMetadata openIdProviderMetadata, OpenIdTokenResponse openIdTokenResponse, java.lang.String nonce)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DefaultOpenIdTokenResponseValidator

public DefaultOpenIdTokenResponseValidator(java.util.Collection<OpenIdClaimsValidator> idTokenValidators,
                                           java.util.Collection<GenericJwtClaimsValidator> genericJwtClaimsValidators,
                                           NonceClaimValidator nonceClaimValidator,
                                           JwkValidator jwkValidator)

Parameters:

idTokenValidators - OpenID JWT claim validators

genericJwtClaimsValidators - Generic JWT claim validators

nonceClaimValidator - The nonce claim validator

jwkValidator - The JWK validator

Method Detail

validate

public java.util.Optional<com.nimbusds.jwt.JWT> validate(OauthClientConfiguration clientConfiguration,
                                                         OpenIdProviderMetadata openIdProviderMetadata,
                                                         OpenIdTokenResponse openIdTokenResponse,
                                                         @Nullable
                                                         java.lang.String nonce)

Specified by:

validate in interface OpenIdTokenResponseValidator

Parameters:

clientConfiguration - The OAuth 2.0 client configuration

openIdProviderMetadata - The OpenID provider metadata

openIdTokenResponse - ID Token Access Token response

nonce - The persisted nonce value

Returns:

true if the ID Token access response is considered valid