private IEnumerable <SecurityKey> GetAllKeys(string token, Jwt.JwtSecurityToken securityToken, string kid, TokenValidationParameters validationParameters) { IdentityModelEventSource.Logger.WriteInformation("LogMessages.IDX10243"); if (validationParameters.IssuerSigningKey != null) { yield return(validationParameters.IssuerSigningKey); } if (validationParameters.IssuerSigningKeys != null) { foreach (SecurityKey securityKey in validationParameters.IssuerSigningKeys) { yield return(securityKey); } } }
/// <summary> /// Validates the <see cref="JwtSecurityToken.SigningKey"/> is an expected value. /// </summary> /// <param name="securityKey">The <see cref="SecurityKey"/> that signed the <see cref="SecurityToken"/>.</param> /// <param name="securityToken">The <see cref="JwtSecurityToken"/> to validate.</param> /// <param name="validationParameters">The current <see cref="TokenValidationParameters"/>.</param> /// <remarks>If the <see cref="JwtSecurityToken.SigningKey"/> is a <see cref="X509SecurityKey"/> then the X509Certificate2 will be validated using the CertificateValidator.</remarks> protected virtual void ValidateIssuerSecurityKey(SecurityKey securityKey, Jwt.JwtSecurityToken securityToken, TokenValidationParameters validationParameters) { Validators.ValidateIssuerSecurityKey(securityKey, securityToken, validationParameters); }
/// <summary> /// Convert string into <see cref="JwtSecurityToken"/>. /// </summary> /// <param name="token">A 'JSON Web Token' (JWT). May be signed as per 'JSON Web Signature' (JWS).</param> /// <returns>The <see cref="JwtSecurityToken"/></returns> public Jwt.JwtSecurityToken ReadJwtToken(string token) { var jwt = new Jwt.JwtSecurityToken(); return(jwt); }