NewAudienceValidator creates a new AudienceValidator.

NewParser creates new JWT parser with specified keys provider.

NewParserWithOpts creates new JWT parser with specified keys provider and additional options.

AccessPolicy represents a single access policy which specifies access rights to a tenant or resource in the scope of a resource server.

AudienceMissingError represents an error when JWT audience is missing, but it's required.

AudienceNotExpectedError represents an error when JWT contains not expected audience.

AudienceValidator is a validator that checks if the audience claim ("aud") of the token is expected.

CachingParser uses the functionality of Parser to parse JWT, but stores resulted Claims objects in the cache.

DefaultClaims is a struct that extends jwt.RegisteredClaims with a custom scope field.

IssuerMissingError represents an error when JWT issuer is missing.

IssuerUntrustedError represents an error when JWT issuer is untrusted.

Parser is an object for parsing, validation and verification JWT.

ParserOpts additional options for parser.

ScopeFilterAccessPolicy is a struct that represents a single access policy filter.

SignAlgUnknownError represents an error when JWT signing algorithm is unknown.

CachingKeysProvider is an interface for providing keys for verifying JWT.

Claims is an interface that extends jwt.Claims from the "github.com/golang-jwt/jwt/v5" with additional methods for working with access policies.

ClaimsCache is an interface that must be implemented by used cache implementations.

KeysProvider is an interface for providing keys for verifying JWT.

Scope is a slice of access policies.

ScopeFilter is a slice of access policy filters.

TrustedIssNotFoundFallback is a function called when given issuer is not found in the list of trusted ones.