...
Parameter | Description | ||||||||
---|---|---|---|---|---|---|---|---|---|
openIdServer | This is the URL for the JWKS server. It stores the JWKS in the cache. Info |
JSON Web Key Set (JWKS) endpoint of an OpenID Connect (OIDC) server. For example, https://<server_domain>/.well-known/jwks.json The JWKS endpoint returns the public key set in JSON format shown below, that can be used to validate the signature of the JWT (token) issued by the OIDC provider.
The public key can be used to verify the integrity of a JWT, ensuring that it has not been tampered with. | |||||||
token | This refers to the JWT (Json Web Token) that needs to be validated. | ||||||||
claimsToValidate | An optional map field to declare the claims as well as the corresponding value to validate against the token. | ||||||||
algorithm | An optional field to verify the signing algorithm used by the token. The possible values could be RSA256, RSA384, RSA512, ECDSA256, ECDSA384, ECDSA512. By default, the APL function uses RSA256. | ||||||||
Returns | An error message on validation failure. Null on validation success. |
...
Info | ||
---|---|---|
| ||
Example of the validateJwt function with optional values for claims and algorithm populated.
|
...
Code Block |
---|
JwtValidationResult validateJwtvalidateAndDecodeJwt( string openIdServer, string token, map <string, any> claimsToValidate, //Optional string algorithm //Optional) |
...
Parameter | Description | |||||||
---|---|---|---|---|---|---|---|---|
openIdServer | This is the URL for the JWKS server. It stores the JWKS in the cacheJSON Web Key Set (JWKS) endpoint of an OpenID Connect (OIDC) server. For example, https://<server_domain>/.well-known/jwks.json. The JWKS endpoint returns the public key set in JSON format shown below, that can be used to validate the signature of the JWT (token) issued by the OIDC provider.
The public key can be used to verify the integrity of a JWT, ensuring that it has not been tampered with. | |||||||
token | This refers to the JWT (Json Web Token) that needs to be validated. | |||||||
claimsToValidate | An optional map field to declare the claims as well as the corresponding value to validate against the token. | |||||||
algorithm | An optional field to verify the signing algorithm used by the token. The possible values could be RSA256, RSA384, RSA512, ECDSA256, ECDSA384, ECDSA512. By default, the APL function uses RSA256. | |||||||
Returns | An JwtValidationResult UDR which consists of error message on validation failure and decoded payloads. The error message will be Null on validation success. |
...
Info | ||
---|---|---|
| ||
Example of the validateAndDecodeJwt function with optional values for claims and algorithm populated.
|
...