Class RootTokenIdRevocationValidator
- java.lang.Object
-
- net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
-
- net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
-
- net.shibboleth.utilities.java.support.component.AbstractIdentifiableInitializableComponent
-
- net.shibboleth.oidc.jwt.claims.AbstractClaimsValidator
-
- net.shibboleth.idp.plugin.oidc.op.security.jwt.claims.impl.RootTokenIdRevocationValidator
-
- All Implemented Interfaces:
net.shibboleth.oidc.jwt.claims.ClaimsValidator,Component,DestructableComponent,IdentifiableComponent,IdentifiedComponent,InitializableComponent
public class RootTokenIdRevocationValidator extends net.shibboleth.oidc.jwt.claims.AbstractClaimsValidatorVerifies the root identifier (TokenClaimsSet.KEY_ROOT_JTIfrom the JWT against revocation via configurableRevocationCache. If the root identifier is not found, JWT id is used.
-
-
Field Summary
Fields Modifier and Type Field Description private StringcontextContext in revocation cache.private RevocationCacherevocationCacheMessage revocation cache instance to use.
-
Constructor Summary
Constructors Constructor Description RootTokenIdRevocationValidator()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected voiddoInitialize()protected voiddoValidate(com.nimbusds.jwt.JWTClaimsSet claims, ProfileRequestContext profileRequestContext)voidsetContext(String ctx)Set the revocation cache context that partitions entries.voidsetRevocationCache(RevocationCache cache)Set the revocation cache instance to use.-
Methods inherited from class net.shibboleth.oidc.jwt.claims.AbstractClaimsValidator
setActivationCondition, validate
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiableInitializableComponent
setId
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractIdentifiedInitializableComponent
getId
-
Methods inherited from class net.shibboleth.utilities.java.support.component.AbstractInitializableComponent
destroy, doDestroy, initialize, isDestroyed, isInitialized
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
-
Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiableComponent
setId
-
Methods inherited from interface net.shibboleth.utilities.java.support.component.IdentifiedComponent
getId
-
-
-
-
Field Detail
-
revocationCache
@NonnullAfterInit private RevocationCache revocationCache
Message revocation cache instance to use.
-
context
@NonnullAfterInit @NotEmpty private String context
Context in revocation cache.
-
-
Method Detail
-
setRevocationCache
public void setRevocationCache(@Nonnull RevocationCache cache)Set the revocation cache instance to use.- Parameters:
cache- revocation cache to set
-
setContext
public void setContext(@Nonnull @NotEmpty String ctx)
Set the revocation cache context that partitions entries.- Parameters:
ctx- context value
-
doInitialize
protected void doInitialize() throws ComponentInitializationException- Overrides:
doInitializein classAbstractIdentifiedInitializableComponent- Throws:
ComponentInitializationException
-
doValidate
protected void doValidate(@Nonnull com.nimbusds.jwt.JWTClaimsSet claims, @Nullable ProfileRequestContext profileRequestContext) throws net.shibboleth.oidc.jwt.claims.JWTValidationException- Specified by:
doValidatein classnet.shibboleth.oidc.jwt.claims.AbstractClaimsValidator- Throws:
net.shibboleth.oidc.jwt.claims.JWTValidationException
-
-