Package com.broadleafcommerce.auth.autoconfigure

Class DefaultClaimsSetVerifier

java.lang.Object

com.broadleafcommerce.auth.autoconfigure.DefaultClaimsSetVerifier

All Implemented Interfaces:

org.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier

public class DefaultClaimsSetVerifier
extends Object
implements org.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier

Verifies the JWT token being utilized at the resource tier (during the JWT decode) contains the claims issued from the authorization service.

Since we are in the authorization service, the claims that are validated here correspond directly to the claims added from TokenEnhancers.

Author:

Phillip Verheyden (phillipuniverse)

Constructor Summary

Constructors

Constructor	Description
DefaultClaimsSetVerifier(List<String> validIssuers, List<String> validAudiences)

Method Summary

Modifier and Type	Method	Description
void	verify(Map<String,Object> claims)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

DefaultClaimsSetVerifier

public DefaultClaimsSetVerifier(List<String> validIssuers,
 List<String> validAudiences)

Method Details

verify

public void verify(Map<String,Object> claims)
            throws org.springframework.security.oauth2.common.exceptions.InvalidTokenException

Specified by:

verify in interface org.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier

Throws:

org.springframework.security.oauth2.common.exceptions.InvalidTokenException