Package io.jans.as.model.jwt

Interface JwtStateClaimName

  • public interface JwtStateClaimName
    Version:
    May 3, 2017
    Author:
    Javier Rojas Blum

    • Field Summary

      Fields 
      Modifier and Type Field Description
      static java.lang.String ADDITIONAL_CLAIMS
      Additional claims
      static java.lang.String AS
      String identifying the authorization server that this request was sent to.
      static java.lang.String AT_HASH
      Access Token hash value.
      static java.lang.String AUD
      String identifying the client that this state value is intended for.
      static java.lang.String C_HASH
      Code hash value.
      static java.lang.String EXP
      The expiration time claim identifies the expiration time on or after which the JWT MUST NOT be accepted for processing.
      static java.lang.String IAT
      Timestamp of when this Authorization Request was issued.
      static java.lang.String ISS
      String identifying the party that issued this state value.
      static java.lang.String JTI
      The "jti" (JWT ID) claim provides a unique identifier for the JWT.
      static java.lang.String KID
      Identifier of the key used to sign this state token at the issuer.
      static java.lang.String RFP
      String containing a verifiable identifier for the browser session, that cannot be guessed by a third party.
      static java.lang.String TARGET_LINK_URI
      URI containing the location the user agent is to be redirected to after authorization.

    • Field Detail

      • RFP

        static final java.lang.String RFP
        String containing a verifiable identifier for the browser session, that cannot be guessed by a third party. The verification of this element by the client protects it from accepting authorization responses generated in response to forged requests generated by third parties.
        See Also:
        Constant Field Values

      • KID

        static final java.lang.String KID
        Identifier of the key used to sign this state token at the issuer. Identifier of the key used to encrypt this JWT state token at the issuer.
        See Also:
        Constant Field Values

      • IAT

        static final java.lang.String IAT
        Timestamp of when this Authorization Request was issued.
        See Also:
        Constant Field Values

      • EXP

        static final java.lang.String EXP
        The expiration time claim identifies the expiration time on or after which the JWT MUST NOT be accepted for processing. The processing of the "exp" claim requires that the current date/time MUST be before the expiration date/time listed in the "exp" claim. Implementers MAY provide for some small leeway, usually no more than a few minutes, to account for clock skew. Its value MUST be a number containing an IntDate value.
        See Also:
        Constant Field Values

      • ISS

        static final java.lang.String ISS
        String identifying the party that issued this state value.
        See Also:
        Constant Field Values

      • AUD

        static final java.lang.String AUD
        String identifying the client that this state value is intended for.
        See Also:
        Constant Field Values

      • TARGET_LINK_URI

        static final java.lang.String TARGET_LINK_URI
        URI containing the location the user agent is to be redirected to after authorization.
        See Also:
        Constant Field Values

      • AS

        static final java.lang.String AS
        String identifying the authorization server that this request was sent to.
        See Also:
        Constant Field Values

      • JTI

        static final java.lang.String JTI
        The "jti" (JWT ID) claim provides a unique identifier for the JWT. The identifier value MUST be assigned in a manner that ensures that there is a negligible probability that the same value will be accidentally assigned to a different data object. The "jti" claim can be used to prevent the JWT from being replayed. The "jti" value is a case-sensitive string.
        See Also:
        Constant Field Values

      • AT_HASH

        static final java.lang.String AT_HASH
        Access Token hash value. Its value is the base64url encoding of the left-most half of the hash of the octets of the ASCII representation of the "access_token" value, where the hash algorithm used is the hash algorithm used in the "alg" parameter of the State Token's JWS header. For instance, if the "alg" is "RS256", hash the "access_token" value with SHA-256, then take the left-most 128 bits and base64url encode them. The "at_hash" value is a case sensitive string. This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and issued with a "access_token" in the authorization response.
        See Also:
        Constant Field Values

      • C_HASH

        static final java.lang.String C_HASH
        Code hash value. Its value is the base64url encoding of the left-most half of the hash of the octets of the ASCII representation of the "code" value, where the hash algorithm used is the hash algorithm used in the "alg" header parameter of the State Token's JWS [RFC7515] header. For instance, if the "alg" is "HS512", hash the "code" value with SHA-512, then take the left-most 256 bits and base64url encode them. The "c_hash" value is a case sensitive string. This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and issued with a "code" in the authorization response.
        See Also:
        Constant Field Values

      • ADDITIONAL_CLAIMS

        static final java.lang.String ADDITIONAL_CLAIMS
        Additional claims
        See Also:
        Constant Field Values