Package com.nimbusds.jose.crypto

Class MACVerifier

    • Constructor Detail

      • MACVerifier

        public MACVerifier​(byte[] secret)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        secret - The secret. Must be at least 256 bits long and not null.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

      • MACVerifier

        public MACVerifier​(String secretString)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        secretString - The secret as a UTF-8 encoded string. Must be at least 256 bits long and not null.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

      • MACVerifier

        public MACVerifier​(SecretKey secretKey)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        secretKey - The secret key. Must be at least 256 bits long and not null.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

      • MACVerifier

        public MACVerifier​(OctetSequenceKey jwk)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        jwk - The secret as a JWK. Must be at least 256 bits long and not null.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

      • MACVerifier

        public MACVerifier​(OctetSequenceKey jwk,
                   Set<String> defCritHeaders)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        jwk - The secret as a JWK. Must be at least 256 bits long and not null.
        defCritHeaders - The names of the critical header parameters that are deferred to the application for processing, empty set or null if none.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

      • MACVerifier

        public MACVerifier​(byte[] secret,
                   Set<String> defCritHeaders)
            throws JOSEException
        Creates a new Message Authentication (MAC) verifier.
        Parameters:
        secret - The secret. Must be at least 256 bits long and not null.
        defCritHeaders - The names of the critical header parameters that are deferred to the application for processing, empty set or null if none.
        Throws:
        JOSEException - If the secret length is shorter than the minimum 256-bit requirement.

    • Method Detail

      • verify

        public boolean verify​(JWSHeader header,
                      byte[] signedContent,
                      Base64URL signature)
               throws JOSEException
        Description copied from interface: JWSVerifier
        Verifies the specified signature of a JWS object.
        Specified by:
        verify in interface JWSVerifier
        Parameters:
        header - The JSON Web Signature (JWS) header. Must specify a supported JWS algorithm and must not be null.
        signedContent - The signing input. Must not be null.
        signature - The signature part of the JWS object. Must not be null.
        Returns:
        true if the signature was successfully verified, false if the signature is invalid or if a critical header is neither supported nor marked for deferral to the application.
        Throws:
        JOSEException - If the JWS algorithm is not supported, or if signature verification failed for some other internal reason.