Example 31 with JwtClaims
use of org.jose4j.jwt.JwtClaims in project light-4j by networknt.
the class OauthHelperTest method getTestClaims.
private static JwtClaims getTestClaims() {
JwtClaims claims = new JwtClaims();
claims.setIssuer("urn:com:networknt:oauth2:v1");
claims.setAudience("urn:com.networknt");
claims.setExpirationTimeMinutesInTheFuture(10);
// a unique identifier for the token
claims.setGeneratedJwtId();
// when the token was issued/created (now)
claims.setIssuedAtToNow();
// time before which the token is not yet valid (2 minutes ago)
claims.setNotBeforeMinutesInThePast(2);
claims.setClaim("version", "1.0");
claims.setClaim("user_id", "steve");
claims.setClaim("user_type", "EMPLOYEE");
claims.setClaim("client_id", "aaaaaaaa-1234-1234-1234-bbbbbbbb");
List<String> scope = Arrays.asList("api.r", "api.w");
// multi-valued claims work too and will end up as a JSON array
claims.setStringListClaim("scope", scope);
return claims;
}
Also used :
JwtClaims(org.jose4j.jwt.JwtClaims)
Example 32 with JwtClaims
use of org.jose4j.jwt.JwtClaims in project light-4j by networknt.
the class Http2ClientIT method isTokenExpired.
private static boolean isTokenExpired(String authorization) {
boolean expired = false;
String jwt = getJwtFromAuthorization(authorization);
if (jwt != null) {
try {
JwtConsumer consumer = new JwtConsumerBuilder().setSkipAllValidators().setDisableRequireSignature().setSkipSignatureVerification().build();
JwtContext jwtContext = consumer.process(jwt);
JwtClaims jwtClaims = jwtContext.getJwtClaims();
try {
if ((NumericDate.now().getValue() - 60) >= jwtClaims.getExpirationTime().getValue()) {
expired = true;
}
} catch (MalformedClaimException e) {
logger.error("MalformedClaimException:", e);
}
} catch (InvalidJwtException e) {
e.printStackTrace();
}
}
return expired;
}
Also used :
InvalidJwtException(org.jose4j.jwt.consumer.InvalidJwtException)
MalformedClaimException(org.jose4j.jwt.MalformedClaimException)
JwtClaims(org.jose4j.jwt.JwtClaims)
JwtConsumerBuilder(org.jose4j.jwt.consumer.JwtConsumerBuilder)
JwtConsumer(org.jose4j.jwt.consumer.JwtConsumer)
JwtContext(org.jose4j.jwt.consumer.JwtContext)
Example 33 with JwtClaims
use of org.jose4j.jwt.JwtClaims in project light-4j by networknt.
the class Http2ClientPoolIT method getTestClaims.
private static JwtClaims getTestClaims() {
JwtClaims claims = new JwtClaims();
claims.setIssuer("urn:com:networknt:oauth2:v1");
claims.setAudience("urn:com.networknt");
claims.setExpirationTimeMinutesInTheFuture(10);
// a unique identifier for the token
claims.setGeneratedJwtId();
// when the token was issued/created (now)
claims.setIssuedAtToNow();
// time before which the token is not yet valid (2 minutes ago)
claims.setNotBeforeMinutesInThePast(2);
claims.setClaim("version", "1.0");
claims.setClaim("user_id", "steve");
claims.setClaim("user_type", "EMPLOYEE");
claims.setClaim("client_id", "aaaaaaaa-1234-1234-1234-bbbbbbbb");
List<String> scope = Arrays.asList("api.r", "api.w");
// multi-valued claims work too and will end up as a JSON array
claims.setStringListClaim("scope", scope);
return claims;
}
Also used :
JwtClaims(org.jose4j.jwt.JwtClaims)
Example 34 with JwtClaims
use of org.jose4j.jwt.JwtClaims in project light-4j by networknt.
the class JwtIssuerTest method GroupToRoleAccessControlWrong.
/**
* The returned token contains groups User_API_Wrong for controller-group-role rule
* @throws Exception
*/
@Test
public void GroupToRoleAccessControlWrong() throws Exception {
JwtClaims claims = ClaimsUtil.getTestClaimsGroup("stevehu", "EMPLOYEE", "f7d42348-c647-4efb-a52d-4c5787421e72", Arrays.asList("portal.r", "portal.w"), "User_API_Wrong");
claims.setExpirationTimeMinutesInTheFuture(5256000);
String jwt = JwtIssuer.getJwt(claims);
System.out.println("***Long lived token Authorization code customer with a wrong controller groups that cannot be converted to roles ***: " + jwt);
}Example 35 with JwtClaims
use of org.jose4j.jwt.JwtClaims in project light-4j by networknt.
the class JwtIssuerTest method sidecarReferenceBootstrapWithServiceId.
/**
* This token is used to connect to the light-config-server with serviceId 0100 for testing with a service specific for a client.
* @throws Exception
*/
@Test
public void sidecarReferenceBootstrapWithServiceId() throws Exception {
JwtClaims claims = ClaimsUtil.getTestCcClaimsScopeService("f7d42348-c647-4efb-a52d-4c5787421e72", "A8E73740C0041C03D67C3A951AA1D7533C8F9F2FB57D7BA107210B9BC9E06DA2", "com.networknt.petstore-1.0.0");
claims.setExpirationTimeMinutesInTheFuture(5256000);
String jwt = JwtIssuer.getJwt(claims);
System.out.println("***Reference Long lived Bootstrap token for config server and controller: " + jwt);
}Aggregations
JwtClaims (org.jose4j.jwt.JwtClaims)120
Test (org.junit.Test)47
MalformedClaimException (org.jose4j.jwt.MalformedClaimException)18
JwtConsumer (org.jose4j.jwt.consumer.JwtConsumer)18
JwtConsumerBuilder (org.jose4j.jwt.consumer.JwtConsumerBuilder)17
InvalidJwtException (org.jose4j.jwt.consumer.InvalidJwtException)16
lombok.val (lombok.val)15
JoseException (org.jose4j.lang.JoseException)15
JsonWebSignature (org.jose4j.jws.JsonWebSignature)13
Map (java.util.Map)12
JwtContext (org.jose4j.jwt.consumer.JwtContext)11
JsonWebStructure (org.jose4j.jwx.JsonWebStructure)9
NumericDate (org.jose4j.jwt.NumericDate)8
KeyStoreException (java.security.KeyStoreException)6
ExpiredTokenException (com.networknt.exception.ExpiredTokenException)5
ArrayList (java.util.ArrayList)5
HashMap (java.util.HashMap)5
OidcRegisteredService (org.apereo.cas.services.OidcRegisteredService)5
JwksVerificationKeyResolver (org.jose4j.keys.resolvers.JwksVerificationKeyResolver)4
Test (org.junit.jupiter.api.Test)4
