Uses of Class
org.keycloak.representations.JsonWebToken
Package
Description
-
Uses of JsonWebToken in org.keycloak
Modifier and TypeClassDescriptionclass
TokenVerifier<T extends JsonWebToken>
static interface
TokenVerifier.Predicate<T extends JsonWebToken>
Functional interface of checks that verify some part of a JWT.Modifier and TypeFieldDescriptionstatic final TokenVerifier.Predicate<JsonWebToken>
TokenVerifier.IS_ACTIVE
Check for token being neither expired nor used before it gets valid.static final TokenVerifier.Predicate<JsonWebToken>
TokenVerifier.SUBJECT_EXISTS_CHECK
Modifier and TypeMethodDescriptionstatic <T extends JsonWebToken>
TokenVerifier.Predicate<T>TokenVerifier.alternative
(TokenVerifier.Predicate<? super T>... predicates) Creates a predicate that will proceed with checks of the given predicates and will pass if and only if at least one of the given predicates passes.static <T extends JsonWebToken>
TokenVerifier<T>Creates an instance ofTokenVerifier
from the given string on a JWT of the given class.static <T extends JsonWebToken>
TokenVerifier<T>TokenVerifier.createWithoutSignature
(T token) Creates an instance ofTokenVerifier
for the given token.static <T extends JsonWebToken>
TokenVerifier.Predicate<T>TokenVerifier.optional
(TokenVerifier.Predicate<T> mandatoryPredicate) Creates an optional predicate from a predicate that will proceed with check but always pass.Modifier and TypeMethodDescriptionboolean
TokenVerifier.AudienceCheck.test
(JsonWebToken t) boolean
TokenVerifier.IssuedForCheck.test
(JsonWebToken jsonWebToken) boolean
TokenVerifier.RealmUrlCheck.test
(JsonWebToken t) boolean
TokenVerifier.TokenTypeCheck.test
(JsonWebToken t) -
Uses of JsonWebToken in org.keycloak.authentication.actiontoken
Modifier and TypeClassDescriptionclass
AbstractActionTokenHandler<T extends JsonWebToken>
class
ActionTokenContext<T extends JsonWebToken>
interface
ActionTokenHandler<T extends JsonWebToken>
Handler of the action token.interface
ActionTokenHandlerFactory<T extends JsonWebToken>
Modifier and TypeClassDescriptionclass
Part of action token that is intended to be used e.g.Modifier and TypeMethodDescriptionstatic <T extends JsonWebToken>
TokenVerifier.Predicate<T>Returns a predicate for use inTokenVerifier
using the given boolean-returning function.static <T extends JsonWebToken>
TokenVerifier.Predicate<T>TokenUtils.onlyIf
(Predicate<T> condition, TokenVerifier.Predicate<T> predicate) Returns a predicate that is applied only if the givencondition
evaluates to .static <T extends JsonWebToken>
TokenVerifier.Predicate<? super T>[]TokenUtils.predicates
(TokenVerifier.Predicate<? super T>... predicate) Modifier and TypeMethodDescriptionstatic TokenVerifier.Predicate<JsonWebToken>
TokenUtils.checkThat
(BooleanSupplier function, String errorEvent, String errorMessage) Returns a predicate for use inTokenVerifier
using the given boolean-returning function.ModifierConstructorDescriptionExplainedTokenVerificationException
(JsonWebToken token, String errorEvent) ExplainedTokenVerificationException
(JsonWebToken token, String errorEvent, String message) ExplainedTokenVerificationException
(JsonWebToken token, String errorEvent, String message, Throwable cause) ExplainedTokenVerificationException
(JsonWebToken token, String errorEvent, Throwable cause) -
Uses of JsonWebToken in org.keycloak.authentication.actiontoken.execactions
-
Uses of JsonWebToken in org.keycloak.authentication.actiontoken.idpverifyemail
Modifier and TypeClassDescriptionclass
Representation of a token that represents a time-limited verify e-mail action. -
Uses of JsonWebToken in org.keycloak.authentication.actiontoken.resetcred
Modifier and TypeClassDescriptionclass
Representation of a token that represents a time-limited reset credentials action. -
Uses of JsonWebToken in org.keycloak.authentication.actiontoken.updateemail
-
Uses of JsonWebToken in org.keycloak.authentication.actiontoken.verifyemail
Modifier and TypeClassDescriptionclass
Representation of a token that represents a time-limited verify e-mail action. -
Uses of JsonWebToken in org.keycloak.authentication.authenticators.client
-
Uses of JsonWebToken in org.keycloak.authorization.client.representation
-
Uses of JsonWebToken in org.keycloak.broker.oidc
Modifier and TypeMethodDescriptionprotected JsonWebToken
AbstractOAuth2IdentityProvider.generateToken()
OIDCIdentityProvider.validateToken
(String encodedToken) protected JsonWebToken
OIDCIdentityProvider.validateToken
(String encodedToken, boolean ignoreAudience) Modifier and TypeMethodDescriptionprotected BrokeredIdentityContext
OIDCIdentityProvider.extractIdentity
(AccessTokenResponse tokenResponse, String accessToken, JsonWebToken idToken) protected boolean
OIDCIdentityProvider.isAuthTimeExpired
(JsonWebToken idToken, AuthenticationSessionModel authSession) -
Uses of JsonWebToken in org.keycloak.broker.oidc.mappers
Modifier and TypeMethodDescriptionstatic Object
AbstractClaimMapper.getClaimValue
(JsonWebToken token, String claim) -
Uses of JsonWebToken in org.keycloak.exceptions
ModifierConstructorDescriptionTokenNotActiveException
(JsonWebToken token, String message) TokenNotActiveException
(JsonWebToken token, String message, Throwable cause) TokenNotActiveException
(JsonWebToken token, Throwable cause) TokenSignatureInvalidException
(JsonWebToken token, String message) TokenSignatureInvalidException
(JsonWebToken token, String message, Throwable cause) TokenSignatureInvalidException
(JsonWebToken token, Throwable cause) TokenVerificationException
(JsonWebToken token, String message) TokenVerificationException
(JsonWebToken token, String message, Throwable cause) TokenVerificationException
(JsonWebToken token, Throwable cause) -
Uses of JsonWebToken in org.keycloak.models
-
Uses of JsonWebToken in org.keycloak.protocol.oidc
Modifier and TypeMethodDescriptionboolean
TokenManager.NotBeforeCheck.test
(JsonWebToken t) boolean
TokenManager.TokenRevocationCheck.test
(JsonWebToken token) -
Uses of JsonWebToken in org.keycloak.protocol.oidc.client.authentication
Modifier and TypeMethodDescriptionprotected JsonWebToken
JWTClientCredentialsProvider.createRequestToken
(String clientId, String realmInfoUrl) protected JsonWebToken
JWTClientSecretCredentialsProvider.createRequestToken
(String clientId, String realmInfoUrl) -
Uses of JsonWebToken in org.keycloak.protocol.oidc.grants.ciba.channel
Modifier and TypeClassDescriptionclass
Represents an authentication request sent by a consumption device (CD). -
Uses of JsonWebToken in org.keycloak.representations
Modifier and TypeClassDescriptionclass
class
class
class
class
Modifier and TypeMethodDescriptionJsonWebToken.addAudience
(String audience) JsonWebToken.expiration
(int expiration) Deprecated.int will overflow with values after 2038.JsonWebToken.issuedAt
(int issuedAt) Deprecated.int will overflow with values after 2038.JsonWebToken.issuedNow()
Set issuedAt to the current timeJsonWebToken.notBefore
(int notBefore) Deprecated.int will overflow with values after 2038. -
Uses of JsonWebToken in org.keycloak.representations.docker
Modifier and TypeClassDescriptionclass
* { "iss": "auth.docker.com", "sub": "jlhawn", "aud": "registry.docker.com", "exp": 1415387315, "nbf": 1415387015, "iat": 1415387015, "jti": "tYJCO1c6cnyy7kAn0c7rKPgbV1H1bFws", "access": [ { "type": "repository", "name": "samalba/my-app", "actions": [ "push" ] } ] } -
Uses of JsonWebToken in org.keycloak.representations.dpop
-
Uses of JsonWebToken in org.keycloak.representations.idm.authorization
-
Uses of JsonWebToken in org.keycloak.representations.oidc
-
Uses of JsonWebToken in org.keycloak.services.clientpolicy.context
Modifier and TypeMethodDescriptiondefault JsonWebToken
ClientCRUDContext.getToken()
returnsJsonWebToken
of the token accompanied with the request to register/read/update/unregister clientModifierConstructorDescriptionDynamicClientRegisterContext
(ClientRegistrationContext context, JsonWebToken token, RealmModel realm) DynamicClientRegisteredContext
(ClientRegistrationContext context, ClientModel registeredClient, JsonWebToken token, RealmModel realm) DynamicClientUnregisterContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) DynamicClientUpdateContext
(ClientRegistrationContext context, ClientModel proposedClientRepresentation, JsonWebToken token, RealmModel realm) DynamicClientUpdatedContext
(KeycloakSession session, ClientModel updatedClient, JsonWebToken token, RealmModel realm) DynamicClientViewContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) -
Uses of JsonWebToken in org.keycloak.services.clientregistration
Modifier and TypeMethodDescriptionClientRegistrationAuth.getJwt()
ClientRegistrationTokenUtils.TokenVerification.getJwt()
Modifier and TypeMethodDescriptionClientRegistrationTokenUtils.TokenVerification.success
(String kid, JsonWebToken jwt) -
Uses of JsonWebToken in org.keycloak.services.managers
-
Uses of JsonWebToken in org.keycloak.services.resources
Modifier and TypeMethodDescriptionstatic <T extends JsonWebToken>
voidLoginActionsServiceChecks.checkIsClientValid
(T token, ActionTokenContext<T> context) Verifies whether the client denoted by client ID in token'siss
(issuedFor
) field both exists and is enabled.static <T extends JsonWebToken & SingleUseObjectKeyModel>
voidLoginActionsServiceChecks.checkIsUserValid
(T token, ActionTokenContext<T> context) Verifies whether the user given by ID both exists in the current realm.static <T extends JsonWebToken>
voidLoginActionsServiceChecks.checkNotLoggedInYet
(ActionTokenContext<T> context, AuthenticationSessionModel authSessionFromCookie, String authSessionId) Verifies that the authentication session has not yet been converted to user session, in other words that the user has not yet completed authentication and logged in.static <T extends JsonWebToken & SingleUseObjectKeyModel>
voidLoginActionsServiceChecks.checkTokenWasNotUsedYet
(T token, ActionTokenContext<T> context) static <T extends JsonWebToken>
booleanLoginActionsServiceChecks.doesAuthenticationSessionFromCookieMatchOneFromToken
(ActionTokenContext<T> context, AuthenticationSessionModel authSessionFromCookie, String authSessionCompoundIdFromToken) This check verifies that current authentication session is consistent with the one specified in token.protected <T extends JsonWebToken & SingleUseObjectKeyModel>
jakarta.ws.rs.core.ResponseLoginActionsService.handleActionToken
(String tokenString, String execution, String clientId, String tabId) Modifier and TypeMethodDescriptionboolean
LoginActionsServiceChecks.AuthenticationSessionUserIdMatchesOneFromToken.test
(JsonWebToken t) boolean
LoginActionsServiceChecks.IsActionRequired.test
(JsonWebToken t) boolean
LoginActionsServiceChecks.IsRedirectValid.test
(JsonWebToken t) -
Uses of JsonWebToken in org.keycloak.social.gitlab
Modifier and TypeMethodDescriptionprotected BrokeredIdentityContext
GitLabIdentityProvider.extractIdentity
(AccessTokenResponse tokenResponse, String accessToken, JsonWebToken idToken) -
Uses of JsonWebToken in org.keycloak.social.google
Modifier and TypeMethodDescriptionprotected JsonWebToken
GoogleIdentityProvider.validateToken
(String encodedToken, boolean ignoreAudience) -
Uses of JsonWebToken in org.keycloak.util
Modifier and TypeMethodDescriptionstatic <T extends JsonWebToken>
TTokenUtil.jweDirectVerifyAndDecode
(Key aesKey, Key hmacKey, String jweStr, Class<T> expectedClass) Modifier and TypeMethodDescriptionstatic String
TokenUtil.jweDirectEncode
(Key aesKey, Key hmacKey, JsonWebToken jwt)