vck-openid/at.asitplus.wallet.lib.oauth2/JwtTokenGenerationService

JwtTokenGenerationService

class JwtTokenGenerationService(nonceService: NonceService = DefaultNonceService(), dpopNonceService: NonceService = DefaultNonceService(), publicContext: String = "https://wallet.a-sit.at/authorization-server", keyMaterial: KeyMaterial = EphemeralKeyWithoutCert(), signToken: SignJwtFun<OpenId4VciAccessToken> = SignJwt(keyMaterial, JwsHeaderCertOrJwk()), clock: Clock = System, issueRefreshToken: Boolean = false, jwtIdToUserInfoExtended: MapStore<String, OidcUserInfoExtended> = DefaultMapStore()) : TokenGenerationService(source)

Simple DPoP token generation for an OAuth 2.0 authorization server, with OpenId4VciAccessToken as payload.

Implemented from OAuth 2.0 Demonstrating Proof of Possession (DPoP)

Constructors

Link copied to clipboard
constructor(nonceService: NonceService = DefaultNonceService(), dpopNonceService: NonceService = DefaultNonceService(), publicContext: String = "https://wallet.a-sit.at/authorization-server", keyMaterial: KeyMaterial = EphemeralKeyWithoutCert(), signToken: SignJwtFun<OpenId4VciAccessToken> = SignJwt(keyMaterial, JwsHeaderCertOrJwk()), clock: Clock = System, issueRefreshToken: Boolean = false, jwtIdToUserInfoExtended: MapStore<String, OidcUserInfoExtended> = DefaultMapStore())

Functions

Link copied to clipboard
open suspend override fun buildToken(httpRequest: RequestInfo?, userInfo: OidcUserInfoExtended, authorizationDetails: Set<AuthorizationDetails>?, scope: String?, validatedClientKey: JsonWebKey?): TokenResponseParameters

Builds an access token, probably with a refresh token. Input parameters are assumed to be validated already.

Link copied to clipboard
open suspend override fun dpopNonce(): String
Link copied to clipboard