org.xdi.oxauth.model.jws.HMACSigner クラス

org.xdi.oxauth.model.jws.HMACSigner の継承関係図

org.xdi.oxauth.model.jws.HMACSigner 連携図

公開メンバ関数
	HMACSigner (SignatureAlgorithm signatureAlgorithm, String sharedSecret)
String	generateSignature (String signingInput) throws SignatureException
boolean	validateSignature (String signingInput, String signature) throws SignatureException
SignatureAlgorithm	getSignatureAlgorithm ()
Jwt	sign (Jwt jwt) throws InvalidJwtException, SignatureException
boolean	validate (Jwt jwt)
boolean	validateAuthorizationCode (String authorizationCode, Jwt idToken)
boolean	validateAccessToken (String accessToken, Jwt idToken)

非公開変数類
String	sharedSecret

詳解

著者

Javier Rojas Blum

バージョン

July 31, 2016

構築子と解体子

HMACSigner()

org.xdi.oxauth.model.jws.HMACSigner.HMACSigner ( SignatureAlgorithm  signatureAlgorithm, String  sharedSecret  )

inline

                                                                                  {
        super(signatureAlgorithm);
        this.sharedSecret = sharedSecret;
    }

関数詳解

generateSignature()

String org.xdi.oxauth.model.jws.HMACSigner.generateSignature ( String  signingInput ) throws SignatureException

inline

                                                                                   {
        if (getSignatureAlgorithm() == null) {
            throw new SignatureException("The signature algorithm is null");
        }
        if (sharedSecret == null) {
            throw new SignatureException("The shared secret is null");
        }
        if (signingInput == null) {
            throw new SignatureException("The signing input is null");
        }

        String algorithm;
        switch (getSignatureAlgorithm()) {
            case HS256:
                algorithm = "HMACSHA256";
                break;
            case HS384:
                algorithm = "HMACSHA384";
                break;
            case HS512:
                algorithm = "HMACSHA512";
                break;
            default:
                throw new SignatureException("Unsupported signature algorithm");
        }

        try {
            SecretKey secretKey = new SecretKeySpec(sharedSecret.getBytes(Util.UTF8_STRING_ENCODING), algorithm);
            Mac mac = Mac.getInstance(algorithm);
            mac.init(secretKey);
            byte[] sig = mac.doFinal(signingInput.getBytes(Util.UTF8_STRING_ENCODING));
            return Base64Util.base64urlencode(sig);
        } catch (NoSuchAlgorithmException e) {
            throw new SignatureException(e);
        } catch (InvalidKeyException e) {
            throw new SignatureException(e);
        } catch (UnsupportedEncodingException e) {
            throw new SignatureException(e);
        } catch (Exception e) {
            throw new SignatureException(e);
        }
    }

getSignatureAlgorithm()

SignatureAlgorithm org.xdi.oxauth.model.jws.AbstractJwsSigner.getSignatureAlgorithm ( )

inlineinherited

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                                      {
        return signatureAlgorithm;
    }

sign()

Jwt org.xdi.oxauth.model.jws.AbstractJwsSigner.sign ( Jwt  jwt ) throws InvalidJwtException, SignatureException

inlineinherited

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                                                            {
        String signature = generateSignature(jwt.getSigningInput());
        jwt.setEncodedSignature(signature);
        return jwt;
    }

validate()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validate ( Jwt  jwt )

inlineinherited

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                     {
        try {
            String signingInput = jwt.getSigningInput();
            String signature = jwt.getEncodedSignature();

            return validateSignature(signingInput, signature);
        } catch (InvalidJwtException e) {
            LOG.error(e.getMessage(), e);
            return false;
        } catch (SignatureException e) {
            LOG.error(e.getMessage(), e);
            return false;
        } catch (Exception e) {
            LOG.error(e.getMessage(), e);
            return false;
        }
    }

validateAccessToken()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateAccessToken ( String  accessToken, Jwt  idToken  )

inlineinherited

                                                                        {
        return validateHash(accessToken, idToken.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
    }

validateAuthorizationCode()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateAuthorizationCode ( String  authorizationCode, Jwt  idToken  )

inlineinherited

                                                                                    {
        return validateHash(authorizationCode, idToken.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
    }

validateSignature()

boolean org.xdi.oxauth.model.jws.HMACSigner.validateSignature ( String  signingInput, String  signature  ) throws SignatureException

inline

                                                                                                      {
        String expectedSignature = generateSignature(signingInput);
        return StringUtils.nullToEmpty(signature).equals(StringUtils.nullToEmpty(expectedSignature));
    }

メンバ詳解

sharedSecret

String org.xdi.oxauth.model.jws.HMACSigner.sharedSecret

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/gluu/src/oxAuth/Model/src/main/java/org/xdi/oxauth/model/jws/HMACSigner.java