Accessing Claims through Java SDK


#1

How can claims be accessed, after authentication, through the Java SDK? I expected if I authenticate with a responseType of “id_token”, they should be accessible through the AuthResult.IdToken, but that doesn’t seem to be the case.


#2

@deglmann which version of the SDK are you using? I’m guessing you are using 0.0.4. If so I’d encourage you to take a look at the current version.

Back to your original question, the older SDK does not parse the JWTs client side. You could use the JWT parser of your choice, or take a look at Okta’s parser (which wraps an existing paring lib): okta/okta-jwt-verifier-java

Take a look at the example in the README, just replace the decodeAccessToken() with decodeIdToken()


#3

It doesn’t appear that the new SDK provides the AuthApiClient class I had previously been using. Has this been removed? If so, is there anything in the SDK that still supports authentication through a class rather than direct http posts?


#4

Not directly in the SDK, we are integrating authentication through higher level integrations (like Spring for example). What does your stack look like and maybe I can point you in the right direction (or it will help us prioritize)


#5

Ok, that makes sense. Our software stack is built on the older 1.X version of the Play Framework, which has built in OAuth 1, 2, and OpenID integration. I’m not sure if that can be used to communicate with Okta directly instead of the SDK.