-
assigned issue to
- marked as minor
Want to subclass HttpsJwksVerificationKeyResolver
I am creating a new MultiHttpsJwksVerificationKeyResolver which will look for valid public keys in a list of JWKS endpoints. It will work exactly like the HttpsJwksVerificationKeyResolver but I cannot call resolveKey on a list of HttpsJwksVerificationKeyResolvers since I do not want to refresh and retry for each one until we have checked all keys.
So my new class groups examines all keys and if no match, calls refresh() on all JWKS and then tries once more before failing.
I’d like to subclass HttpsJwksVerificationKeyResolver, but unfortunately I’m prevented since select() is private access. Please make it protected access.
I can also contribute my new multi resolver once it is done, but right now it is a fork and not a subclass.
Comments (3)
-
repo owner -
repo owner - changed status to resolved
Allow subclassing of HttpsJwksVerificationKeyResolver Fixes
#149→ <<cset f3f315a9a054>>
-
repo owner - changed status to closed
released in jose4j-0.7.0 https://bitbucket.org/b_c/jose4j/wiki/Release%20Notes#!jose4j-070-january-17-2019
- Log in to comment
sure, we can open that up