Source code

001/*
002 * nimbus-jose-jwt
003 *
004 * Copyright 2012-2016, Connect2id Ltd.
005 *
006 * Licensed under the Apache License, Version 2.0 (the "License"); you may not use
007 * this file except in compliance with the License. You may obtain a copy of the
008 * License at
009 *
010 *    http://www.apache.org/licenses/LICENSE-2.0
011 *
012 * Unless required by applicable law or agreed to in writing, software distributed
013 * under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
014 * CONDITIONS OF ANY KIND, either express or implied. See the License for the
015 * specific language governing permissions and limitations under the License.
016 */
017
018package com.nimbusds.jwt;
019
020
021import com.nimbusds.jose.JOSEObject;
022import com.nimbusds.jose.Payload;
023import com.nimbusds.jose.PlainHeader;
024import com.nimbusds.jose.PlainObject;
025import com.nimbusds.jose.util.Base64URL;
026import net.jcip.annotations.ThreadSafe;
027
028import java.text.ParseException;
029import java.util.Map;
030
031
032/**
033 * Unsecured (plain) JSON Web Token (JWT).
034 *
035 * @author Vladimir Dzhuvinov
036 * @version 2024-06-06
037 */
038@ThreadSafe
039public class PlainJWT extends PlainObject implements JWT {
040
041
042        private static final long serialVersionUID = 1L;
043
044
045        /**
046         * The JWT claims set.
047         */
048        private JWTClaimsSet claimsSet;
049
050
051        /**
052         * Creates a new unsecured (plain) JSON Web Token (JWT) with a default
053         * {@link com.nimbusds.jose.PlainHeader} and the specified claims 
054         * set.
055         *
056         * @param claimsSet The JWT claims set. Must not be {@code null}.
057         */
058        public PlainJWT(final JWTClaimsSet claimsSet) {
059
060                super(claimsSet.toPayload());
061                this.claimsSet = claimsSet;
062        }
063
064
065        /**
066         * Creates a new unsecured (plain) JSON Web Token (JWT) with the
067         * specified header and claims set.
068         *
069         * @param header    The unsecured header. Must not be {@code null}.
070         * @param claimsSet The JWT claims set. Must not be {@code null}.
071         */
072        public PlainJWT(final PlainHeader header, final JWTClaimsSet claimsSet) {
073
074                super(header, claimsSet.toPayload());
075                this.claimsSet = claimsSet;
076        }
077
078
079        /**
080         * Creates a new unsecured (plain) JSON Web Token (JWT) with the
081         * specified Base64URL-encoded parts.
082         *
083         * @param firstPart  The first part, corresponding to the unsecured
084         *                   header. Must not be {@code null}.
085         * @param secondPart The second part, corresponding to the claims set 
086         *                   (payload). Must not be {@code null}.
087         *
088         * @throws ParseException If parsing of the serialised parts failed.
089         */
090        public PlainJWT(final Base64URL firstPart, final Base64URL secondPart)
091                throws ParseException {
092
093                super(firstPart, secondPart);
094        }
095
096
097        @Override
098        public JWTClaimsSet getJWTClaimsSet()
099                throws ParseException {
100
101                if (claimsSet != null) {
102                        return claimsSet;
103                }
104
105                Map<String, Object> jsonObject = getPayload().toJSONObject();
106                if (jsonObject == null) {
107                        throw new ParseException("Payload of unsecured JOSE object is not a valid JSON object", 0);
108                }
109
110                claimsSet = JWTClaimsSet.parse(jsonObject);
111                return claimsSet;
112        }
113
114
115        @Override
116        protected void setPayload(Payload payload) {
117
118                // setPayload() changes the result of getJWTClaimsSet().
119                // set claimsSet = null and reparse payload again when called getJWTClaimsSet().
120                claimsSet = null;
121                super.setPayload(payload);
122        }
123
124        /**
125         * Parses an unsecured (plain) JSON Web Token (JWT) from the specified
126         * string in compact format.
127         *
128         * @param s The string to parse. Must not be {@code null}.
129         *
130         * @return The unsecured JWT.
131         *
132         * @throws ParseException If the string couldn't be parsed to a valid 
133         *                        unsecured JWT.
134         */
135        public static PlainJWT parse(final String s)
136                throws ParseException {
137
138                Base64URL[] parts = JOSEObject.split(s);
139
140                if (! parts[2].toString().isEmpty()) {
141
142                        throw new ParseException("Unexpected third Base64URL part in the unsecured JWT object", 0);
143                }
144
145                return new PlainJWT(parts[0], parts[1]);
146        }
147}