public SecurityToken ValidateToken(string jwt, IKeycloakParameters options, OidcDataManager uriManager)
{
var tokenValidationParameters = new TokenValidationParameters
{
ValidateLifetime = true,
RequireExpirationTime = true,
ValidateIssuer = !options.DisableIssuerValidation,
ValidateAudience = !options.DisableAudienceValidation,
ValidateIssuerSigningKey = !options.DisableTokenSignatureValidation,
RequireSignedTokens = !options.AllowUnsignedTokens,
ValidIssuer = uriManager.GetIssuer(),
ClockSkew = options.TokenClockSkew,
ValidAudiences = new List<string> {"null", options.ClientId},
IssuerSigningTokens = uriManager.GetJsonWebKeys().GetSigningTokens(),
AuthenticationType = options.AuthenticationType // Not used
};
return ValidateToken(jwt, tokenValidationParameters);
}
public SecurityToken ValidateToken(string jwt, IKeycloakParameters options, OidcDataManager uriManager)
{
var tokenValidationParameters = new TokenValidationParameters
{
ValidateLifetime = true,
RequireExpirationTime = true,
ValidateIssuer = !options.DisableIssuerValidation,
ValidateAudience = !options.DisableAudienceValidation,
ValidateIssuerSigningKey = !options.DisableTokenSignatureValidation,
RequireSignedTokens = !options.AllowUnsignedTokens,
ValidIssuer = uriManager.GetIssuer(),
ClockSkew = options.TokenClockSkew,
ValidAudiences = new List <string> {
"null", options.ClientId
},
IssuerSigningKeys = uriManager.GetJsonWebKeys().GetSigningKeys(),
};
return(ValidateToken(jwt, tokenValidationParameters));
}
