Class DefaultClaimsSetVerifier
java.lang.Object
com.broadleafcommerce.auth.autoconfigure.DefaultClaimsSetVerifier
- All Implemented Interfaces:
org.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier
public class DefaultClaimsSetVerifier
extends Object
implements org.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier
Verifies the JWT token being utilized at the resource tier (during the JWT decode) contains the claims issued from the authorization service.
Since we are in the authorization service, the claims that are validated here correspond directly
to the claims added from TokenEnhancers
.
- Author:
- Phillip Verheyden (phillipuniverse)
-
Constructor Summary
ConstructorDescriptionDefaultClaimsSetVerifier
(List<String> validIssuers, List<String> validAudiences) -
Method Summary
-
Constructor Details
-
DefaultClaimsSetVerifier
-
-
Method Details
-
verify
public void verify(Map<String, Object> claims) throws org.springframework.security.oauth2.common.exceptions.InvalidTokenException- Specified by:
verify
in interfaceorg.springframework.security.oauth2.provider.token.store.JwtClaimsSetVerifier
- Throws:
org.springframework.security.oauth2.common.exceptions.InvalidTokenException
-