Java / J2EE

Cryptography and Tokens 

The Authentication Service Team recommends to use Apache CXF for JOSE, http://cxf.apache.org/docs/jax-rs-jose.html

Important:  

While Apache CXF does not include a direct dependency to Bouncy Castle library, it is nevertheless needed at runtime, especially for certificate / key parsing.

Make sure to include the latest version of Bouncy Castle Provider (bcprov) and PKIX (bcpkix) in your classpath.

https://www.bouncycastle.org/latest_releases.html

Topics in this section: