Package org.keycloak.sdjwt.vp

Class SdJwtVP

java.lang.Object
org.keycloak.sdjwt.vp.SdJwtVP
public class SdJwtVP extends Object
Author:
Francis Pouatcha

  • Method Details

    • getClaims

      public Map<String,com.fasterxml.jackson.databind.node.ArrayNode> getClaims()

    • getIssuerSignedJWT

      public IssuerSignedJWT getIssuerSignedJWT()

    • getDisclosures

      public Map<String,String> getDisclosures()

    • getDisclosuresString

      public Collection<String> getDisclosuresString()

    • getRecursiveDigests

      public Map<String,String> getRecursiveDigests()

    • getGhostDigests

      public Collection<String> getGhostDigests()

    • getHashAlgorithm

      public String getHashAlgorithm()

    • getKeyBindingJWT

      public Optional<KeyBindingJWT> getKeyBindingJWT()

    • of

      public static SdJwtVP of(String sdJwtString)

    • getCnfClaim

      public com.fasterxml.jackson.databind.JsonNode getCnfClaim()

    • present

      public String present(List<String> disclosureDigests, com.fasterxml.jackson.databind.JsonNode keyBindingClaims, SignatureSignerContext holdSignatureSignerContext, String jwsType)

    • verify

      public void verify(IssuerSignedJwtVerificationOpts issuerSignedJwtVerificationOpts, KeyBindingJwtVerificationOpts keyBindingJwtVerificationOpts) throws VerificationException
      Verifies SD-JWT presentation.
      Parameters:
      issuerSignedJwtVerificationOpts - Options to parameterize the verification. A verifier must be specified for validating the Issuer-signed JWT. The caller is responsible for establishing trust in that associated public keys belong to the intended issuer.
      keyBindingJwtVerificationOpts - Options to parameterize the Key Binding JWT verification. Must, among others, specify the Verifier's policy whether to check Key Binding.
      Throws:
      VerificationException - if verification failed

    • toString

      public String toString()
      Overrides:
      toString in class Object

    • verbose

      public String verbose()