|
| static final String | RFP = "rfp" |
| |
| static final String | KID = "kid" |
| |
| static final String | IAT = "iat" |
| |
| static final String | EXP = "exp" |
| |
| static final String | ISS = "iss" |
| |
| static final String | AUD = "aud" |
| |
| static final String | TARGET_LINK_URI = "target_link_uri" |
| |
| static final String | AS = "as" |
| |
| static final String | JTI = "jti" |
| |
| static final String | AT_HASH = "at_hash" |
| |
| static final String | C_HASH = "c_hash" |
| |
| static final String | ADDITIONAL_CLAIMS = "additional_claims" |
| |
- 著者
- Javier Rojas Blum
- バージョン
- May 3, 2017
◆ ADDITIONAL_CLAIMS
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.ADDITIONAL_CLAIMS = "additional_claims" |
|
static |
◆ AS
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.AS = "as" |
|
static |
String identifying the authorization server that this request was sent to.
◆ AT_HASH
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.AT_HASH = "at_hash" |
|
static |
Access Token hash value. Its value is the base64url encoding of the left-most half of the hash of the octets of the ASCII representation of the "access_token" value, where the hash algorithm used is the hash algorithm used in the "alg" parameter of the State Token's JWS header. For instance, if the "alg" is "RS256", hash the "access_token" value with SHA-256, then take the left-most 128 bits and base64url encode them. The "at_hash" value is a case sensitive string. This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and issued with a "access_token" in the authorization response.
◆ AUD
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.AUD = "aud" |
|
static |
String identifying the client that this state value is intended for.
◆ C_HASH
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.C_HASH = "c_hash" |
|
static |
Code hash value. Its value is the base64url encoding of the left-most half of the hash of the octets of the ASCII representation of the "code" value, where the hash algorithm used is the hash algorithm used in the "alg" header parameter of the State Token's JWS [RFC7515] header. For instance, if the "alg" is "HS512", hash the "code" value with SHA-512, then take the left-most 256 bits and base64url encode them. The "c_hash" value is a case sensitive string. This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and issued with a "code" in the authorization response.
◆ EXP
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.EXP = "exp" |
|
static |
The expiration time claim identifies the expiration time on or after which the JWT MUST NOT be accepted for processing. The processing of the "exp" claim requires that the current date/time MUST be before the expiration date/time listed in the "exp" claim. Implementers MAY provide for some small leeway, usually no more than a few minutes, to account for clock skew. Its value MUST be a number containing an IntDate value.
◆ IAT
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.IAT = "iat" |
|
static |
Timestamp of when this Authorization Request was issued.
◆ ISS
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.ISS = "iss" |
|
static |
String identifying the party that issued this state value.
◆ JTI
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.JTI = "jti" |
|
static |
The "jti" (JWT ID) claim provides a unique identifier for the JWT. The identifier value MUST be assigned in a manner that ensures that there is a negligible probability that the same value will be accidentally assigned to a different data object. The "jti" claim can be used to prevent the JWT from being replayed. The "jti" value is a case-sensitive string.
◆ KID
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.KID = "kid" |
|
static |
Identifier of the key used to sign this state token at the issuer. Identifier of the key used to encrypt this JWT state token at the issuer.
◆ RFP
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.RFP = "rfp" |
|
static |
String containing a verifiable identifier for the browser session, that cannot be guessed by a third party. The verification of this element by the client protects it from accepting authorization responses generated in response to forged requests generated by third parties.
◆ TARGET_LINK_URI
| final String org.xdi.oxauth.model.jwt.JwtStateClaimName.TARGET_LINK_URI = "target_link_uri" |
|
static |
URI containing the location the user agent is to be redirected to after authorization.
このインタフェース詳解は次のファイルから抽出されました:
