Package org.mockserver.authentication.oidc

package org.mockserver.authentication.oidc
  • Classes
    Class
    Description
    OidcAuthenticationHandler
    Control-plane authentication handler for an external OIDC IdP: verifies an Authorization: Bearer <jwt> access token's signature against the IdP's JWK set, asserts issuer, audience, exp/nbf and required scopes, and surfaces the VERIFIED sub as the principal (source verified-oidc) along with a redaction-safe subset of claims and the normalised scope set.
    OidcJWTClaimsVerifier
    Extends CustomJWTClaimsVerifier (which already enforces audience, exp/nbf with skew, required claims and exact-match claims) to additionally assert, for an external OIDC IdP: the iss claim equals the configured issuer, and the token's granted scopes (parsed from the configured scope claim) contain every required scope. Issuer and scope checks run BEFORE delegating to the superclass so a wrong issuer or insufficient scope is reported with a precise message.
    OidcJWTValidator
    Verifies a control-plane OIDC bearer token against a remote/immutable JWK set.
    OidcScopeParser
    Normalises an OIDC token's granted scopes into a flat Set of strings.