private Object getClaim(Claims claims) { switch (claims) { case raw_token: return signed.tokenContent(); case groups: return jwt.userGroups().map(HashSet::new).orElse(null); case aud: return jwt.audience().map(HashSet::new).orElse(null); case email_verified: return jwt.emailVerified().orElse(null); case phone_number_verified: return jwt.phoneNumberVerified().orElse(null); case upn: return jwt.userPrincipal().orElse(null); default: //do nothing, just continue to processing based on type } String claimName = claims.name(); Optional<JsonValue> json = getJsonValue(claimName); return json.map(value -> convert(claims, value)).orElse(null); }
Subject buildSubject(Jwt jwt, SignedJwt signedJwt) { JsonWebTokenImpl principal = buildPrincipal(jwt, signedJwt); TokenCredential.Builder builder = TokenCredential.builder(); jwt.issueTime().ifPresent(builder::issueTime); jwt.expirationTime().ifPresent(builder::expTime); jwt.issuer().ifPresent(builder::issuer); builder.token(signedJwt.tokenContent()); builder.addToken(JsonWebToken.class, principal); builder.addToken(Jwt.class, jwt); builder.addToken(SignedJwt.class, signedJwt); Subject.Builder subjectBuilder = Subject.builder() .principal(principal) .addPublicCredential(TokenCredential.class, builder.build()); Optional<List<String>> userGroups = jwt.userGroups(); userGroups.ifPresent(groups -> groups.forEach(group -> subjectBuilder.addGrant(Role.create(group)))); Optional<List<String>> scopes = jwt.scopes(); scopes.ifPresent(scopeList -> scopeList.forEach(scope -> subjectBuilder.addGrant(Grant.builder() .name(scope) .type("scope") .build()))); return subjectBuilder.build(); }
private Object getClaim(Claims claims) { switch (claims) { case raw_token: return signed.tokenContent(); case groups: return jwt.userGroups().map(HashSet::new).orElse(null); case aud: return jwt.audience().map(HashSet::new).orElse(null); case email_verified: return jwt.emailVerified().orElse(null); case phone_number_verified: return jwt.phoneNumberVerified().orElse(null); case upn: return jwt.userPrincipal().orElse(null); default: //do nothing, just continue to processing based on type } String claimName = claims.name(); Optional<JsonValue> json = getJsonValue(claimName); return json.map(value -> convert(claims, value)).orElse(null); }
Subject buildSubject(Jwt jwt, SignedJwt signedJwt) { JsonWebTokenImpl principal = buildPrincipal(jwt, signedJwt); TokenCredential.Builder builder = TokenCredential.builder(); jwt.issueTime().ifPresent(builder::issueTime); jwt.expirationTime().ifPresent(builder::expTime); jwt.issuer().ifPresent(builder::issuer); builder.token(signedJwt.tokenContent()); builder.addToken(JsonWebToken.class, principal); builder.addToken(Jwt.class, jwt); builder.addToken(SignedJwt.class, signedJwt); Subject.Builder subjectBuilder = Subject.builder() .principal(principal) .addPublicCredential(TokenCredential.class, builder.build()); Optional<List<String>> userGroups = jwt.userGroups(); userGroups.ifPresent(groups -> groups.forEach(group -> subjectBuilder.addGrant(Role.create(group)))); Optional<List<String>> scopes = jwt.scopes(); scopes.ifPresent(scopeList -> scopeList.forEach(scope -> subjectBuilder.addGrant(Grant.builder() .name(scope) .type("scope") .build()))); return subjectBuilder.build(); }