JwtSecurityTokenHandler Class
A SecurityTokenHandler designed for creating and validating JSON Web Tokens (JWT). See http://tools.ietf.org/html/draft-ietf-oauth-json-web-token-07 for more information about the JWT specification.
Inheritance Hierarchy
System.IdentityModel.Tokens.SecurityTokenHandler
System.IdentityModel.Tokens.JwtSecurityTokenHandler
Namespace: System.IdentityModel.Tokens
Assembly: System.IdentityModel.Tokens.Jwt (in System.IdentityModel.Tokens.Jwt.dll)
Syntax
'Declaration
Public Class JwtSecurityTokenHandler _
Inherits SecurityTokenHandler
public class JwtSecurityTokenHandler : SecurityTokenHandler
public ref class JwtSecurityTokenHandler : public SecurityTokenHandler
type JwtSecurityTokenHandler =
class
inherit SecurityTokenHandler
end
public class JwtSecurityTokenHandler extends SecurityTokenHandler
The JwtSecurityTokenHandler type exposes the following members.
Constructors
| Name | Description | |
|---|---|---|
.gif "Public method") |
JwtSecurityTokenHandler | Initializes an instance of JwtSecurityTokenHandler. |
Top
Properties
| Name | Description | |
|---|---|---|
.gif "Public property") |
CanValidateToken | Returns 'true' which indicates this instance can validate a JwtSecurityToken. |
|
CanWriteToken | Returns 'true', which indicates this instance can write JwtSecurityToken. |
|
CertificateValidator | Gets or sets the X509CertificateValidator responsible for validating the certificate that signed the JwtSecurityToken. |
|
DefaultTokenLifetimeInMinutes | Gets or sets the default token lifetime. |
.gif "Static member") |
InboundAlgorithmMap | Gets or sets the IDictionary<TKey, TValue> used to map Inbound Cryptographic Algorithms. |
|
InboundClaimTypeMap | Gets or sets the InboundClaimTypeMap that is used when setting the Type for claims in the ClaimsPrincipal extracted when validating a JwtSecurityToken.The Type is set to the JSON claim 'name' after translating using this mapping. |
|
JwtSecurityTokenRequirement | Gets or sets the JwtSecurityTokenRequirement. |
|
MaxClockSkew | Gets or sets the clockskew to use when validating times. |
|
MaxTokenSizeInBytes | Gets or sets the size limit when reading a token as a string. |
|
NameClaimType | Gets or sets the String passed to ClaimsIdentity. |
|
OutboundAlgorithmMap | Gets or sets the IDictionary<TKey, TValue> used to map Outbound Cryptographic Algorithms. |
|
OutboundClaimTypeMap | Gets or sets the OutboundClaimTypeMap that is used when creating a JwtSecurityToken from Claim(s).The JSON claim 'name' value is set to Type after translating using this mapping. |
|
RequireExpirationTime | Gets or sets a value indicating whether if the 'expiration' value in a JwtSecurityToken is required. |
|
RequireSignedTokens | Gets or sets a value indicating whether a JwtSecurityToken can be valid if not signed. |
|
RoleClaimType | Gets or sets the String passed to ClaimsIdentity. |
|
ShortClaimTypeProperty | Gets or sets the property name of Properties the will contain the original JSON claim 'name' if a mapping occurred when the Claim(s) were created.See for more information. |
|
SignatureProviderFactory | Gets or sets the SignatureProviderFactory for creating SignatureProvider(s). |
|
TokenType | Gets the Type supported by this handler. |
Top
Methods
| Name | Description | |
|---|---|---|
|
CanReadToken(String) | Determines if the string is a well formed JSON Web Token (JWT). |
|
CanReadToken(XmlReader) | Determines if the XmlReader is positioned on a well formed <BinarySecurityToken> element. |
.gif "Protected method") |
ClaimsIdentityFromJwt | Creates a ClaimsIdentity from a JwtSecurityToken. |
|
CreateActorValue | Creates the 'value' for the actor claim: { actort, 'value' } |
|
CreateSecurityTokenReference | Creates SecurityKeyIdentifierClause that identifies the SecurityToken. |
|
CreateToken(SecurityTokenDescriptor) | Creates a JwtSecurityToken based on values found in the SecurityTokenDescriptor. |
|
CreateToken(String, String, ClaimsIdentity, Lifetime, SigningCredentials, SignatureProvider) | Uses the JwtSecurityToken constructor, first creating the JwtHeader and JwtPayload.If SigningCredentials is not null, RawData will be signed. |
|
GetTokenTypeIdentifiers | Gets the token type identifier(s) supported by this handler. |
|
LoadCustomConfiguration | Loads custom configuration from an XmlNodeList. Override this method to provide custom handling of elements. |
|
ReadToken(String) | Reads a token encoded in JSON Compact serialized format. |
|
ReadToken(XmlReader) | Reads a JSON web token wrapped inside a WS-Security BinarySecurityToken xml element. |
|
ValidateAudience(JwtSecurityToken) | Validates that Audience is an expected value. |
|
ValidateAudience(JwtSecurityToken, TokenValidationParameters) | Validates that Audience is an expected value. |
|
ValidateIssuer(JwtSecurityToken) | Validates that Issuer is an expected value. |
|
ValidateIssuer(JwtSecurityToken, TokenValidationParameters) | Validates that Issuer is an expected value. |
|
ValidateLifetime | Validates ValidFrom and ValidTo. |
|
ValidateSignature(JwtSecurityToken) | Validates the signature of a JwtSecurityToken |
|
ValidateSignature(JwtSecurityToken, TokenValidationParameters) | Validates that the signature is valid. |
|
ValidateSigningToken | Validates the SigningToken is an expected value. |
|
ValidateToken(SecurityToken) | Validates a JwtSecurityToken and returns ReadOnlyCollection<T>. |
|
ValidateToken(String) | Reads and validates a token encoded in JSON Compact serialized format. |
|
ValidateToken(JwtSecurityToken) | Validates a JwtSecurityToken and returns a ClaimsPrincipal. |
|
ValidateToken(String, TokenValidationParameters) | Reads and validates a token encoded in JSON Compact serialized format. |
|
ValidateToken(JwtSecurityToken, TokenValidationParameters) | Validates a JwtSecurityToken and returns a ClaimsPrincipal. |
|
WriteToken(SecurityToken) | Writes the JwtSecurityToken as a JSON Compact serialized format string. |
|
WriteToken(XmlWriter, SecurityToken) | Writes the JwtSecurityToken wrapped in a WS-Security BinarySecurityToken using the XmlWriter. |
Top
Thread Safety
Any public static (Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.