-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #9 from josebarrueta/master
Issue #8 Add ability to resolve signing key based on Jws embedded values...
- Loading branch information
Showing
5 changed files
with
338 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,58 @@ | ||
/* | ||
* Copyright (C) 2014 jsonwebtoken.io | ||
* | ||
* Licensed under the Apache License, Version 2.0 (the "License"); | ||
* you may not use this file except in compliance with the License. | ||
* You may obtain a copy of the License at | ||
* | ||
* http://www.apache.org/licenses/LICENSE-2.0 | ||
* | ||
* Unless required by applicable law or agreed to in writing, software | ||
* distributed under the License is distributed on an "AS IS" BASIS, | ||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
* See the License for the specific language governing permissions and | ||
* limitations under the License. | ||
*/ | ||
package io.jsonwebtoken; | ||
|
||
/** | ||
* A JwsSigningKeyResolver is invoked by a {@link io.jsonwebtoken.JwtParser JwtParser} if it's provided and the | ||
* JWT being parsed is signed. | ||
* <p/> | ||
* Implementations of this interfaces must be provided to {@link io.jsonwebtoken.JwtParser JwtParser} when the values | ||
* embedded in the JWS need to be used to determine the <code>signing key</code> used to sign the JWS. | ||
* | ||
* @since 0.4 | ||
*/ | ||
public interface SigningKeyResolver { | ||
|
||
/** | ||
* This method is invoked when a {@link io.jsonwebtoken.JwtParser JwtParser} parsed a {@link Jws} and needs | ||
* to resolve the signing key, based on a value embedded in the {@link JwsHeader} and/or the {@link Claims} | ||
* <p/> | ||
* <p>This method will only be invoked if an implementation is provided.</p> | ||
* <p/> | ||
* <p>Note that this key <em>MUST</em> be a valid key for the signature algorithm found in the JWT header | ||
* (as the {@code alg} header parameter).</p> | ||
* | ||
* @param header the parsed {@link JwsHeader} | ||
* @param claims the parsed {@link Claims} | ||
* @return any object to be used after inspecting the JWS, or {@code null} if no return value is necessary. | ||
*/ | ||
byte[] resolveSigningKey(JwsHeader header, Claims claims); | ||
|
||
/** | ||
* This method is invoked when a {@link io.jsonwebtoken.JwtParser JwtParser} parsed a {@link Jws} and needs | ||
* to resolve the signing key, based on a value embedded in the {@link JwsHeader} and/or the plaintext payload. | ||
* <p/> | ||
* <p>This method will only be invoked if an implementation is provided.</p> | ||
* <p/> | ||
* <p>Note that this key <em>MUST</em> be a valid key for the signature algorithm found in the JWT header | ||
* (as the {@code alg} header parameter).</p> | ||
* | ||
* @param header the parsed {@link JwsHeader} | ||
* @param payload the jws plaintext payload. | ||
* @return any object to be used after inspecting the JWS, or {@code null} if no return value is necessary. | ||
*/ | ||
byte[] resolveSigningKey(JwsHeader header, String payload); | ||
} |
41 changes: 41 additions & 0 deletions
41
src/main/java/io/jsonwebtoken/SigningKeyResolverAdapter.java
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,41 @@ | ||
/* | ||
* Copyright (C) 2014 jsonwebtoken.io | ||
* | ||
* Licensed under the Apache License, Version 2.0 (the "License"); | ||
* you may not use this file except in compliance with the License. | ||
* You may obtain a copy of the License at | ||
* | ||
* http://www.apache.org/licenses/LICENSE-2.0 | ||
* | ||
* Unless required by applicable law or agreed to in writing, software | ||
* distributed under the License is distributed on an "AS IS" BASIS, | ||
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
* See the License for the specific language governing permissions and | ||
* limitations under the License. | ||
*/ | ||
package io.jsonwebtoken; | ||
|
||
/** | ||
* An <a href="http://en.wikipedia.org/wiki/Adapter_pattern">Adapter</a> implementation of the | ||
* {@link SigningKeyResolver} interface that allows subclasses to process only the type of Jws body that | ||
* are known/expected for a particular case. | ||
* | ||
* <p>All of the methods in this implementation throw exceptions: overridden methods represent | ||
* scenarios expected by calling code in known situations. It would be unexpected to receive a JWS or JWT that did | ||
* not match parsing expectations, so all non-overridden methods throw exceptions to indicate that the JWT | ||
* input was unexpected.</p> | ||
* | ||
* @since 0.4 | ||
*/ | ||
public class SigningKeyResolverAdapter implements SigningKeyResolver { | ||
|
||
@Override | ||
public byte[] resolveSigningKey(JwsHeader header, Claims claims) { | ||
throw new UnsupportedJwtException("Resolving signing keys with claims are not supported."); | ||
} | ||
|
||
@Override | ||
public byte[] resolveSigningKey(JwsHeader header, String payload) { | ||
throw new UnsupportedJwtException("Resolving signing keys with plaintext payload are not supported."); | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters