VerifySignedJWT

Search
ColdFusion

ColdFusion

Open app

Description

Verify a signed JWT.

Syntax

verifySignedJWT(token, SignOptions, config)

History

  • New in ColdFusion (2023 release).

Parameters

Parameter Description Required
token A signed token created by ColdFusion.
 Yes
signOptions

Create the signature using the struct below:

  • Key
  • KeyPair - private Key will be used.
  • JWK- JSON Web Keyset URL or file or string.
  • Keystore file, keystore password, keystore alias
 Yes
config

A struct with the following values:

  • clockSkew - time in seconds to account for difference between the systems generating and processing the JWT
  • returntype - plaintext/struct
 Yes

Returns

A struct containing all the JWT claims. Not all these claims will be present always. Depends on the party creating the JWT.

Example

<cfset k=getKeyPairfromkeystore({  
        "keystore" : “test_jws1.keystore",
        "keystorePassword": "****",  
        "keypairPassword": "****",  
        "keystoreAlias": "contentKey"
    }) >
 
<cfset c = {
    "algorithm" = "RS256",
    "generateIssuedAt"= true,
"generateJti"=true
}>
 
<cfset config = {
    "returnType" = "struct"
}>
<cfset verifyjws = VerifySignedJWT(#URL.jws#,k.getPublic(),c)>
<cfdump var="#verifyjws#">

 Adobe

Get help faster and easier

New user?

Quick links

View all your plans Manage your plans
View quick links
Hide quick links

Legal Notices    |    Online Privacy Policy