JwtSecurityTokenHandler.CanReadToken(String) Method

Definition

Determines if the string is a well formed Json Web Token (JWT).

See: https://datatracker.ietf.org/doc/html/rfc7519

public override bool CanReadToken (string token);
override this.CanReadToken : string -> bool
Public Overrides Function CanReadToken (token As String) As Boolean

Parameters

token
String

String that should represent a valid JWT.

Returns

'false' if the token is null or whitespace.

'false' if token.Length is greater than MaximumTokenSizeInBytes.

'true' if the token is in JSON compact serialization format.

Remarks

Uses IsMatch(String, String) matching one of:

JWS: @"^[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]*$"

JWE: (dir): @"^[A-Za-z0-9-_]+\.\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]*$"

JWE: (wrappedkey): @"^[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]$"

Applies to