VerifyEncryptedJWT

Description

Verify an encrypted JWT.

Syntax

verifyEncryptedJWT(token, EncryptOptions, config)

History

  • New in ColdFusion (2023 release).

Parameters

Parameter Description Required
token

Encrypted token created by ColdFusion.

Yes
encryptOptions

Create the signature using the struct below:

  • Key
  • KeyPair - private Key will be used.
  • Keystore file, keystore password, keystore alias
Yes
config

A struct with the following values:

  • clockSkew - time in seconds to account for difference between the systems generating and processing the JWT
  • returntype - plaintext/struct
Yes

Returns

A struct containing all the JWT claims.

Example

<cfset encr = {
    "keystore" = “test_encryption1.keystore",
    "keystoreAlias" = "contentKey",
    "keystorePassword" = "****",
    "keypairPassword" = "****"
}>
<cfset c = {
    "algorithm" = "RSA-OAEP",
    "encryption" = "A128CBC-HS256"
}>
<cfset config = {
    "returnType" = "struct"
}>
<cfset verifyjwe = VerifyEncryptedJWT(#URL.jwe#, encr, config)>
<cfdump var="#verifyjwe#">

 Adobe

Get help faster and easier

New user?