thrownewAuthenticationServiceException("Client's registered request object signing algorithm ("+client.getRequestObjectSigningAlg()+") does not match request object's actual algorithm ("+alg.getName()+")");
thrownewInvalidClientException("Client's registered request object signing algorithm ("+client.getRequestObjectSigningAlg()+") does not match request object's actual algorithm ("+alg.getName()+")");
}
}
}
}
@ -193,7 +193,7 @@ public class ConnectOAuth2RequestFactory extends DefaultOAuth2RequestFactory {
}
}
if(!validator.validateSignature(signedJwt)){
if(!validator.validateSignature(signedJwt)){
thrownewAuthenticationServiceException("Signature did not validate for presented JWT request object.");
thrownewInvalidClientException("Signature did not validate for presented JWT request object.");
}
}
}elseif(alg.equals(JWSAlgorithm.HS256)
}elseif(alg.equals(JWSAlgorithm.HS256)
||alg.equals(JWSAlgorithm.HS384)
||alg.equals(JWSAlgorithm.HS384)
@ -208,7 +208,7 @@ public class ConnectOAuth2RequestFactory extends DefaultOAuth2RequestFactory {
}
}
if(!validator.validateSignature(signedJwt)){
if(!validator.validateSignature(signedJwt)){
thrownewAuthenticationServiceException("Signature did not validate for presented JWT request object.");
thrownewInvalidClientException("Signature did not validate for presented JWT request object.");