auth-foundation/com.okta.authfoundation.client.kmp/DefaultAccessTokenValidator

DefaultAccessTokenValidator

class DefaultAccessTokenValidator : AccessTokenValidator

Default AccessTokenValidator that validates the at_hash claim in an ID token against the SHA-256 left-half hash of the access token, per OpenID Connect Core 1.0.

Validation is skipped if the at_hash claim is absent from the ID token. Only the RS256 algorithm is supported.

Constructors

Link copied to clipboard
constructor()

Functions

Link copied to clipboard
open suspend override fun validate(accessToken: String, idToken: Jwt)

Validates the accessToken against the at_hash claim in the idToken.

Generated by Dokka
© 2026 Copyright