Skip to content

dknoma/nukleus-oauth.java

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

492 Commits
src
src
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
COPYRIGHT
COPYRIGHT
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

nukleus-oauth.java

OAuth nukleus with support for JWT (JSON Web Token) bearer tokens.

Configuration

System property "oauth.keys", default value "keys.jwk", specifies the name of a file which contains a set of public keys in JWK Set format as defined in RFC-7517. The file name must either be absolute or relative to the "home" directory of the auth-jwt nukleus. Each key must have the following parameters:

  1. kid (key identifier) unique within the file
  2. alg (algorithm) specifying the signing algorithm it is to be used with.

How incoming HTTP requests are handled

Incoming HTTP requests will be considered authenticated only if the Authorization header is in the form "Bearer JWT", where JWT represents JSON Web Token obeying the following rules:

  1. must be a valid signed JSON Web Token in compact form as defined by RFC 1519 JSON Web Token and RFC 1515 JSON Web Signature
  2. must be signed by the key in the key set whose kid parameter is equal to the kid parameter specified in the JWT
  3. the "exp" (expires) header, if present, must specify a time later than the current time
  4. the "nbf" (not before) header, if present, must specify a time earlier than or equal to the current time

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

32 tags

Packages

No packages published

Languages

  • Java 100.0%