VerifySignedJWT

Поиск

Последнее обновление 2 июн. 2023 г.

Description

Verify a signed JWT.

Syntax

verifySignedJWT(token, SignOptions, config)

Parameters

Parameter	Description	Required
token	A signed token created by ColdFusion.	Yes
signOptions	Create the signature using the struct below: Key KeyPair - private Key will be used. JWK- JSON Web Keyset URL or file or string. Keystore file, keystore password, keystore alias	Yes
config	A struct with the following values: clockSkew - time in seconds to account for difference between the systems generating and processing the JWT returntype - plaintext/struct	Yes

Returns

A struct containing all the JWT claims. Not all these claims will be present always. Depends on the party creating the JWT.

Example

<cfset k=getKeyPairfromkeystore({  
        "keystore" : “test_jws1.keystore",
        "keystorePassword": "****",  
        "keypairPassword": "****",  
        "keystoreAlias": "contentKey"
    }) >
 
<cfset c = {
    "algorithm" = "RS256",
    "generateIssuedAt"= true,
"generateJti"=true
}>
 
<cfset config = {
    "returnType" = "struct"
}>
<cfset verifyjws = VerifySignedJWT(#URL.jws#,k.getPublic(),c)>
<cfdump var="#verifyjws#">