本文整理汇总了Java中org.jose4j.jwt.JwtClaims.getClaimValue方法的典型用法代码示例。如果您正苦于以下问题:Java JwtClaims.getClaimValue方法的具体用法?Java JwtClaims.getClaimValue怎么用?Java JwtClaims.getClaimValue使用的例子?那么, 这里精选的方法代码示例或许可以为您提供帮助。您也可以进一步了解该方法所在类org.jose4j.jwt.JwtClaims
的用法示例。
在下文中一共展示了JwtClaims.getClaimValue方法的7个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Java代码示例。
示例1: SSOData
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
/**********************************************
* Constructors
**********************************************/
public SSOData(final JwtClaims jwtClaims) throws MalformedClaimException {
Objects.requireNonNull(jwtClaims);
this.instanceID = jwtClaims.getClaimValue(KEY_INSTANCE_ID, String.class);
this.userID = jwtClaims.getClaimValue(KEY_USER_ID, String.class);
this.userExternalID = jwtClaims.getClaimValue(KEY_USER_EXTERNAL_ID, String.class);
this.userFirstName = jwtClaims.getClaimValue(KEY_USER_FIRST_NAME, String.class);
this.userLastName = jwtClaims.getClaimValue(KEY_USER_LAST_NAME, String.class);
this.userRole = jwtClaims.getClaimValue(KEY_USER_ROLE, String.class);
this.userLocale = jwtClaims.getClaimValue(KEY_USER_LOCALE, String.class);
this.issuer = jwtClaims.getClaimValue(KEY_ISSUER, String.class);
this.audience = jwtClaims.getClaimValue(KEY_AUDIENCE, String.class);
this.instanceName = jwtClaims.getClaimValue(KEY_INSTANCE_NAME, String.class);
this.userFullName = jwtClaims.getClaimValue(KEY_USER_FULL_NAME, String.class);
this.entityType = jwtClaims.getClaimValue(KEY_ENTITY_TYPE, String.class);
this.themeTextColor = jwtClaims.getClaimValue(KEY_THEME_TEXT_COLOR, String.class);
this.themeBackgroundColor = jwtClaims.getClaimValue(KEY_THEME_BACKGROUND_COLOR, String.class);
this.tags = jwtClaims.getClaimValue(KEY_TAGS, List.class);
}
示例2: toUserInfo
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
private static UserInfo toUserInfo(JwtClaims jwtClaims) {
try {
List<String> audiences = jwtClaims.getAudience();
if (audiences == null || audiences.isEmpty()) {
throw new UnauthenticatedException("Missing audience field");
}
String email = jwtClaims.getClaimValue(EMAIL_CLAIM_NAME, String.class);
String subject = jwtClaims.getSubject();
if (subject == null) {
throw new UnauthenticatedException("Missing subject field");
}
String issuer = jwtClaims.getIssuer();
if (issuer == null) {
throw new UnauthenticatedException("Missing issuer field");
}
return new UserInfo(audiences, email, subject, issuer);
} catch (MalformedClaimException exception) {
throw new UnauthenticatedException("Cannot read malformed claim", exception);
}
}
示例3: validateToken
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
/**
* Check if it was issued by the server and if it's not expired
* @param java_web_token
* @throws InvalidJwtException if the token is invalid
*/
private String validateToken(String java_web_token) throws InvalidJwtException {
String username = null;
RsaJsonWebKey rsaJsonWebKey = RsaKeyProducer.produce();
System.out.println("RSA hash code... " + rsaJsonWebKey.hashCode());
JwtConsumer jwtConsumer = new JwtConsumerBuilder()
.setRequireSubject() // the JWT must have a subject claim
.setVerificationKey(rsaJsonWebKey.getKey()) // verify the signature with the public key
.build(); // create the JwtConsumer instance
try {
// Validate the JWT and process it to the Claims
JwtClaims jwtClaims = jwtConsumer.processToClaims(java_web_token);
username = (String) jwtClaims.getClaimValue("sub");
System.out.println("JWT validation succeeded! " + jwtClaims);
} catch (InvalidJwtException e) {
e.printStackTrace(); //on purpose
throw e;
}
return username;
}
示例4: verifyToken
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
public static User verifyToken(String data) {
JwtConsumer jwtConsumer = new JwtConsumerBuilder()
.setRequireExpirationTime() // the JWT must have an expiration time
.setMaxFutureValidityInMinutes(60*24) // but the expiration time can't be too crazy
.setAllowedClockSkewInSeconds(30) // allow some leeway in validating time based claims to account for clock skew
.setRequireSubject() // the JWT must have a subject claim
.setExpectedIssuer("server") // whom the JWT needs to have been issued by
.setExpectedAudience("client") // to whom the JWT is intended for
.setVerificationKey(new HmacKey(secret.getBytes())) // verify the signature with the public key
.build(); // create the JwtConsumer instance
try
{
// Validate the JWT and process it to the Claims
JwtClaims jwtClaims = jwtConsumer.processToClaims(data);
ObjectMapper mapper = new ObjectMapper();
String json = (String) jwtClaims.getClaimValue("userData");
byte[] bytes = json.getBytes("UTF-8");
return mapper.readValue(bytes, User.class);
}
catch (Exception e) {
return null;
}
}
示例5: getName
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
/**
* This just parses the token without validation to extract one of the following in order to obtain
* the name to be used for the principal:
* upn
* preferred_username
* subject
*
* If there is an exception it sets the name to INVALID_TOKEN_NAME and saves the exception for access
* via {@link #getJwtException()}
*
* @return the name to use for the principal
*/
public String getName() {
if (name == null) {
name = "INVALID_TOKEN_NAME";
try {
// Build a JwtConsumer that doesn't check signatures or do any validation.
JwtConsumer firstPassJwtConsumer = new JwtConsumerBuilder()
.setSkipAllValidators()
.setDisableRequireSignature()
.setSkipSignatureVerification()
.build();
//The first JwtConsumer is basically just used to parse the JWT into a JwtContext object.
JwtContext jwtContext = firstPassJwtConsumer.process(bearerToken);
JwtClaims claimsSet = jwtContext.getJwtClaims();
// We have to determine the unique name to use as the principal name. It comes from upn, preferred_username, sub in that order
name = claimsSet.getClaimValue("upn", String.class);
if (name == null) {
name = claimsSet.getClaimValue("preferred_username", String.class);
if (name == null) {
name = claimsSet.getSubject();
}
}
} catch (Exception e) {
jwtException = e;
}
}
return name;
}
示例6: verify
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
/**
* Verify and parse a single-sign-on attempt coming from the staffbase app.
*
* @param raw the raw JWT string
* @return the parsed data from the sign-on attempt
* @throws SSOException if the verification of the sign-on attempt fails
*/
public SSOData verify(final String raw) throws SSOException {
if (logger.isDebugEnabled()) {
logger.debug("Attempting to decrypt SSO JWT. "
+ "[raw=" + raw + "]");
}
Objects.requireNonNull(raw);
try {
// Process and verify the request on the basis of jwt verification
final JwtClaims jwtClaims = this.jwtConsumer
.process(raw)
.getJwtClaims();
// Add the instance id verification step
final String instanceId = jwtClaims.getClaimValue(EXPECTED_CLAIM_INSTANCE_ID, String.class);
if (instanceId == null || instanceId.isEmpty()) {
if (logger.isFatalEnabled()) {
logger.fatal("Encountered illegal sso attempt. "
+ "Bad instance_id. "
+ "[instance_id=" + instanceId + "]");
}
throw new SSOException("Missing or malformed instnance_id.");
}
if (logger.isDebugEnabled()) {
logger.debug("Verification of single-sign-on JWT succeeded. "
+ "[raw=" + raw + "] "
+ "[claims=" + jwtClaims + "]");
}
// Parse and return the container data.
return new SSOData(jwtClaims);
} catch (final MalformedClaimException malformationException) {
if (logger.isFatalEnabled()) {
logger.fatal("Encountered malformed sso attempt.", malformationException);
}
throw new SSOException(malformationException.getMessage(), malformationException);
} catch (final InvalidJwtException invalidJwtException) {
if (logger.isFatalEnabled()) {
logger.fatal("Encountered illegal sso attempt.", invalidJwtException);
}
throw new SSOException(invalidJwtException.getMessage(), invalidJwtException);
}
}
示例7: getUsernameFromToken
import org.jose4j.jwt.JwtClaims; //导入方法依赖的package包/类
public String getUsernameFromToken(String token) throws InvalidJwtException {
JwtConsumer jwtConsumer = new JwtConsumerBuilder().setEvaluationTime(NumericDate.now())
.setVerificationKey(signatureKey).build();
JwtClaims jwtClaims = jwtConsumer.processToClaims(token);
return (String) jwtClaims.getClaimValue("username");
}