SstJwt

Server Smalltalk Guide : JSON Web Token (JWT) : SstJwt

SstJwt

Class Methods

decode:verifyWith:

  Returns an EsFuture that resolves to a SstJwt if the given JWT string in JWS compact serialization can be decoded and verified.
    The verification may use any supported algorithm, except 'none'.
    The future fails if the string is not a valid JWT or if the JWT fails verification with the given key store.
    
     Arguments:
        aCompactString - <String> the JWT in the JWS compact serialization form.
        aJwkStore - <SstJwkStore> the key store which holds the necessary keys required for verification of the JWT.    
    Answers:
        <EsFuture>

decode:verifyWith:allowedAlgorithms:

  Returns an EsFuture that resolves to a SstJwt if the given JWT string in JWS compact serialization can be decoded and verified.
     The verification may use all algorithms specified in @allowedAlgorithms, or any supported algorithm except 'none' if @allowedAlgorithms is nil.
    The future fails if the string is not a valid JWT or if the JWT fails verification with the given key store.
    
     Arguments:
        aCompactString - <String> the JWT in the JWS compact serialization form.
        aJwkStore - <SstJwkStore> the key store which holds the necessary keys required for verification of the JWT.
        allowedAlgorithms - <UndefinedObject | Collection of String> where each string is an algorithm name (as defined in RFC 7518, section-3.1) that is allowed to verify/decrypt the payload.
    Answers:
        <EsFuture>

fromCompactString:

  Creates a Jwt from the given JWS in compact string serialization, without verifying integrity.
     
     Answers:
        <SstJwt>

fromJws:

  Creates a Jwt from the given JWS without verifying integrity.
         
     Answers:
        <SstJwt>

Instance Methods

asCompactString

  Answers the compact string serialization for the receiver.
     
     Answers:
        <String>

claims

  Answer the claims set of the receiver.
     
     Answers:
        <SstJwtClaimsSet>

header

  Answers the protected header for the receiver.
     
    Answers:
        <SstJosePayload>

isVerified

  Answers true if this JWT has been verified, false otherwise.
     
     Answers:
        <Boolean>

verifyWith:

  Returns an EsFuture that resolves to true if this JWT can be verified with the keys present in the @aJwkStore.
    Otherwise, the future resolves to false or fails with a SstJoseNoSupportedAlgorithmException.
    
    The verification may use any supported algorithm, except 'none'.
    
     Arguments:
        aJwkStore - <SstJwkStore> the key store which holds the necessary keys required for verification of the JWT.
    Answers:
        <EsFuture>

verifyWith:allowedAlgorithms:

  Returns an EsFuture that resolves to true if this JWT can be verified with the keys present in the @aJwkStore.
    Otherwise, the future resolves to false or fails with a SstJoseNoSupportedAlgorithmException.
    
    The verification may use all algorithms specified in @allowedAlgorithms, or any supported algorithm except 'none' if @allowedAlgorithms is nil.
    
     Arguments:
        aJwkStore - <SstJwkStore> the key store which holds the necessary keys required for verification of the JWT.
        allowedAlgorithms - <UndefinedObject | Collection of String> where each string is an algorithm name (as defined in RFC 7518, section-3.1) that is allowed to verify/decrypt the payload.
    Answers:
        <EsFuture>

Last modified date: 01/09/2026