- All Implemented Interfaces:
LoginAccessTokenValidator is an implementation of
AccessTokenValidatorthat is used by the client to perform some rudimentary validation of the JWT access token that is received as part of the response from posting the client credentials to the OAuth/OIDC provider's token endpoint. The validation steps performed are:
Basic structural validation of the
b64tokenvalue as defined in RFC 6750 Section 2.1
- Basic conversion of the token into an in-memory map
- Presence of scope,
exp, subject, and
LoginAccessTokenValidatorCreates a new LoginAccessTokenValidator that will be used by the client for lightweight validation of the JWT.
scopeClaimName- Name of the scope claim to use; must be non-
subClaimName- Name of the subject claim to use; must be non-
validateAccepts an OAuth JWT access token in base-64 encoded format, validates, and returns an OAuthBearerToken.