final byte[] encodedKey = publicKey.getEncoded(); JSONObject jsonWebKeys = JwtUtil.getJSONWebKeys(client.getJwksUri()); if (jsonWebKeys == null) { log.debug("Unable to load json web keys for client: {}, jwks_uri: {}", clientId, client.getJwksUri());
private boolean validateSignature(SignatureAlgorithm signatureAlgorithm, Client client, String signingInput, String signature) throws Exception { ClientService clientService = CdiUtil.bean(ClientService.class); String sharedSecret = clientService.decryptSecret(client.getClientSecret()); JSONObject jwks = Strings.isNullOrEmpty(client.getJwks()) ? JwtUtil.getJSONWebKeys(client.getJwksUri()) : new JSONObject(client.getJwks()); AbstractCryptoProvider cryptoProvider = CryptoProviderFactory.getCryptoProvider( appConfiguration); boolean validSignature = cryptoProvider.verifySignature(signingInput, signature, keyId, jwks, sharedSecret, signatureAlgorithm); return validSignature; }
showTitle("jwtStateAlgRSAOAEPEncA256GCMTest"); JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
showTitle("jwtStateAlgRSA15EncA256CBCPLUSHS512Test"); JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
showTitle("jwtStateAlgRSA15EncA128CBCPLUSHS256Test"); JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JwtUtil.getJSONWebKeys(client.getJwksUri()) : new JSONObject(client.getJwks()); String sharedSecret = clientService.decryptSecret(client.getClientSecret());
} else { if (isKeyIdRequired()) { JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(); jwtAuthorizationRequest = new JwtAuthorizationRequest(
JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
jwt.getEncodedSignature(), jwt.getHeader().getKeyId(), JwtUtil.getJSONWebKeys(jwksUri), sharedKey, jwt.getHeader().getAlgorithm());
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jsonWebKeys = JwtUtil.getJSONWebKeys(authorizationGrant.getClient().getJwksUri()); AbstractCryptoProvider cryptoProvider = CryptoProviderFactory.getCryptoProvider(appConfiguration); String keyId = cryptoProvider.getKeyId(JSONWebKeySet.fromJSONObject(jsonWebKeys), SignatureAlgorithm.RS256, Use.ENCRYPTION);
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri); OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);