org.xdi.oxauth.model.jws.AbstractJwsSigner クラス

org.xdi.oxauth.model.jws.AbstractJwsSigner の継承関係図

org.xdi.oxauth.model.jws.AbstractJwsSigner 連携図

公開メンバ関数
	AbstractJwsSigner (SignatureAlgorithm signatureAlgorithm)
SignatureAlgorithm	getSignatureAlgorithm ()
Jwt	sign (Jwt jwt) throws InvalidJwtException, SignatureException
boolean	validate (Jwt jwt)
boolean	validateAuthorizationCode (String authorizationCode, Jwt idToken)
boolean	validateAccessToken (String accessToken, Jwt idToken)
abstract String	generateSignature (String signingInput) throws SignatureException
abstract boolean	validateSignature (String signingInput, String signature) throws SignatureException

非公開メンバ関数
boolean	validateHash (String tokenCode, String tokenHash)

非公開変数類
SignatureAlgorithm	signatureAlgorithm

静的非公開変数類
static final Logger	LOG = Logger.getLogger(AbstractJwsSigner.class)

詳解

著者

Javier Rojas Blum

バージョン

July 31, 2016

構築子と解体子

AbstractJwsSigner()

org.xdi.oxauth.model.jws.AbstractJwsSigner.AbstractJwsSigner ( SignatureAlgorithm  signatureAlgorithm )

inline

                                                                    {
        this.signatureAlgorithm = signatureAlgorithm;
    }

関数詳解

generateSignature()

abstract String org.xdi.oxauth.model.jws.AbstractJwsSigner.generateSignature ( String  signingInput ) throws SignatureException

abstract

getSignatureAlgorithm()

SignatureAlgorithm org.xdi.oxauth.model.jws.AbstractJwsSigner.getSignatureAlgorithm ( )

inline

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                                      {
        return signatureAlgorithm;
    }

sign()

Jwt org.xdi.oxauth.model.jws.AbstractJwsSigner.sign ( Jwt  jwt ) throws InvalidJwtException, SignatureException

inline

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                                                            {
        String signature = generateSignature(jwt.getSigningInput());
        jwt.setEncodedSignature(signature);
        return jwt;
    }

validate()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validate ( Jwt  jwt )

inline

org.xdi.oxauth.model.jws.JwsSignerを実装しています。

                                     {
        try {
            String signingInput = jwt.getSigningInput();
            String signature = jwt.getEncodedSignature();

            return validateSignature(signingInput, signature);
        } catch (InvalidJwtException e) {
            LOG.error(e.getMessage(), e);
            return false;
        } catch (SignatureException e) {
            LOG.error(e.getMessage(), e);
            return false;
        } catch (Exception e) {
            LOG.error(e.getMessage(), e);
            return false;
        }
    }

validateAccessToken()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateAccessToken ( String  accessToken, Jwt  idToken  )

inline

                                                                        {
        return validateHash(accessToken, idToken.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
    }

validateAuthorizationCode()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateAuthorizationCode ( String  authorizationCode, Jwt  idToken  )

inline

                                                                                    {
        return validateHash(authorizationCode, idToken.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
    }

validateHash()

boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateHash ( String  tokenCode, String  tokenHash  )

inlineprivate

                                                                     {
        boolean result = false;

        try {
            if (signatureAlgorithm != null
                    && StringUtils.isNotBlank(tokenCode)
                    && StringUtils.isNotBlank(tokenHash)) {
                byte[] digest = null;
                if (signatureAlgorithm == SignatureAlgorithm.HS256 ||
                        signatureAlgorithm == SignatureAlgorithm.RS256 ||
                        signatureAlgorithm == SignatureAlgorithm.ES256) {
                    digest = JwtUtil.getMessageDigestSHA256(tokenCode);
                } else if (signatureAlgorithm == SignatureAlgorithm.HS384 ||
                        signatureAlgorithm == SignatureAlgorithm.RS384 ||
                        signatureAlgorithm == SignatureAlgorithm.ES512) {
                    digest = JwtUtil.getMessageDigestSHA384(tokenCode);
                } else if (signatureAlgorithm == SignatureAlgorithm.HS512 ||
                        signatureAlgorithm == SignatureAlgorithm.RS384 ||
                        signatureAlgorithm == SignatureAlgorithm.ES512) {
                    digest = JwtUtil.getMessageDigestSHA512(tokenCode);
                }

                if (digest != null) {
                    byte[] lefMostHalf = new byte[digest.length / 2];
                    System.arraycopy(digest, 0, lefMostHalf, 0, lefMostHalf.length);
                    String hash = Base64Util.base64urlencode(lefMostHalf);

                    result = hash.equals(tokenHash);
                }
            }
        } catch (NoSuchProviderException e) {
            LOG.error(e.getMessage(), e);
            result = false;
        } catch (NoSuchAlgorithmException e) {
            LOG.error(e.getMessage(), e);
            result = false;
        } catch (Exception e) {
            LOG.error(e.getMessage(), e);
            result = false;
        }

        return result;
    }

validateSignature()

abstract boolean org.xdi.oxauth.model.jws.AbstractJwsSigner.validateSignature ( String  signingInput, String  signature  ) throws SignatureException

abstract

メンバ詳解

LOG

final Logger org.xdi.oxauth.model.jws.AbstractJwsSigner.LOG = Logger.getLogger(AbstractJwsSigner.class)

staticprivate

signatureAlgorithm

SignatureAlgorithm org.xdi.oxauth.model.jws.AbstractJwsSigner.signatureAlgorithm

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/gluu/src/oxAuth/Model/src/main/java/org/xdi/oxauth/model/jws/AbstractJwsSigner.java