碼上歡樂
相關內容    簡體    繁體

JWT Claims

本文轉載自   查看原文   2019-08-17 10:36   1923    HTTPS

JWT Claims

“iss” (issuer)  發行人

“sub” (subject)  主題

“aud” (audience) 接收方 用戶

“exp” (expiration time) 到期時間

“nbf” (not before)  在此之前不可用

“iat” (issued at)  jwt的簽發時間

“jti” (JWT ID)  jwt的唯一身份標識,主要用來作為一次性token,從而回避重放攻擊。

  /// <summary>
  ///   JSON Web Token (JWT) claims set.
  /// </summary>
  TJWTClaims = class(TJOSEBase)
  private
    const AUDIENCE_SEPARATOR = ',';
  private
    function GetAudience: string;
    function GetExpiration: TDateTime;
    function GetIssuedAt: TDateTime;
    function GetIssuer: string;
    function GetJWTId: string;
    function GetNotBefore: TDateTime;
    function GetSubject: string;
    procedure SetAudience(Value: string);
    procedure SetExpiration(Value: TDateTime);
    procedure SetIssuedAt(Value: TDateTime);
    procedure SetIssuer(Value: string);
    procedure SetJWTId(Value: string);
    procedure SetNotBefore(Value: TDateTime);
    procedure SetSubject(Value: string);

    function GetHasAudience: Boolean;
    function GetHasExpiration: Boolean;
    function GetHasIssuedAt: Boolean;
    function GetHasIssuer: Boolean;
    function GetHasJWTId: Boolean;
    function GetHasNotBefore: Boolean;
    function GetHasSubject: Boolean;

    function ClaimExists(const AClaimName: string): Boolean;
    function GetAudienceArray: TArray<string>;
    procedure SetAudienceArray(const Value: TArray<string>);
  public
    constructor Create; virtual;
    procedure SetClaimOfType<T>(const AName: string; const AValue: T);
    function GenerateJWTId(ANumberOfBytes: Integer = 16): string;

    property Audience: string read GetAudience write SetAudience;
    property AudienceArray: TArray<string> read GetAudienceArray write SetAudienceArray;
    property HasAudience: Boolean read GetHasAudience;
    property Expiration: TDateTime read GetExpiration write SetExpiration;
    property HasExpiration: Boolean read GetHasExpiration;
    property IssuedAt: TDateTime read GetIssuedAt write SetIssuedAt;
    property HasIssuedAt: Boolean read GetHasIssuedAt;
    property Issuer: string read GetIssuer write SetIssuer;
    property HasIssuer: Boolean read GetHasIssuer;
    property JWTId: string read GetJWTId write SetJWTId;
    property HasJWTId: Boolean read GetHasJWTId;
    property NotBefore: TDateTime read GetNotBefore write SetNotBefore;
    property HasNotBefore: Boolean read GetHasNotBefore;
    property Subject: string read GetSubject write SetSubject;
    property HasSubject: Boolean read GetHasSubject;
  end;

  

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 SpringSecurity整合JWT一些異常了解及處理io.jsonwebtoken.SignatureException: JWT signature does not match locally computed signature解決及UnsupportedJwtException:Signed Claims JWSs are not supported JWT IdentityServer4之Clients、Scopes、Claims與Token關聯 JWT-jwt是什么 全新的membership框架Asp.net Identity(2)——繞不過的Claims IdentityServer4 QuickStart 授權與自定義Claims Asp.net Core, 基於 claims 實現權限驗證 - 引導篇 IdentityServer4-MVC+Hybrid實現Claims授權驗證(四) JWT是什么? JWT 實戰
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM