Package org.keycloak.sdjwt.vp

Class SdJwtVP

java.lang.Object

org.keycloak.sdjwt.vp.SdJwtVP

public class SdJwtVP
extends Object

Author:

Francis Pouatcha

Method Summary

Modifier and Type	Method	Description
Map<String,com.fasterxml.jackson.databind.node.ArrayNode>	getClaims()
com.fasterxml.jackson.databind.JsonNode	getCnfClaim()
Map<String,String>	getDisclosures()
Collection<String>	getDisclosuresString()
Collection<String>	getGhostDigests()
String	getHashAlgorithm()
IssuerSignedJWT	getIssuerSignedJWT()
Optional<KeyBindingJWT>	getKeyBindingJWT()
Map<String,String>	getRecursiveDigests()
SdJwtVerificationContext	getSdJwtVerificationContext()	Retrieve verification context for advanced scenarios.
static SdJwtVP	of(String sdJwtString)
String	present(List<String> disclosureDigests, com.fasterxml.jackson.databind.JsonNode keyBindingClaims, SignatureSignerContext holdSignatureSignerContext, String jwsType)
String	toString()
String	verbose()
void	verify(List<SignatureVerifierContext> issuerVerifyingKeys, IssuerSignedJwtVerificationOpts issuerSignedJwtVerificationOpts, KeyBindingJwtVerificationOpts keyBindingJwtVerificationOpts)	Verifies SD-JWT presentation.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Method Details

getClaims

public Map<String,com.fasterxml.jackson.databind.node.ArrayNode> getClaims()

getIssuerSignedJWT

public IssuerSignedJWT getIssuerSignedJWT()

getDisclosures

public Map<String,String> getDisclosures()

getDisclosuresString

public Collection<String> getDisclosuresString()

getRecursiveDigests

public Map<String,String> getRecursiveDigests()

getGhostDigests

public Collection<String> getGhostDigests()

getHashAlgorithm

public String getHashAlgorithm()

getKeyBindingJWT

public Optional<KeyBindingJWT> getKeyBindingJWT()

of

public static SdJwtVP of(String sdJwtString)

getCnfClaim

public com.fasterxml.jackson.databind.JsonNode getCnfClaim()

present

public String present(List<String> disclosureDigests,
 com.fasterxml.jackson.databind.JsonNode keyBindingClaims,
 SignatureSignerContext holdSignatureSignerContext,
 String jwsType)

verify

public void verify(List<SignatureVerifierContext> issuerVerifyingKeys,
 IssuerSignedJwtVerificationOpts issuerSignedJwtVerificationOpts,
 KeyBindingJwtVerificationOpts keyBindingJwtVerificationOpts)
            throws VerificationException

Verifies SD-JWT presentation.

Parameters:

issuerVerifyingKeys - Verifying keys for validating the Issuer-signed JWT. The caller is responsible for establishing trust in that the keys belong to the intended issuer.

issuerSignedJwtVerificationOpts - Options to parameterize the Issuer-Signed JWT verification.

keyBindingJwtVerificationOpts - Options to parameterize the Key Binding JWT verification. Must, among others, specify the Verifier's policy whether to check Key Binding.

Throws:

VerificationException - if verification failed

getSdJwtVerificationContext

public SdJwtVerificationContext getSdJwtVerificationContext()

Retrieve verification context for advanced scenarios.

toString

public String toString()

Overrides:

toString in class Object

verbose

public String verbose()