Package-level declarations

Thrown when a JWT's exp (expiration time) claim indicates the token has already expired.

Thrown when a claim is present in the token but its value does not match the expected value.

Base class for all exceptions thrown by the KJWT library.

Thrown when a JWK JSON object is structurally invalid or is missing one or more required fields needed to reconstruct the key.

Thrown when a JWT string is structurally invalid, such as having the wrong number of parts, containing invalid Base64URL encoding, or being unparseable as JSON.

Thrown when a required claim is absent from the token's payload.

Thrown when a required header parameter is absent from the token's header.

Thrown when a JWT's nbf (not-before) claim indicates the token is not yet valid.

Thrown when signature verification of a JWS token fails or when decryption of a JWE token fails, indicating the token may have been tampered with or was encrypted with a different key.

Thrown when a token uses an algorithm, key type, or feature that is not supported by this library.