/forgerock/openam-v13/openam-entitlements/src/main/java/com/sun/identity/entitlement/ |
H A D | JwtPrincipal.java | 28 private final JsonValue jwt; field in class:JwtPrincipal 30 public JwtPrincipal(final JsonValue jwt) { argument 31 Reject.ifNull(jwt); 32 if (!jwt.get("sub").isString()) { 35 this.jwt = jwt; 40 return jwt.get("sub").asString(); 44 return jwt.get(key).asString(); 58 return jwt.toString().equals(principal.jwt [all...] |
/forgerock/openam/openam-entitlements/src/main/java/com/sun/identity/entitlement/ |
H A D | JwtPrincipal.java | 29 private final JsonValue jwt; field in class:JwtPrincipal 31 public JwtPrincipal(final JsonValue jwt) { argument 32 Reject.ifNull(jwt); 33 if (!jwt.get("sub").isString()) { 36 this.jwt = jwt; 41 return jwt.get("sub").asString(); 45 return jwt.get(key); 59 return jwt.toString().equals(principal.jwt [all...] |
/forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/session/stateless/cache/ |
H A D | StatelessJWTCache.java | 77 * @param jwt Possibly null JWT token. 80 public SessionInfo getSessionInfo(String jwt) { argument 81 return sessionInfoCache.get(jwt);
|
/forgerock/openam-v13/openam-oauth2-common/openid-connect-core/src/main/java/org/forgerock/openidconnect/ |
H A D | OpenIdConnectClientRegistration.java | 51 * Verifies that the supplied jwt is signed by this client. 53 boolean verifyJwtIdentity(OAuth2Jwt jwt); argument
|
/forgerock/openam/openam-oauth2/src/main/java/org/forgerock/openam/oauth2/ |
H A D | StatelessRefreshToken.java | 28 import org.forgerock.json.jose.jwt.Jwt; 40 * @param jwt The stateless token. 43 public StatelessRefreshToken(Jwt jwt, String jwtString) { argument 44 super(jwt, jwtString); 54 return jwt.getClaimsSet().getClaim(ACR, String.class); 59 return jwt.getClaimsSet().getClaim(REDIRECT_URI, String.class); 64 return jwt.getClaimsSet().getClaim(AUTH_MODULES, String.class); 70 tokenMap.put(getResourceString(REFRESH_TOKEN), jwt.build()); 114 return jwt.getClaimsSet().getClaim(AUTH_GRANT_ID, String.class);
|
H A D | StatelessAccessToken.java | 33 import org.forgerock.json.jose.jwt.Jwt; 50 * @param jwt The stateless token. 53 public StatelessAccessToken(Jwt jwt, String jwtString) { argument 54 super(jwt, jwtString); 64 return jwt.getClaimsSet().getClaim(NONCE, String.class); 74 return jwt.getClaimsSet().getClaim(GRANT_TYPE, String.class); 83 return json(jwt.getClaimsSet().getClaim(ProofOfPossession.CNF)); 89 tokenMap.put(getResourceString(ACCESS_TOKEN), jwt.build());
|
H A D | StatelessToken.java | 37 import org.forgerock.json.jose.jwt.Jwt; 38 import org.forgerock.json.jose.jwt.JwtClaimsSet; 44 protected final Jwt jwt; field in class:StatelessToken 48 public StatelessToken(Jwt jwt, String jwtString) { argument 49 this.jwt = jwt; 58 return jwt.getClaimsSet().getClaim(TOKEN_NAME, String.class); 62 return jwt.getClaimsSet().getJwtId(); 66 return jwt.getClaimsSet().getClaim(REALM, String.class); 71 Object scope = jwt [all...] |
H A D | AgentClientRegistration.java | 145 public boolean verifyJwtIdentity(OAuth2Jwt jwt) { argument
|
H A D | OpenAMClientRegistration.java | 647 public boolean verifyJwtIdentity(final OAuth2Jwt jwt) { argument 650 return verifyJwtBySharedSecret(jwt); 655 return byJWKs(jwt); 657 return byJWKsURI(jwt); 659 return byX509Key(jwt); 672 private boolean verifyJwtBySharedSecret(final OAuth2Jwt jwt) { argument 673 final String issuer = jwt.getSignedJwt().getClaimsSet().getIssuer(); 676 resolver.validateIdentity(jwt.getSignedJwt()); 677 return jwt.isContentValid() && jwt 683 byJWKs(OAuth2Jwt jwt) argument 724 byJWKsURI(OAuth2Jwt jwt) argument 755 byX509Key(OAuth2Jwt jwt) argument [all...] |
H A D | StatelessTokenStore.java | 204 SignedJwt jwt = jwtBuilder.jws(getTokenSigningHandler(request, signingAlgorithm)) 211 StatelessAccessToken accessToken = new StatelessAccessToken(jwt, jwt.build()); 452 SignedJwt jwt = jwtBuilder.jws(getTokenSigningHandler(request, signingAlgorithm)) 460 StatelessRefreshToken refreshToken = new StatelessRefreshToken(jwt, jwt.build()); 514 SignedJwt jwt = new JwtReconstruction().reconstructJwt(jwtString, SignedJwt.class); 515 String tokenId = jwt.getClaimsSet().getJwtId(); 517 verifySignature(jwt, request); 518 verifyTokenType(OAUTH_ACCESS_TOKEN, jwt); 700 verifySignature(SignedJwt jwt, OAuth2Request request) argument 705 verifySignature(OAuth2ProviderSettings providerSettings, SignedJwt jwt) argument 713 verifyTokenType(String requiredTokenType, SignedJwt jwt) argument [all...] |
/forgerock/openam/openam-oauth2/src/main/java/org/forgerock/openidconnect/ |
H A D | CheckSession.java | 42 import org.forgerock.json.jose.jwt.Jwt; 102 SignedJwt jwt = getIDToken(request); 104 if (jwt == null) { 108 final ClientRegistration clientRegistration = getClientRegistration(jwt); 110 if (clientRegistration != null && !isJwtValid(jwt, clientRegistration)) { 120 * @param jwt The JWT. 124 private ClientRegistration getClientRegistration(Jwt jwt) throws InvalidClientException, NotFoundException { argument 126 List<String> clients = jwt.getClaimsSet().getAudience(); 127 final String realm = (String)jwt.getClaimsSet().getClaim(REALM); 140 * @param jwt Th 144 isJwtValid(SignedJwt jwt, ClientRegistration clientRegistration) argument [all...] |
/forgerock/openam/openam-core/src/main/java/org/forgerock/openam/session/stateless/cache/ |
H A D | StatelessJWTCache.java | 77 * @param jwt Possibly null JWT token. 80 public SessionInfo getSessionInfo(String jwt) { argument 81 return sessionInfoCache.get(jwt); 103 * @param jwt the JWT to remove from the cache. 105 public void remove(String jwt) { argument 106 sessionInfoCache.remove(jwt);
|
/forgerock/openam-v13/openam-core/src/main/java/com/iplanet/dpro/session/service/ |
H A D | InternalSessionFactory.java | 209 private SessionID generateSessionId(String domain, String jwt) throws SessionException { argument 212 sid = SessionID.generateSessionID(serverConfig, domain, jwt);
|
/forgerock/openam-v13/openam-oauth2/src/main/java/org/forgerock/openam/openidconnect/ |
H A D | CheckSessionImpl.java | 43 import org.forgerock.json.jose.jwt.Jwt; 97 SignedJwt jwt = getIDToken(request); 99 if (jwt == null) { 103 final ClientRegistration clientRegistration = getClientRegistration(jwt); 105 if (clientRegistration != null && !isJwtValid(jwt, clientRegistration)) { 115 * @param jwt The JWT. 119 private ClientRegistration getClientRegistration(Jwt jwt) throws InvalidClientException, NotFoundException { argument 121 List<String> clients = jwt.getClaimsSet().getAudience(); 122 final String realm = (String)jwt.getClaimsSet().getClaim(REALM); 154 * @param jwt Th 158 isJwtValid(SignedJwt jwt, ClientRegistration clientRegistration) argument [all...] |
/forgerock/openam-v13/openam-oauth2-common/oauth2-core/src/main/java/org/forgerock/oauth2/core/ |
H A D | ClientRegistration.java | 141 * Verifies that the supplied jwt is signed by this client. 143 boolean verifyJwtIdentity(OAuth2Jwt jwt); argument
|
H A D | OAuth2Jwt.java | 50 private final SignedJwt jwt; field in class:OAuth2Jwt 55 OAuth2Jwt(SignedJwt jwt, TimeService timeService) { argument 56 this.jwt = jwt; 76 isSignatureValid = jwt.verify(signingHandler); 92 if (jwt.getClaimsSet().getClaim(key) == null) { 100 return jwt.getClaimsSet().getExpirationTime().getTime() > (timeService.now() + UNREASONABLE_LIFETIME_LIMIT); 104 return jwt.getClaimsSet().getExpirationTime().getTime() <= (timeService.now() - SKEW_ALLOWANCE); 108 boolean present = jwt.getClaimsSet().get("nbf").getObject() != null; 109 return present && timeService.now() + SKEW_ALLOWANCE < jwt [all...] |
/forgerock/openam/openam-oauth2/src/main/java/org/forgerock/oauth2/core/ |
H A D | ClientRegistration.java | 142 * Verifies that the supplied jwt is signed by this client. 144 boolean verifyJwtIdentity(OAuth2Jwt jwt); argument
|
H A D | OAuth2Jwt.java | 51 private final SignedJwt jwt; field in class:OAuth2Jwt 56 OAuth2Jwt(SignedJwt jwt, TimeService timeService) { argument 57 this.jwt = jwt; 77 isSignatureValid = jwt.verify(signingHandler); 105 if (jwt.getClaimsSet().getClaim(key) == null) { 113 return jwt.getClaimsSet().getExpirationTime().getTime() > (timeService.now() + UNREASONABLE_LIFETIME_LIMIT); 122 return jwt.getClaimsSet().getExpirationTime().getTime() <= (timeService.now() - SKEW_ALLOWANCE); 126 boolean present = jwt.getClaimsSet().get("nbf").getObject() != null; 127 return present && timeService.now() + SKEW_ALLOWANCE < jwt [all...] |
/forgerock/openam-v13/openam-core-rest/src/main/java/org/forgerock/openam/core/rest/authn/ |
H A D | RestAuthenticationHandler.java | 146 SignedJwt jwt = authIdHelper.reconstructAuthId(authId); 147 sessionId = getSessionId(jwt); 148 indexType = getAuthIndexType(jwt); 149 indexValue = getAuthIndexValue(jwt); 150 String realmDN = getRealmDomainName(jwt); 192 private String getRealmDomainName(SignedJwt jwt) { argument 193 return jwt.getClaimsSet().getClaim("realm", String.class); 196 private String getAuthIndexValue(SignedJwt jwt) { argument 197 return jwt.getClaimsSet().getClaim("authIndexValue", String.class); 200 private AuthIndexType getAuthIndexType(SignedJwt jwt) throw argument 207 getSessionId(SignedJwt jwt) argument [all...] |
/forgerock/openam/openam-core-rest/src/main/java/org/forgerock/openam/core/rest/authn/ |
H A D | RestAuthenticationHandler.java | 152 SignedJwt jwt = authIdHelper.reconstructAuthId(authId); 153 sessionId = getSessionId(jwt); 154 indexType = getAuthIndexType(jwt); 155 indexValue = getAuthIndexValue(jwt); 156 String realmDN = getRealmDomainName(jwt); 198 private String getRealmDomainName(SignedJwt jwt) { argument 199 return jwt.getClaimsSet().getClaim("realm", String.class); 202 private String getAuthIndexValue(SignedJwt jwt) { argument 203 return jwt.getClaimsSet().getClaim("authIndexValue", String.class); 206 private AuthIndexType getAuthIndexType(SignedJwt jwt) throw argument 213 getSessionId(SignedJwt jwt) argument [all...] |
/forgerock/openam/openam-oauth2/src/main/java/org/forgerock/openidconnect/ssoprovider/ |
H A D | OpenIdConnectSSOProvider.java | 38 import org.forgerock.json.jose.jwt.JwtClaimsSet; 300 public OAuth2Jwt parse(final String jwt) throws SSOException { argument 302 if (!JWT_PATTERN.matcher(jwt).matches()) { 305 return OAuth2Jwt.create(jwt);
|
/forgerock/openam-v13/openam-core/src/main/java/com/iplanet/dpro/session/ |
H A D | SessionID.java | 696 * @param jwt The JWT to encode as part of Stateless Sessions. 701 public static SessionID generateSessionID(SessionServerConfig serverConfig, String domain, String jwt) throws SessionException { argument 713 if (StringUtils.isNotBlank(jwt)) { 723 String sessionID = SessionID.makeSessionID(encryptedID, ext, jwt);
|
/forgerock/openam-v13/openam-oauth2/src/main/java/org/forgerock/openam/oauth2/ |
H A D | OpenAMClientRegistration.java | 612 public boolean verifyJwtIdentity(OAuth2Jwt jwt) { argument 617 return byJWKs(jwt); 619 return byJWKsURI(jwt); 621 return byX509Key(jwt); 630 private boolean byJWKs(OAuth2Jwt jwt) throws IdRepoException, SSOException, argument 645 final Key key = jwkMap.get(jwt.getSignedJwt().getHeader().getKeyId()); 647 return key != null && jwt.isValid(signingManager.newRsaSigningHandler(key)); 650 private boolean byJWKsURI(OAuth2Jwt jwt) throws IdRepoException, SSOException, MalformedURLException { argument 661 if (resolverService.getResolverForIssuer(jwt.getSignedJwt().getClaimsSet().getIssuer()) == null) { 663 resolverService.configureResolverWithJWK(jwt 681 byX509Key(OAuth2Jwt jwt) argument [all...] |
/forgerock/openam/openam-core/src/main/java/com/iplanet/dpro/session/ |
H A D | SessionID.java | 724 * @param jwt the stateless session JWT. 728 public static SessionID generateStatelessSessionID(SessionServerConfig serverConfig, String domain, String jwt) argument 730 Reject.ifNull(jwt); 736 final String sessionId = makeSessionID("", ext, jwt);
|
/forgerock/openam-v13/openam-federation/OpenFM/src/test/resources/com/sun/identity/workflow/ |
H A D | slim-openam-soap-sts-server.war | META-INF/ META-INF/MANIFEST.MF META-INF/maven/ META-INF/maven/org. ... |