org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService の継承関係図

org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService 連携図

公開メンバ関数
	DefaultJWTEncryptionAndDecryptionService (Map< String, JWK > keys) throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

	DefaultJWTEncryptionAndDecryptionService (JWKSetKeyStore keyStore) throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

void	afterPropertiesSet ()

String	getDefaultEncryptionKeyId ()

void	setDefaultEncryptionKeyId (String defaultEncryptionKeyId)

String	getDefaultDecryptionKeyId ()

void	setDefaultDecryptionKeyId (String defaultDecryptionKeyId)

JWEAlgorithm	getDefaultAlgorithm ()

void	setDefaultAlgorithm (JWEAlgorithm defaultAlgorithm)

void	encryptJwt (JWEObject jwt)

void	decryptJwt (JWEObject jwt)

Map< String, JWK >	getAllPublicKeys ()

Collection< JWEAlgorithm >	getAllEncryptionAlgsSupported ()

Collection< EncryptionMethod >	getAllEncryptionEncsSupported ()

非公開メンバ関数
void	buildEncryptersAndDecrypters () throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

非公開変数類
Map< String, JWEEncrypter >	encrypters = new HashMap<>()

Map< String, JWEDecrypter >	decrypters = new HashMap<>()

String	defaultEncryptionKeyId

String	defaultDecryptionKeyId

JWEAlgorithm	defaultAlgorithm

Map< String, JWK >	keys = new HashMap<>()

静的非公開変数類
static final Logger	logger = LoggerFactory.getLogger(DefaultJWTEncryptionAndDecryptionService.class)

詳解

著者: wkim

構築子と解体子

◆ DefaultJWTEncryptionAndDecryptionService() [1/2]

org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.DefaultJWTEncryptionAndDecryptionService ( Map< String, JWK > keys ) throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

inline

Build this service based on the keys given. All public keys will be used to make encrypters, all private keys will be used to make decrypters.

引数

keys

例外

NoSuchAlgorithmException
InvalidKeySpecException
JOSEException

                                                                                                                                                        {
                 this.keys = keys;
                 buildEncryptersAndDecrypters();
         }

◆ DefaultJWTEncryptionAndDecryptionService() [2/2]

org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.DefaultJWTEncryptionAndDecryptionService ( JWKSetKeyStore keyStore ) throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

inline

Build this service based on the given keystore. All keys must have a key id (

kid

) field in order to be used.

引数

keyStore

例外

NoSuchAlgorithmException
InvalidKeySpecException
JOSEException

                                                                                                                                                          {
 
                 // convert all keys in the keystore to a map based on key id
                 for (JWK key : keyStore.getKeys()) {
                         if (!Strings.isNullOrEmpty(key.getKeyID())) {
                                 this.keys.put(key.getKeyID(), key);
                         } else {
                                 throw new IllegalArgumentException("Tried to load a key from a keystore without a 'kid' field: " + key);
                         }
                 }
 
                 buildEncryptersAndDecrypters();
 
         }

関数詳解

◆ afterPropertiesSet()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.afterPropertiesSet ( )

inline

                                          {
 
                 if (keys == null) {
                         throw new IllegalArgumentException("Encryption and decryption service must have at least one key configured.");
                 }
                 try {
                         buildEncryptersAndDecrypters();
                 } catch (NoSuchAlgorithmException e) {
                         throw new IllegalArgumentException("Encryption and decryption service could not find given algorithm.");
                 } catch (InvalidKeySpecException e) {
                         throw new IllegalArgumentException("Encryption and decryption service saw an invalid key specification.");
                 } catch (JOSEException e) {
                         throw new IllegalArgumentException("Encryption and decryption service was unable to process JOSE object.");
                 }
         }

◆ buildEncryptersAndDecrypters()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.buildEncryptersAndDecrypters ( ) throws NoSuchAlgorithmException, InvalidKeySpecException, JOSEException

inlineprivate

Builds all the encrypters and decrypters for this service based on the key map.

例外

                                                                                                                             {
 
                 for (Map.Entry<String, JWK> jwkEntry : keys.entrySet()) {
 
                         String id = jwkEntry.getKey();
                         JWK jwk = jwkEntry.getValue();
 
                         if (jwk instanceof RSAKey) {
                                 // build RSA encrypters and decrypters
 
                                 RSAEncrypter encrypter = new RSAEncrypter((RSAKey) jwk); // there should always at least be the public key
                                 encrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
                                 encrypters.put(id, encrypter);
 
                                 if (jwk.isPrivate()) { // we can decrypt!
                                         RSADecrypter decrypter = new RSADecrypter((RSAKey) jwk);
                                         decrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
                                         decrypters.put(id, decrypter);
                                 } else {
                                         logger.warn("No private key for key #" + jwk.getKeyID());
                                 }
                         } else if (jwk instanceof ECKey) {
 
                                 // build EC Encrypters and decrypters
 
                                 ECDHEncrypter encrypter = new ECDHEncrypter((ECKey) jwk);
                                 encrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
                                 encrypters.put(id, encrypter);
 
                                 if (jwk.isPrivate()) { // we can decrypt too
                                         ECDHDecrypter decrypter = new ECDHDecrypter((ECKey) jwk);
                                         decrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
                                         decrypters.put(id, decrypter);
                                 } else {
                                         logger.warn("No private key for key # " + jwk.getKeyID());
                                 }
 
                         } else if (jwk instanceof OctetSequenceKey) {
                                 // build symmetric encrypters and decrypters
 
                                 DirectEncrypter encrypter = new DirectEncrypter((OctetSequenceKey) jwk);
                                 encrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
                                 DirectDecrypter decrypter = new DirectDecrypter((OctetSequenceKey) jwk);
                                 decrypter.getJCAContext().setProvider(BouncyCastleProviderSingleton.getInstance());
 
                                 encrypters.put(id, encrypter);
                                 decrypters.put(id, decrypter);
 
                         } else {
                                 logger.warn("Unknown key type: " + jwk);
                         }
 
                 }
         }

◆ decryptJwt()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.decryptJwt ( JWEObject jwt )

inline

org.mitre.jwt.encryption.service.JWTEncryptionAndDecryptionServiceを実装しています。

                                               {
                 if (getDefaultDecryptionKeyId() == null) {
                         throw new IllegalStateException("Tried to call default decryption with no default decrypter ID set");
                 }
 
                 JWEDecrypter decrypter = decrypters.get(getDefaultDecryptionKeyId());
 
                 try {
                         jwt.decrypt(decrypter);
                 } catch (JOSEException e) {
 
                         logger.error("Failed to decrypt JWT, error was: ", e);
                 }
 
         }

◆ encryptJwt()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.encryptJwt ( JWEObject jwt )

inline

org.mitre.jwt.encryption.service.JWTEncryptionAndDecryptionServiceを実装しています。

                                               {
                 if (getDefaultEncryptionKeyId() == null) {
                         throw new IllegalStateException("Tried to call default encryption with no default encrypter ID set");
                 }
 
                 JWEEncrypter encrypter = encrypters.get(getDefaultEncryptionKeyId());
 
                 try {
                         jwt.encrypt(encrypter);
                 } catch (JOSEException e) {
 
                         logger.error("Failed to encrypt JWT, error was: ", e);
                 }
 
         }

◆ getAllEncryptionAlgsSupported()

Collection<JWEAlgorithm> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getAllEncryptionAlgsSupported ( )

inline

org.mitre.jwt.encryption.service.JWTEncryptionAndDecryptionServiceを実装しています。

                                                                         {
                 Set<JWEAlgorithm> algs = new HashSet<>();
 
                 for (JWEEncrypter encrypter : encrypters.values()) {
                         algs.addAll(encrypter.supportedJWEAlgorithms());
                 }
 
                 for (JWEDecrypter decrypter : decrypters.values()) {
                         algs.addAll(decrypter.supportedJWEAlgorithms());
                 }
 
                 return algs;
         }

◆ getAllEncryptionEncsSupported()

Collection<EncryptionMethod> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getAllEncryptionEncsSupported ( )

inline

org.mitre.jwt.encryption.service.JWTEncryptionAndDecryptionServiceを実装しています。

                                                                             {
                 Set<EncryptionMethod> encs = new HashSet<>();
 
                 for (JWEEncrypter encrypter : encrypters.values()) {
                         encs.addAll(encrypter.supportedEncryptionMethods());
                 }
 
                 for (JWEDecrypter decrypter : decrypters.values()) {
                         encs.addAll(decrypter.supportedEncryptionMethods());
                 }
 
                 return encs;
         }

◆ getAllPublicKeys()

Map<String, JWK> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getAllPublicKeys ( )

inline

org.mitre.jwt.encryption.service.JWTEncryptionAndDecryptionServiceを実装しています。

                                                    {
                 Map<String, JWK> pubKeys = new HashMap<>();
 
                 // pull out all public keys
                 for (String keyId : keys.keySet()) {
                         JWK key = keys.get(keyId);
                         JWK pub = key.toPublicJWK();
                         if (pub != null) {
                                 pubKeys.put(keyId, pub);
                         }
                 }
 
                 return pubKeys;
         }

◆ getDefaultAlgorithm()

JWEAlgorithm org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getDefaultAlgorithm ( )

inline

                                                   {
                 return defaultAlgorithm;
         }

◆ getDefaultDecryptionKeyId()

String org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getDefaultDecryptionKeyId ( )

inline

                                                   {
                 if (defaultDecryptionKeyId != null) {
                         return defaultDecryptionKeyId;
                 } else if (keys.size() == 1) {
                         // if there's only one key in the map, it's the default
                         return keys.keySet().iterator().next();
                 } else {
                         return null;
                 }
         }

◆ getDefaultEncryptionKeyId()

String org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.getDefaultEncryptionKeyId ( )

inline

                                                   {
                 if (defaultEncryptionKeyId != null) {
                         return defaultEncryptionKeyId;
                 } else if (keys.size() == 1) {
                         // if there's only one key in the map, it's the default
                         return keys.keySet().iterator().next();
                 } else {
                         return null;
                 }
         }

◆ setDefaultAlgorithm()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.setDefaultAlgorithm ( JWEAlgorithm defaultAlgorithm )

inline

                                                                        {
                 this.defaultAlgorithm = defaultAlgorithm;
         }

◆ setDefaultDecryptionKeyId()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.setDefaultDecryptionKeyId ( String defaultDecryptionKeyId )

inline

                                                                              {
                 this.defaultDecryptionKeyId = defaultDecryptionKeyId;
         }

◆ setDefaultEncryptionKeyId()

void org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.setDefaultEncryptionKeyId ( String defaultEncryptionKeyId )

inline

                                                                              {
                 this.defaultEncryptionKeyId = defaultEncryptionKeyId;
         }

メンバ詳解

◆ decrypters

Map<String, JWEDecrypter> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.decrypters = new HashMap<>()

private

◆ defaultAlgorithm

JWEAlgorithm org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.defaultAlgorithm

private

◆ defaultDecryptionKeyId

String org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.defaultDecryptionKeyId

private

◆ defaultEncryptionKeyId

String org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.defaultEncryptionKeyId

private

◆ encrypters

Map<String, JWEEncrypter> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.encrypters = new HashMap<>()

private

◆ keys

Map<String, JWK> org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.keys = new HashMap<>()

private

◆ logger

final Logger org.mitre.jwt.encryption.service.impl.DefaultJWTEncryptionAndDecryptionService.logger = LoggerFactory.getLogger(DefaultJWTEncryptionAndDecryptionService.class)

staticprivate

Logger for this class

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/mitreid-connect/src/openid-connect-common/src/main/java/org/mitre/jwt/encryption/service/impl/DefaultJWTEncryptionAndDecryptionService.java

公開メンバ関数

非公開メンバ関数

非公開変数類

静的非公開変数類

詳解

構築子と解体子

◆ DefaultJWTEncryptionAndDecryptionService() [1/2]

◆ DefaultJWTEncryptionAndDecryptionService() [2/2]

関数詳解

◆ afterPropertiesSet()

◆ buildEncryptersAndDecrypters()

◆ decryptJwt()

◆ encryptJwt()

◆ getAllEncryptionAlgsSupported()

◆ getAllEncryptionEncsSupported()

◆ getAllPublicKeys()

◆ getDefaultAlgorithm()

◆ getDefaultDecryptionKeyId()

◆ getDefaultEncryptionKeyId()

◆ setDefaultAlgorithm()

◆ setDefaultDecryptionKeyId()

◆ setDefaultEncryptionKeyId()

メンバ詳解

◆ decrypters

◆ defaultAlgorithm

◆ defaultDecryptionKeyId

◆ defaultEncryptionKeyId

◆ encrypters

◆ keys

◆ logger