Validating the token using x509 Certificate

Comments (8)

1. 

   Vinoj Mathew reporter

   • edited description

   • 2016-04-14T17:43:51+00:00
2. 

   Vinoj Mathew reporter

   • edited description

   • 2016-04-14T17:44:25+00:00
3. 

   Vinoj Mathew reporter

   • edited description

   • 2016-04-14T17:45:04+00:00
4. 

   Connect2id OSS

   • changed status to resolved

   Extract the key, then use it create a singleton JWKSet, then create ImmutableJWKSet from it.

   This may also help: http://www.connect2id.com/products/nimbus-jose-jwt/examples/parse-x509-certificate-extract-keys

   • 2016-04-14T18:16:26+00:00
5. 

   Vinoj Mathew reporter

   Thanks

   Any example to create the singleton JWKSet. This is how i am doing but its not working as expected

    String cert1= "vdW50cy5hY2Nlc3Njb250cm9sLndp";
    X509Certificate cert = X509CertUtils.parse(new Base64(cert1).decode());
   PublicKey pubKey = cert.getPublicKey();
   JWKSet set1 = new JWKSet((JWK) pubKey);
    JWKSource keySource = new ImmutableJWKSet(set1);
    ConfigurableJWTProcessor jwtProcessor1 = new DefaultJWTProcessor();
     JWSAlgorithm expectedJWSAlg1 = JWSAlgorithm.RS256;
    JWSKeySelector keySelector1 = new JWSVerificationKeySelector(expectedJWSAlg1, keySource);
    jwtProcessor1.setJWSKeySelector(keySelector1);
   

   • 2016-04-14T19:06:02+00:00
6. 

   Connect2id OSS

   The std Java keys and the JWKs belong to different hierarchies, and cannot be cast to one another (but can be converted).

   com.nimbusds.jose.jwk.JWK jwk = new com.nimbusds.jose.jwk.RSAKey.Builder((java.security.interfaces.RSAPublicKey)pubKey).build();
   com.nimbusds.jose.jwk.JWKSet jwkSet = new JWKSet(jwk);
   

   • 2016-04-15T09:10:25+00:00
7. 

   Connect2id OSS

   New examples: http://c2id.co/1x

   • 2016-04-15T10:17:29+00:00
8. 

   Vinoj Mathew reporter

   thanks:)

   • 2016-04-15T18:23:33+00:00
9. Log in to comment