Returns the Issuer value or null if it's not defined.
String issuer = jwt.getIssuer();Returns the Subject value or null if it's not defined.
String subject = jwt.getSubject();Returns the Audience value or an empty list if it's not defined.
List<String> audience = jwt.getAudience();Returns the Expiration Time value or null if it's not defined.
Date expiresAt = jwt.getExpiresAt();Returns the Not Before value or null if it's not defined.
Date notBefore = jwt.getNotBefore();Returns the Issued At value or null if it's not defined.
Date issuedAt = jwt.getIssuedAt();Returns the JWT ID value or null if it's not defined.
String id = jwt.getId();The JWT token may include DateNumber fields that can be used to validate that the token was issued in a past date "iat" < TODAY and that the expiration date is in the future "exp" > TODAY. This library includes a method that checks both of this fields and returns the validity of the token. If any of the fields is missing they wont be considered. You must provide a positive amount of seconds as leeway to consider in the Date comparison.
boolean isExpired = jwt.isExpired(10); // 10 seconds leewayAdditional Claims defined in the token can be obtained by calling getClaim and passing the Claim name. If the claim can't be found, a BaseClaim will be returned. BaseClaim will return null on every method call except for the asList and asArray.
Claim claim = jwt.getClaim("isAdmin");You can also obtain all the claims at once by calling getClaims.
Map<String, Claim> allClaims = jwt.getClaims();The Claim class is a wrapper for the Claim values. It allows you to get the Claim as different class types. The available helpers are:
- asBoolean(): Returns the Boolean value or null if it can't be converted.
- asInt(): Returns the Integer value or null if it can't be converted.
- asLong(): Returns the Long value or null if it can't be converted.
- asDouble(): Returns the Double value or null if it can't be converted.
- asString(): Returns the String value or null if it can't be converted.
- asDate(): Returns the Date value or null if it can't be converted. Note that the JWT Standard specified that all the NumericDate values must be in seconds. (Epoch / Unix time)
To obtain a Claim as a Collection you'll need to provide the Class Type of the contents to convert from.
- asArray(class): Returns the value parsed as an Array of elements of type Class Type, or an empty Array if the value isn't an JSON Array.
- asList(class): Returns the value parsed as a List of elements of type Class Type, or an empty List if the value isn't an JSON Array.
If the values inside the JSON Array can't be converted to the given Class Type, a DecodeException will raise.
The JWT class implements Parcelable so you can send it inside a Bundle on any Android intent. i.e. using Android Activities:
// In the first Activity
JWT jwt = new JWT("header.payload.signature");
Intent intent = new Intent(ProfileActivity.class, MainActivity.this);
intent.putExtra("jwt", jwt);
startActivity(intent);
// Then in another Activity
JWT jwt = (JWT) getIntent().getParcelableExtra("jwt");You can also call at any time jwt.toString() to get the String representation of the token that has given instance to this JWT. This is useful for instance if you need to validate some claims when you get a response, and then send the token back in the request header.
JWT jwt = new JWT(res.getHeader("Authorization"));
if (!jwt.isExpired(0) && "auth0".equals(jwt.getIssuer())){
req.putHeader("Authorization", "Bearer " + jwt);
return;
} else {
// Get a fresh token
}