private static JWTHeader GetHeader(VssSigningCredentials credentials, bool allowExpired)
{
//note credentials are allowed to be null here, see ValidateSigningCredentials
JWTHeader header = new JWTHeader();
JWTAlgorithm alg = JsonWebTokenUtilities.ValidateSigningCredentials(credentials, allowExpired);
header.Algorithm = alg;
if (alg != JWTAlgorithm.None)
{
// Some signing credentials may need to set headers for the JWT
var jwtHeaderProvider = credentials as IJsonWebTokenHeaderProvider;
if (jwtHeaderProvider != null)
{
jwtHeaderProvider.SetHeaders(header);
}
}
return(header);
}
private static byte[] GetSignature(JWTHeader header, JWTPayload payload, VssSigningCredentials credentials, bool allowExpired)
{
JWTAlgorithm alg = JsonWebTokenUtilities.ValidateSigningCredentials(credentials, allowExpired);
return(GetSignature(header, payload, alg, credentials));
}
