JWTClaimsSet.Builder claimsSet = new JWTClaimsSet.Builder(); claimsSet.issuer(clientConfig.getClientId()); claimsSet.subject(clientConfig.getClientId()); claimsSet.audience(Lists.newArrayList(serverConfig.getTokenEndpointUri())); claimsSet.jwtID(UUID.randomUUID().toString()); claimsSet.expirationTime(exp); claimsSet.issueTime(now); claimsSet.notBeforeTime(now); SignedJWT jwt = new SignedJWT(header, claimsSet.build());
JWTClaimsSet.Builder idClaims = new JWTClaimsSet.Builder(); idClaims.claim("auth_time", authTimestamp / 1000L); idClaims.issueTime(issueTime); idClaims.expirationTime(expiration); idClaims.issuer(configBean.getIssuer()); idClaims.subject(sub); idClaims.audience(Lists.newArrayList(client.getClientId())); idClaims.jwtID(UUID.randomUUID().toString()); // set a random NONCE in the middle of it idClaims.claim("nonce", nonce); idClaims.claim("at_hash", at_hash); idToken = new EncryptedJWT(new JWEHeader(client.getIdTokenEncryptedResponseAlg(), client.getIdTokenEncryptedResponseEnc()), idClaims.build()); idToken = new PlainJWT(idClaims.build()); jwtService.getDefaultSignerKeyId(), null, null); idToken = new SignedJWT(header, idClaims.build()); idClaims.claim("kid", jwtService.getDefaultSignerKeyId()); idToken = new SignedJWT(header, idClaims.build());
JWTClaimsSet.Builder claimsSet = new JWTClaimsSet.Builder(); claimsSet.issuer(clientConfig.getClientId()); claimsSet.subject(clientConfig.getClientId()); claimsSet.audience(Lists.newArrayList(serverConfig.getTokenEndpointUri())); claimsSet.jwtID(UUID.randomUUID().toString()); claimsSet.expirationTime(exp); claimsSet.issueTime(now); claimsSet.notBeforeTime(now); SignedJWT jwt = new SignedJWT(header, claimsSet.build());
JWTClaimsSet.Builder claimsSet = new JWTClaimsSet.Builder(); claimsSet.issuer(clientConfig.getClientId()); claimsSet.subject(clientConfig.getClientId()); claimsSet.audience(Lists.newArrayList(serverConfig.getTokenEndpointUri())); claimsSet.jwtID(UUID.randomUUID().toString()); claimsSet.expirationTime(exp); claimsSet.issueTime(now); claimsSet.notBeforeTime(now); SignedJWT jwt = new SignedJWT(header, claimsSet.build());
JWTClaimsSet.Builder claimSetBuilder = new JWTClaimsSet.Builder(); claimSetBuilder = claimSetBuilder.subject(subjectTokenClaims.getSubject()) .expirationTime(subjectTokenClaims.getExpirationTime()) .issuer(issuer) .issueTime(new Date()) .jwtID(UUID.randomUUID().toString()) .notBeforeTime(subjectTokenClaims.getNotBeforeTime()) .claim("typ", "Bearer") .claim("acr", subjectTokenClaims.getClaim("acr")) .claim("role", "USER"); claimSetBuilder.claim("scp", newScopeList); hashMap.put("act", nestedActor); claimSetBuilder = claimSetBuilder.claim("act", hashMap); JWTClaimsSet jwtClaimsSet = claimSetBuilder.build();
JWTClaimsSet.Builder claimsSetBuilder = new JWTClaimsSet.Builder(); claimsSetBuilder.issuer(API_GATEWAY_ID); claimsSetBuilder.subject(authzUser); claimsSetBuilder.issueTime(new Date(currentTime)); claimsSetBuilder.expirationTime(new Date(expireIn)); claimsSetBuilder.notBeforeTime(new Date(currentTime)); claimsSetBuilder.claim(API_GATEWAY_ID + "/subscriber", subscriber); claimsSetBuilder.claim(API_GATEWAY_ID + "/applicationname", applicationName); claimsSetBuilder.claim(API_GATEWAY_ID + "/enduser", authzUser); claimsSetBuilder.claim(claimURI, claimList.toArray(new String[claimList.size()])); } else { claimsSetBuilder.claim(claimURI, claimVal); JWTClaimsSet claimsSet = claimsSetBuilder.build(); JWT jwt = null; if(!JWSAlgorithm.NONE.equals(signatureAlgorithm)){
JWTClaimsSet.Builder idClaims = new JWTClaimsSet.Builder(); idClaims.claim("auth_time", authTimestamp / 1000L); idClaims.issueTime(issueTime); idClaims.expirationTime(expiration); idClaims.issuer(configBean.getIssuer()); idClaims.subject(sub); idClaims.audience(Lists.newArrayList(client.getClientId())); idClaims.jwtID(UUID.randomUUID().toString()); // set a random NONCE in the middle of it idClaims.claim("nonce", nonce); idClaims.claim("at_hash", at_hash); idToken = new EncryptedJWT(new JWEHeader(client.getIdTokenEncryptedResponseAlg(), client.getIdTokenEncryptedResponseEnc()), idClaims.build()); idToken = new PlainJWT(idClaims.build()); jwtService.getDefaultSignerKeyId(), null, null); idToken = new SignedJWT(header, idClaims.build()); idClaims.claim("kid", jwtService.getDefaultSignerKeyId()); idToken = new SignedJWT(header, idClaims.build());
JWTClaimsSet.Builder jwtClaimsSetBuilder = new JWTClaimsSet.Builder(); jwtClaimsSetBuilder.issuer(idTokenIssuer); jwtClaimsSetBuilder.audience(audience); jwtClaimsSetBuilder.claim(AZP, clientId); jwtClaimsSetBuilder.expirationTime(getIdTokenExpiryInMillis(idTokenValidityInMillis, currentTimeInMillis)); jwtClaimsSetBuilder.issueTime(new Date(currentTimeInMillis)); jwtClaimsSetBuilder.notBeforeTime(new Date(currentTimeInMillis)); if (authTime != 0) { jwtClaimsSetBuilder.claim(AUTH_TIME, authTime / 1000); jwtClaimsSetBuilder.claim(NONCE, nonceValue); jwtClaimsSetBuilder.claim(OAuthConstants.ACR, acrValue); jwtClaimsSetBuilder.claim(OAuthConstants.AMR, translateAmrToResponse(amrValues)); jwtClaimsSetBuilder.subject(subjectClaim); JWTClaimsSet jwtClaimsSet = handleOIDCCustomClaims(tokenReqMsgCtxt, jwtClaimsSetBuilder);
JWTClaimsSet.Builder jwtClaimsSetBuilder = new JWTClaimsSet.Builder(); jwtClaimsSetBuilder.issuer(issuer); jwtClaimsSetBuilder.audience(audience); jwtClaimsSetBuilder.claim(AZP, clientId); jwtClaimsSetBuilder.expirationTime(getIdTokenExpiryInMillis(idTokenLifeTimeInMillis, currentTimeInMillis)); jwtClaimsSetBuilder.issueTime(new Date(currentTimeInMillis)); jwtClaimsSetBuilder.claim(AUTH_TIME, authTime / 1000); jwtClaimsSetBuilder.claim(OAuthConstants.OIDCClaims.NONCE, nonceValue); jwtClaimsSetBuilder.claim("acr", acrValue); jwtClaimsSetBuilder.claim("amr", translateAmrToResponse(amrValues)); jwtClaimsSetBuilder.subject(subject); JWTClaimsSet jwtClaimsSet = handleCustomOIDCClaims(authzReqMessageContext, jwtClaimsSetBuilder); return getIDToken(clientId, spTenantDomain, jwtClaimsSetBuilder.build(), oAuthAppDO, getSigningTenantDomain(authzReqMessageContext));
final JWTClaimsSet.Builder idClaims = new JWTClaimsSet.Builder(); idClaims.issueTime(issueTime); idClaims.issuer(configBean.getIssuer()); log.debug("issuer is set to {}", configBean.getIssuer()); idClaims.subject(sub); log.debug("sub is set to {}", sub); idClaims.audience(Lists.newArrayList(client.getClientId())); log.debug("audience is set to {}", client.getClientId()); idClaims.jwtID(jwtId); log.debug("JWT id is set to {}", jwtId);
JWTClaimsSet.Builder claimSetBuilder = new JWTClaimsSet.Builder(); claimSetBuilder = claimSetBuilder.subject(username) .expirationTime(DateUtils.addMinutes(new Date(), 5)) .issuer(issuer) .issueTime(new Date()) .jwtID(UUID.randomUUID().toString()) .notBeforeTime(new Date()) .claim("typ", "Bearer") .claim("role", "USER"); JWTClaimsSet jwtClaimsSet = claimSetBuilder.build();
ClientDetailsEntity client = clientService.loadClientByClientId(clientId); Builder builder = new JWTClaimsSet.Builder() .claim("azp", clientId) .issuer(configBean.getIssuer()) .issueTime(new Date()) .expirationTime(token.getExpiration()) .subject(authentication.getName()) .jwtID(UUID.randomUUID().toString()); // set a random NONCE in the middle of it builder.audience(Lists.newArrayList(audience)); JWTClaimsSet claims = builder.build();
JWTClaimsSet.Builder jwtClaimsSetBuilder = new JWTClaimsSet.Builder(); jwtClaimsSetBuilder.issuer(issuer); jwtClaimsSetBuilder.subject(sub); jwtClaimsSetBuilder.claim(AUTHORIZATION_PARTY, consumerKey); jwtClaimsSetBuilder.issueTime(new Date(curTimeInMillis)); jwtClaimsSetBuilder.jwtID(UUID.randomUUID().toString()); jwtClaimsSetBuilder.notBeforeTime(new Date(curTimeInMillis)); jwtClaimsSetBuilder.claim(SCOPE, scope); jwtClaimsSetBuilder.expirationTime( getExpiryTime(tokenReqMessageContext, new Date(curTimeInMillis + accessTokenLifeTimeInMillis))); jwtClaimsSetBuilder.audience(Collections.singletonList(consumerKey)); JWTClaimsSet jwtClaimsSet;
JWTClaimsSet.Builder jwtClaimsSetBuilder = new JWTClaimsSet.Builder(); jwtClaimsSetBuilder.claim(claimURI, claimList); } else if ("exp".equals(claimURI)) { jwtClaimsSetBuilder.expirationTime(new Date(Long.valueOf(standardClaims.get(claimURI)))); } else { jwtClaimsSetBuilder.claim(claimURI, claimVal); return jwtClaimsSetBuilder.build().toJSONObject().toJSONString();
token.setAuthenticationHolder(authHolder); final JWTClaimsSet claims = new JWTClaimsSet.Builder() .audience(Lists.newArrayList(client.getClientId())) .issuer(configBean.getIssuer()) .issueTime(new Date()) .expirationTime(token.getExpiration()) .jwtID(UUID.randomUUID().toString()) .build();
throws ParseException { JWTClaimsSet.Builder builder = new JWTClaimsSet.Builder(); builder.issuer(JSONObjectUtils.getString(json, ISSUER_CLAIM)); builder.subject(JSONObjectUtils.getString(json, SUBJECT_CLAIM)); List<String> singleAud = new ArrayList<>(); singleAud.add(JSONObjectUtils.getString(json, AUDIENCE_CLAIM)); builder.audience(singleAud); } else if (audValue instanceof List) { builder.audience(JSONObjectUtils.getStringList(json, AUDIENCE_CLAIM)); } else if (audValue == null) { builder.audience((String)null); builder.expirationTime(new Date(JSONObjectUtils.getLong(json, EXPIRATION_TIME_CLAIM) * 1000)); builder.notBeforeTime(new Date(JSONObjectUtils.getLong(json, NOT_BEFORE_CLAIM) * 1000)); builder.issueTime(new Date(JSONObjectUtils.getLong(json, ISSUED_AT_CLAIM) * 1000)); builder.jwtID(JSONObjectUtils.getString(json, JWT_ID_CLAIM)); builder.claim(name, json.get(name)); return builder.build();
JWTClaimsSet.Builder jwtClaimsSetBuilder = new JWTClaimsSet.Builder(); jwtClaimsSetBuilder.claim(claimURI, claimList.toArray(new String[claimList.size()])); } else if (APIConstants.EXP.equals(claimURI)) { jwtClaimsSetBuilder.claim(APIConstants.EXP, new Date(Long.valueOf((String) standardClaims.get(claimURI)))); } else { jwtClaimsSetBuilder.claim(claimURI, claimVal); jwtClaimsSetBuilder.claim(claimURI, claimValObj); return jwtClaimsSetBuilder.build().toJSONObject().toJSONString();
final JWTClaimsSet claimsSet = new JWTClaimsSet.Builder() .audience(Collections.singletonList(jwtAudience)) .issuer(credential.getClientId()) .jwtID(UUID.randomUUID().toString()) .notBeforeTime(new Date(time)) .expirationTime(new Date(time + AuthenticationConstants.AAD_JWT_TOKEN_LIFETIME_SECONDS * 1000)) .subject(credential.getClientId()) .build();
JWTClaimsSet.Builder claims = new JWTClaimsSet.Builder(); claims.claim("response_type", "code"); claims.claim("client_id", clientConfig.getClientId()); claims.claim("scope", Joiner.on(" ").join(clientConfig.getScope())); claims.claim("redirect_uri", redirectUri); claims.claim("nonce", nonce); claims.claim("state", state); claims.claim(option.getKey(), option.getValue()); claims.claim("login_hint", loginHint); SignedJWT jwt = new SignedJWT(new JWSHeader(alg), claims.build());