Package com.google.auth.oauth2
Class TokenVerifier
- java.lang.Object
-
- com.google.auth.oauth2.TokenVerifier
-
public class TokenVerifier extends java.lang.ObjectHandle verification of Google-signed JWT tokens.- Since:
- 0.21.0
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static classTokenVerifier.Builder(package private) static classTokenVerifier.PublicKeyLoaderCustom CacheLoader for mapping certificate urls to the contained public keys.static classTokenVerifier.VerificationExceptionCustom exception for wrapping all verification errors.
-
Field Summary
Fields Modifier and Type Field Description private java.lang.Stringaudienceprivate java.lang.StringcertificatesLocationprivate com.google.api.client.util.Clockclockprivate static java.lang.StringFEDERATED_SIGNON_CERT_URLprivate static java.lang.StringIAP_CERT_URLprivate java.lang.Stringissuerprivate java.security.PublicKeypublicKeyprivate com.google.common.cache.LoadingCache<java.lang.String,java.util.Map<java.lang.String,java.security.PublicKey>>publicKeyCacheprivate static java.util.Set<java.lang.String>SUPPORTED_ALGORITHMS
-
Constructor Summary
Constructors Modifier Constructor Description privateTokenVerifier(TokenVerifier.Builder builder)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description private java.lang.StringgetCertificateLocation(com.google.api.client.json.webtoken.JsonWebSignature jsonWebSignature)static TokenVerifier.BuildernewBuilder()com.google.api.client.json.webtoken.JsonWebSignatureverify(java.lang.String token)Verify an encoded JWT token.
-
-
-
Field Detail
-
IAP_CERT_URL
private static final java.lang.String IAP_CERT_URL
- See Also:
- Constant Field Values
-
FEDERATED_SIGNON_CERT_URL
private static final java.lang.String FEDERATED_SIGNON_CERT_URL
- See Also:
- Constant Field Values
-
SUPPORTED_ALGORITHMS
private static final java.util.Set<java.lang.String> SUPPORTED_ALGORITHMS
-
audience
private final java.lang.String audience
-
certificatesLocation
private final java.lang.String certificatesLocation
-
issuer
private final java.lang.String issuer
-
publicKey
private final java.security.PublicKey publicKey
-
clock
private final com.google.api.client.util.Clock clock
-
publicKeyCache
private final com.google.common.cache.LoadingCache<java.lang.String,java.util.Map<java.lang.String,java.security.PublicKey>> publicKeyCache
-
-
Constructor Detail
-
TokenVerifier
private TokenVerifier(TokenVerifier.Builder builder)
-
-
Method Detail
-
newBuilder
public static TokenVerifier.Builder newBuilder()
-
verify
public com.google.api.client.json.webtoken.JsonWebSignature verify(java.lang.String token) throws TokenVerifier.VerificationExceptionVerify an encoded JWT token.- Parameters:
token- encoded JWT token- Returns:
- the parsed JsonWebSignature instance for additional validation if necessary
- Throws:
TokenVerifier.VerificationException- thrown if any verification fails
-
getCertificateLocation
private java.lang.String getCertificateLocation(com.google.api.client.json.webtoken.JsonWebSignature jsonWebSignature) throws TokenVerifier.VerificationException
-
-