org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator クラス

org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator の継承関係図

org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator 連携図

公開メンバ関数
Map< String, String >	getWhitelist ()
void	setWhitelist (Map< String, String > whitelist)
boolean	isValid (JWT assertion)

非公開変数類
Map< String, String >	whitelist = new HashMap<>()
JWKSetCacheService	jwkCache

静的非公開変数類
static Logger	logger = LoggerFactory.getLogger(WhitelistedIssuerAssertionValidator.class)

詳解

Checks to see if the assertion was signed by a particular authority available from a whitelist

著者

jricher

関数詳解

getWhitelist()

Map<String, String> org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.getWhitelist ( )

inline

戻り値

the whitelist

                                                  {
                return whitelist;
        }

isValid()

boolean org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.isValid ( JWT  assertion )

inline

org.mitre.jwt.assertion.AssertionValidatorを実装しています。

                                              {

                if (!(assertion instanceof SignedJWT)) {
                        // unsigned assertion
                        return false;
                }

                JWTClaimsSet claims;
                try {
                        claims = assertion.getJWTClaimsSet();
                } catch (ParseException e) {
                        logger.debug("Invalid assertion claims");
                        return false;
                }

                if (Strings.isNullOrEmpty(claims.getIssuer())) {
                        logger.debug("No issuer for assertion, rejecting");
                        return false;
                }

                if (!whitelist.containsKey(claims.getIssuer())) {
                        logger.debug("Issuer is not in whitelist, rejecting");
                        return false;
                }

                String jwksUri = whitelist.get(claims.getIssuer());

                JWTSigningAndValidationService validator = jwkCache.getValidator(jwksUri);

                if (validator.validateSignature((SignedJWT) assertion)) {
                        return true;
                } else {
                        return false;
                }

        }

setWhitelist()

void org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.setWhitelist ( Map< String, String >  whitelist )

inline

引数

whitelist

the whitelist to set

                                                                {
                this.whitelist = whitelist;
        }

メンバ詳解

jwkCache

JWKSetCacheService org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.jwkCache

private

logger

Logger org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.logger = LoggerFactory.getLogger(WhitelistedIssuerAssertionValidator.class)

staticprivate

whitelist

Map<String, String> org.mitre.jwt.assertion.impl.WhitelistedIssuerAssertionValidator.whitelist = new HashMap<>()

private

Map of issuer -> JWKSetUri

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/mitreid-connect/src/openid-connect-common/src/main/java/org/mitre/jwt/assertion/impl/WhitelistedIssuerAssertionValidator.java