From 9e928da32c6f9d7708d72f450c65dd58b93e74ee Mon Sep 17 00:00:00 2001
From: David Blevins <dblevins@tomitribe.com>
Date: Tue, 13 Sep 2022 16:16:21 -0700
Subject: [PATCH] Add MP JWT 2.1 configuration properties

---
 .../eclipse/microprofile/jwt/config/Names.java   | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/api/src/main/java/org/eclipse/microprofile/jwt/config/Names.java b/api/src/main/java/org/eclipse/microprofile/jwt/config/Names.java
index 22eeb956..44f3d7b7 100644
--- a/api/src/main/java/org/eclipse/microprofile/jwt/config/Names.java
+++ b/api/src/main/java/org/eclipse/microprofile/jwt/config/Names.java
@@ -47,6 +47,11 @@ public interface Names {
      */
     String DECRYPTOR_KEY_LOCATION = "mp.jwt.decrypt.key.location";
 
+    /**
+     * Key Management Algorithm property which can be set to either 'RSA-OAEP' or 'RSA-OAEP-256'
+     */
+    String DECRYPTOR_KEY_ALGORITHM = "mp.jwt.decrypt.key.algorithm";
+
     /**
      * The expected iss claim value to validate against an MP-JWT.
      */
@@ -68,9 +73,20 @@ public interface Names {
      */
     String TOKEN_COOKIE = "mp.jwt.token.cookie";
 
+    /**
+     * The number of seconds since 'iat' after which the token must be considered invalid.
+     */
+    String TOKEN_AGE = "mp.jwt.verify.token.age";
+
     /**
      * The expected "aud" claim value(s), separated by commas. If specified, MP-JWT claim must be present and match one
      * of the values.
      */
     String AUDIENCES = "mp.jwt.verify.audiences";
+
+    /**
+     * The clock skew in seconds used during the token expiry and age verification.
+     */
+    String CLOCK_SKEW = "mp.jwt.verify.clock.skew";
+
 }