VerifySignedJWT

Description

Verify a signed JWT.

Syntax

verifySignedJWT(token, SignOptions, config)

Parameters

Parameter Description Required
token A signed token created by ColdFusion.
Yes
signOptions

Create the signature using the struct below:

  • Key
  • KeyPair - private Key will be used.
  • JWK- JSON Web Keyset URL or file or string.
  • Keystore file, keystore password, keystore alias
Yes
config

A struct with the following values:

  • clockSkew - time in seconds to account for difference between the systems generating and processing the JWT
  • returntype - plaintext/struct
Yes

Returns

A struct containing all the JWT claims. Not all these claims will be present always. Depends on the party creating the JWT.

Example

<cfset k=getKeyPairfromkeystore({  
        "keystore" : “test_jws1.keystore",
        "keystorePassword": "****",  
        "keypairPassword": "****",  
        "keystoreAlias": "contentKey"
    }) >
 
<cfset c = {
    "algorithm" = "RS256",
    "generateIssuedAt"= true,
"generateJti"=true
}>
 
<cfset config = {
    "returnType" = "struct"
}>
<cfset verifyjws = VerifySignedJWT(#URL.jws#,k.getPublic(),c)>
<cfdump var="#verifyjws#">

 Adobe

Recevez de l’aide plus rapidement et plus facilement

Nouvel utilisateur ?