Interface SelfContainedAccessTokenClaimsCodec
-
- All Known Implementing Classes:
BaseSelfContainedAccessTokenClaimsCodec
@ThreadSafe public interface SelfContainedAccessTokenClaimsCodec
Service Provider Interface (SPI) for encoding and decoding authorisations for self-contained access tokens into JWT claims sets. Implementations must be thread-safe.Sample JWT claims set for a self-contained access token:
{ "sub" : "alice", "cid" : "65564eb0058d", "scp" : [ "openid", "email", "app:write" ], "iss" : "https://c2id.com", "iat" : 1360050000, "exp" : 1360050795, "aud" : [ "https://resource-1.example.com", "https://resource-2.example.com" ] }Implementations should extend
BaseSelfContainedAccessTokenClaimsCodecwhich encodes all token parameters for which there is an appropriate standard JWT claim, such as for the subject, issuer and expiration time. The implementation only needs to specify encodings for the remaining parameters, such as scope and client ID.
-
-
Method Summary
All Methods Instance Methods Abstract Methods Default Methods Modifier and Type Method Description default AccessTokenAuthorizationadvancedDecode(JWTDetails jwtDetails, TokenCodecContext context)Decodes the specified JWT details into an access token authorisation.default JWTDetailsadvancedEncode(AccessTokenAuthorization tokenAuthz, TokenEncoderContext context)Encodes the specified access token authorisation into a JWT.AccessTokenAuthorizationdecode(com.nimbusds.jwt.JWTClaimsSet claimsSet, TokenCodecContext context)Decodes the specified JWT claims set into an access token authorisation.com.nimbusds.jwt.JWTClaimsSetencode(AccessTokenAuthorization tokenAuthz, TokenEncoderContext context)Encodes the specified access token authorisation into a JWT claims set.
-
-
-
Method Detail
-
encode
com.nimbusds.jwt.JWTClaimsSet encode(AccessTokenAuthorization tokenAuthz, TokenEncoderContext context)
Encodes the specified access token authorisation into a JWT claims set.- Parameters:
tokenAuthz- The access token authorisation. Notnull.context- The token encoder context. Notnull.- Returns:
- The JWT claims set.
-
advancedEncode
default JWTDetails advancedEncode(AccessTokenAuthorization tokenAuthz, TokenEncoderContext context)
Encodes the specified access token authorisation into a JWT.- Parameters:
tokenAuthz- The access token authorisation. Notnull.context- The token encoder context. Notnull.- Returns:
- The JWT claims set and other details.
-
decode
AccessTokenAuthorization decode(com.nimbusds.jwt.JWTClaimsSet claimsSet, TokenCodecContext context) throws TokenDecodeException
Decodes the specified JWT claims set into an access token authorisation.- Parameters:
claimsSet- The JWT claims set. Notnull.context- The token codec context. Notnull.- Returns:
- The access token authorisation.
- Throws:
TokenDecodeException- If decoding failed.
-
advancedDecode
default AccessTokenAuthorization advancedDecode(JWTDetails jwtDetails, TokenCodecContext context) throws TokenDecodeException
Decodes the specified JWT details into an access token authorisation.- Parameters:
jwtDetails- The JWT claims set and other details. Notnull.context- The token codec context. Notnull.- Returns:
- The access token authorisation.
- Throws:
TokenDecodeException- If decoding failed.
-
-