Package org.springframework.security.oauth2.jwt
package org.springframework.security.oauth2.jwt
Core classes and interfaces providing support for JSON Web Token (JWT).
-
ClassDescriptionAn exception similar to
BadCredentialsException
that indicates aJwt
that is invalid in some way.The Registered Header Parameter Names defined by the JSON Web Token (JWT), JSON Web Signature (JWS) and JSON Web Encryption (JWE) specifications that may be contained in the JOSE Header of a JWT.The JSON Web Signature (JWS) header is a JSON object representing the header parameters of a JSON Web Token, that describe the cryptographic operations used to digitally sign or create a MAC of the contents of the JWS Protected Header and JWS Payload.A builder forJwsHeader
.An implementation of anAbstractOAuth2Token
representing a JSON Web Token (JWT).Helps configure aJwt
AClaimAccessor
for the "claims" that may be contained in the JSON object JWT Claims Set of a JSON Web Token (JWT).The Registered Claim Names defined by the JSON Web Token (JWT) specification that may be contained in the JSON object JWT Claims Set.TheJWT
Claims Set is a JSON object representing the claims conveyed by a JSON Web Token.A builder forJwtClaimsSet
.Implementations of this interface are responsible for "decoding" a JSON Web Token (JWT) from it's compact claims representation format to aJwt
.A factory forJwtDecoder
(s).An exception thrown when aJwtDecoder
orReactiveJwtDecoder
's lazy initialization fails.Allows creating aJwtDecoder
from an OpenID Provider Configuration or Authorization Server Metadata Request based on provided issuer and method invoked.Implementations of this interface are responsible for encoding a JSON Web Token (JWT) to it's compact claims representation format.A holder of parameters containing the JWS headers and JWT Claims Set.This exception is thrown when an error occurs while attempting to encode a JSON Web Token (JWT).Base exception for all JSON Web Token (JWT) related errors.Validates the "iss" claim in aJwt
, that is matches a configured valueAn implementation ofOAuth2TokenValidator
for verifying claims in a Jwt-based access tokenAn exception that results from an unsuccessfulOAuth2TokenValidatorResult
Provides factory methods for creatingOAuth2TokenValidator<Jwt>
Converts a JWT claim set, claim by claim.A low-level Nimbus implementation ofJwtDecoder
which takes a raw Nimbus configuration.A builder for creatingNimbusJwtDecoder
instances based on a JWK Set uri.A builder for creatingNimbusJwtDecoder
instances based on a public key.A builder for creatingNimbusJwtDecoder
instances based on aSecretKey
.Deprecated.An implementation of aJwtEncoder
that encodes a JSON Web Token (JWT) using the JSON Web Signature (JWS) Compact Serialization format.An implementation of aReactiveJwtDecoder
that "decodes" a JSON Web Token (JWT) and additionally verifies it's digital signature if the JWT is a JSON Web Signature (JWS).A builder for creatingNimbusReactiveJwtDecoder
instances based on a JWK Set uri.A builder for creatingNimbusReactiveJwtDecoder
instances.A builder for creatingNimbusReactiveJwtDecoder
instances based on a public key.A builder for creatingNimbusReactiveJwtDecoder
instances based on aSecretKey
.Implementations of this interface are responsible for "decoding" a JSON Web Token (JWT) from it's compact claims representation format to aJwt
.A factory forReactiveJwtDecoder
(s).Allows creating aReactiveJwtDecoder
from an OpenID Provider Configuration or Authorization Server Metadata Request based on provided issuer and method invoked.AJwtDecoder
that lazily initializes anotherJwtDecoder
AReactiveJwtDecoder
that lazily initializes anotherReactiveJwtDecoder
NimbusJwtDecoder
orJwtDecoders
instead