JwtTokenGenerationService
class JwtTokenGenerationService(nonceService: NonceService = DefaultNonceService(), publicContext: String = "https://wallet.a-sit.at/authorization-server", verifyJwsObject: VerifyJwsObjectFun = VerifyJwsObject(), signToken: SignJwtFun<OpenId4VciAccessToken> = SignJwt(EphemeralKeyWithoutCert(), JwsHeaderJwk()), clock: Clock = System, issueRefreshToken: Boolean = false) : TokenGenerationService(source)
Simple DPoP token generation for an OAuth 2.0 authorization server, with OpenId4VciAccessToken as payload.
Implemented from OAuth 2.0 Demonstrating Proof of Possession (DPoP)
Constructors
Link copied to clipboard
constructor(nonceService: NonceService = DefaultNonceService(), publicContext: String = "https://wallet.a-sit.at/authorization-server", verifyJwsObject: VerifyJwsObjectFun = VerifyJwsObject(), signToken: SignJwtFun<OpenId4VciAccessToken> = SignJwt(EphemeralKeyWithoutCert(), JwsHeaderJwk()), clock: Clock = System, issueRefreshToken: Boolean = false)
Functions
Link copied to clipboard
open suspend override fun buildToken(httpRequest: RequestInfo?, userInfo: OidcUserInfoExtended?, authorizationDetails: Set<AuthorizationDetails>?, scope: String?): TokenResponseParameters
Builds an access token, probably with a refresh token. Input parameters are assumed to be validated already.