PublicKeyStorageProvider (Keycloak Docs Distribution 21.0.2 API)

All Superinterfaces:

Provider

All Known Implementing Classes:

InfinispanPublicKeyStorageProvider, MapPublicKeyStorageProvider
```
public interface PublicKeyStorageProvider
extends Provider
```
Author:

Marek Posolda

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method	Description
`KeyWrapper`	`getFirstPublicKey(String modelKey, String algorithm, PublicKeyLoader loader)`	Get first found public key to verify messages signed by particular client having several public keys.
`KeyWrapper`	`getPublicKey(String modelKey, String kid, String algorithm, PublicKeyLoader loader)`	Get public key to verify messages signed by particular client.

Methods inherited from interface org.keycloak.provider.Provider
close

- Method Detail
  - getPublicKey
```
KeyWrapper getPublicKey(String modelKey,
                        String kid,
                        String algorithm,
                        PublicKeyLoader loader)
```
    Get public key to verify messages signed by particular client. Used for example during JWT client authentication
    
    Parameters:
    
    modelKey -
    
    kid -
    
    algorithm - The returned key must match this algorithm (unless the algorithm is not set in the JWK)
    
    loader -
    
    Returns:
  - getFirstPublicKey
```
KeyWrapper getFirstPublicKey(String modelKey,
                             String algorithm,
                             PublicKeyLoader loader)
```
    Get first found public key to verify messages signed by particular client having several public keys. Used for example during JWT client authentication or to encrypt content encryption key (CEK) by particular client. Used for example during encrypting a token in JWE
    
    Parameters:
    
    modelKey -
    
    algorithm -
    
    loader -
    
    Returns: