private IEnumerable <SecurityKey> GetAllKeys(string token, Jwt.JwtSecurityToken securityToken, string kid, TokenValidationParameters validationParameters)
{
IdentityModelEventSource.Logger.WriteInformation("LogMessages.IDX10243");
if (validationParameters.IssuerSigningKey != null)
{
yield return(validationParameters.IssuerSigningKey);
}
if (validationParameters.IssuerSigningKeys != null)
{
foreach (SecurityKey securityKey in validationParameters.IssuerSigningKeys)
{
yield return(securityKey);
}
}
}
/// <summary>
/// Validates the <see cref="JwtSecurityToken.SigningKey"/> is an expected value.
/// </summary>
/// <param name="securityKey">The <see cref="SecurityKey"/> that signed the <see cref="SecurityToken"/>.</param>
/// <param name="securityToken">The <see cref="JwtSecurityToken"/> to validate.</param>
/// <param name="validationParameters">The current <see cref="TokenValidationParameters"/>.</param>
/// <remarks>If the <see cref="JwtSecurityToken.SigningKey"/> is a <see cref="X509SecurityKey"/> then the X509Certificate2 will be validated using the CertificateValidator.</remarks>
protected virtual void ValidateIssuerSecurityKey(SecurityKey securityKey, Jwt.JwtSecurityToken securityToken, TokenValidationParameters validationParameters)
{
Validators.ValidateIssuerSecurityKey(securityKey, securityToken, validationParameters);
}
/// <summary>
/// Convert string into <see cref="JwtSecurityToken"/>.
/// </summary>
/// <param name="token">A 'JSON Web Token' (JWT). May be signed as per 'JSON Web Signature' (JWS).</param>
/// <returns>The <see cref="JwtSecurityToken"/></returns>
public Jwt.JwtSecurityToken ReadJwtToken(string token)
{
var jwt = new Jwt.JwtSecurityToken();
return(jwt);
}
