Example 11 with JweHeaders
use of org.apache.cxf.rs.security.jose.jwe.JweHeaders in project cxf by apache.
the class JWTTokenProvider method createToken.
/**
* Create a token given a TokenProviderParameters
*/
public TokenProviderResponse createToken(TokenProviderParameters tokenParameters) {
// KeyRequirements keyRequirements = tokenParameters.getKeyRequirements();
TokenRequirements tokenRequirements = tokenParameters.getTokenRequirements();
if (LOG.isLoggable(Level.FINE)) {
LOG.fine("Handling token of type: " + tokenRequirements.getTokenType());
}
String realm = tokenParameters.getRealm();
RealmProperties jwtRealm = null;
if (realm != null) {
jwtRealm = realmMap.get(realm);
}
// Get the claims
JWTClaimsProviderParameters jwtClaimsProviderParameters = new JWTClaimsProviderParameters();
jwtClaimsProviderParameters.setProviderParameters(tokenParameters);
if (jwtRealm != null) {
jwtClaimsProviderParameters.setIssuer(jwtRealm.getIssuer());
}
JwtClaims claims = jwtClaimsProvider.getJwtClaims(jwtClaimsProviderParameters);
try {
String tokenData = signToken(claims, jwtRealm, tokenParameters.getStsProperties());
if (tokenParameters.isEncryptToken()) {
tokenData = encryptToken(tokenData, new JweHeaders(), tokenParameters.getStsProperties(), tokenParameters.getEncryptionProperties(), tokenParameters.getKeyRequirements());
}
TokenProviderResponse response = new TokenProviderResponse();
response.setToken(tokenData);
response.setTokenId(claims.getTokenId());
if (claims.getIssuedAt() > 0) {
response.setCreated(Instant.ofEpochMilli(claims.getIssuedAt() * 1000L));
}
if (claims.getExpiryTime() > 0) {
Instant expires = Instant.ofEpochMilli(claims.getExpiryTime() * 1000L);
response.setExpires(expires);
}
LOG.fine("JWT Token successfully created");
return response;
} catch (Exception e) {
LOG.log(Level.WARNING, "", e);
throw new STSException("Can't serialize JWT token", e, STSException.REQUEST_FAILED);
}
}
Also used :
TokenRequirements(org.apache.cxf.sts.request.TokenRequirements)
JwtClaims(org.apache.cxf.rs.security.jose.jwt.JwtClaims)
Instant(java.time.Instant)
STSException(org.apache.cxf.ws.security.sts.provider.STSException)
TokenProviderResponse(org.apache.cxf.sts.token.provider.TokenProviderResponse)
RealmProperties(org.apache.cxf.sts.token.realm.RealmProperties)
STSException(org.apache.cxf.ws.security.sts.provider.STSException)
JweHeaders(org.apache.cxf.rs.security.jose.jwe.JweHeaders)
Aggregations
JweHeaders (org.apache.cxf.rs.security.jose.jwe.JweHeaders)11
JweEncryptionProvider (org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider)5
ByteArrayInputStream (java.io.ByteArrayInputStream)2
OutputStream (java.io.OutputStream)2
ArrayList (java.util.ArrayList)2
MediaType (javax.ws.rs.core.MediaType)2
CachedOutputStream (org.apache.cxf.io.CachedOutputStream)2
Message (org.apache.cxf.message.Message)2
JweException (org.apache.cxf.rs.security.jose.jwe.JweException)2
JweJsonProducer (org.apache.cxf.rs.security.jose.jwe.JweJsonProducer)2
JsonWebKey (org.apache.cxf.rs.security.jose.jwk.JsonWebKey)2
JwsHeaders (org.apache.cxf.rs.security.jose.jws.JwsHeaders)2
JwtClaims (org.apache.cxf.rs.security.jose.jwt.JwtClaims)2
IOException (java.io.IOException)1
Instant (java.time.Instant)1
HashMap (java.util.HashMap)1
HashSet (java.util.HashSet)1
LinkedList (java.util.LinkedList)1
Properties (java.util.Properties)1
DeflaterOutputStream (java.util.zip.DeflaterOutputStream)1
