SigningKeyResolver.java example

Explorer

jjwt-master
- src
  - main
    - java
      - io
        jsonwebtoken
        ClaimJwtException.java
        Claims.java
        ClaimsMutator.java
        Clock.java
        CompressionCodec.java
        CompressionCodecResolver.java
        CompressionCodecs.java
        CompressionException.java
        ExpiredJwtException.java
        Header.java
        IncorrectClaimException.java
        InvalidClaimException.java
        Jws.java
        JwsHeader.java
        Jwt.java
        JwtBuilder.java
        JwtException.java
        JwtHandler.java
        JwtHandlerAdapter.java
        JwtParser.java
        Jwts.java
        MalformedJwtException.java
        MissingClaimException.java
        PrematureJwtException.java
        RequiredTypeException.java
        SignatureAlgorithm.java
        SignatureException.java
        SigningKeyResolver.java
        SigningKeyResolverAdapter.java
        UnsupportedJwtException.java
        impl
        AbstractTextCodec.java
        AndroidBase64Codec.java
        Base64Codec.java
        Base64UrlCodec.java
        DefaultClaims.java
        DefaultClock.java
        DefaultHeader.java
        DefaultJws.java
        DefaultJwsHeader.java
        DefaultJwt.java
        DefaultJwtBuilder.java
        DefaultJwtParser.java
        DefaultTextCodecFactory.java
        FixedClock.java
        JwtMap.java
        TextCodec.java
        TextCodecFactory.java
        compression
        AbstractCompressionCodec.java
        CompressionCodecs.java
        DefaultCompressionCodecResolver.java
        DeflateCompressionCodec.java
        GzipCompressionCodec.java
        crypto
        DefaultJwtSignatureValidator.java
        DefaultJwtSigner.java
        DefaultSignatureValidatorFactory.java
        DefaultSignerFactory.java
        EllipticCurveProvider.java
        EllipticCurveSignatureValidator.java
        EllipticCurveSigner.java
        JwtSignatureValidator.java
        JwtSigner.java
        MacProvider.java
        MacSigner.java
        MacValidator.java
        RsaProvider.java
        RsaSignatureValidator.java
        RsaSigner.java
        SignatureProvider.java
        SignatureValidator.java
        SignatureValidatorFactory.java
        Signer.java
        SignerFactory.java
        lang
        Arrays.java
        Assert.java
        Classes.java
        Collections.java
        InstantiationException.java
        Objects.java
        RuntimeEnvironment.java
        Strings.java
        UnknownClassException.java

/*
 * Copyright (C) 2014 jsonwebtoken.io
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package io.jsonwebtoken;

import java.security.Key;

/**
 * A {@code SigningKeyResolver} can be used by a {@link io.jsonwebtoken.JwtParser JwtParser} to find a signing key that
 * should be used to verify a JWS signature.
 *
 * <p>A {@code SigningKeyResolver} is necessary when the signing key is not already known before parsing the JWT and the
 * JWT header or payload (plaintext body or Claims) must be inspected first to determine how to look up the signing key.
 * Once returned by the resolver, the JwtParser will then verify the JWS signature with the returned key.  For
 * example:</p>
 *
 * <pre>
 * Jws<Claims> jws = Jwts.parser().setSigningKeyResolver(new SigningKeyResolverAdapter() {
 *         @Override
 *         public byte[] resolveSigningKeyBytes(JwsHeader header, Claims claims) {
 *             //inspect the header or claims, lookup and return the signing key
 *             return getSigningKeyBytes(header, claims); //implement me
 *         }})
 *     .parseClaimsJws(compact);
 * </pre>
 *
 * <p>A {@code SigningKeyResolver} is invoked once during parsing before the signature is verified.</p>
 *
 * <h4>SigningKeyResolverAdapter</h4>
 *
 * <p>If you only need to resolve a signing key for a particular JWS (either a plaintext or Claims JWS), consider using
 * the {@link io.jsonwebtoken.SigningKeyResolverAdapter} and overriding only the method you need to support instead of
 * implementing this interface directly.</p>
 *
 * @see io.jsonwebtoken.SigningKeyResolverAdapter
 * @since 0.4
 */
public interface SigningKeyResolver {

    /**
     * Returns the signing key that should be used to validate a digital signature for the Claims JWS with the specified
     * header and claims.
     *
     * @param header the header of the JWS to validate
     * @param claims the claims (body) of the JWS to validate
     * @return the signing key that should be used to validate a digital signature for the Claims JWS with the specified
     * header and claims.
     */
    Key resolveSigningKey(JwsHeader header, Claims claims);

    /**
     * Returns the signing key that should be used to validate a digital signature for the Plaintext JWS with the
     * specified header and plaintext payload.
     *
     * @param header    the header of the JWS to validate
     * @param plaintext the plaintext body of the JWS to validate
     * @return the signing key that should be used to validate a digital signature for the Plaintext JWS with the
     * specified header and plaintext payload.
     */
    Key resolveSigningKey(JwsHeader header, String plaintext);
}