https://github.com/AzureAD/azure-activedirectory-library-for-java: Azure active directory library for Java gives you the ability to add Windows Azure Active Directory authentication to your web application with just a few lines of additional code. Using our ADAL SDKs you can quickly and easily extend your existing application to all the employees that use Windows Azure AD and Active Directory on-premises using Active Directory Federation Services, including Office365 customers.
  • MIT License
  • Microsoft Open Technologies, Inc. 
final class com.microsoft.aad.adal4j.JwtHelper
  minor version: 0
  major version: 59
  flags: flags: (0x0030) ACC_FINAL, ACC_SUPER
  this_class: com.microsoft.aad.adal4j.JwtHelper
  super_class: java.lang.Object
{
  void <init>();
    descriptor: ()V
    flags: (0x0000) 
    Code:
      stack=1, locals=1, args_size=1
        start local 0 // com.microsoft.aad.adal4j.JwtHelper this
         0: .line 44
            aload 0 /* this */
            invokespecial java.lang.Object.<init>:()V
            return
        end local 0 // com.microsoft.aad.adal4j.JwtHelper this
      LocalVariableTable:
        Start  End  Slot  Name  Signature
            0    1     0  this  Lcom/microsoft/aad/adal4j/JwtHelper;

  static com.microsoft.aad.adal4j.ClientAssertion buildJwt(com.microsoft.aad.adal4j.AsymmetricKeyCredential, java.lang.String);
    descriptor: (Lcom/microsoft/aad/adal4j/AsymmetricKeyCredential;Ljava/lang/String;)Lcom/microsoft/aad/adal4j/ClientAssertion;
    flags: (0x0008) ACC_STATIC
    Code:
      stack=7, locals=9, args_size=2
        start local 0 // com.microsoft.aad.adal4j.AsymmetricKeyCredential credential
        start local 1 // java.lang.String jwtAudience
         0: .line 54
            aload 0 /* credential */
            ifnonnull 2
         1: .line 55
            new java.lang.IllegalArgumentException
            dup
            ldc "credential is null"
            invokespecial java.lang.IllegalArgumentException.<init>:(Ljava/lang/String;)V
            athrow
         2: .line 58
      StackMap locals:
      StackMap stack:
            invokestatic java.lang.System.currentTimeMillis:()J
            lstore 2 /* time */
        start local 2 // long time
         3: .line 60
            new com.nimbusds.jwt.JWTClaimsSet$Builder
            dup
            invokespecial com.nimbusds.jwt.JWTClaimsSet$Builder.<init>:()V
         4: .line 61
            aload 1 /* jwtAudience */
            invokestatic java.util.Collections.singletonList:(Ljava/lang/Object;)Ljava/util/List;
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.audience:(Ljava/util/List;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
         5: .line 62
            aload 0 /* credential */
            invokevirtual com.microsoft.aad.adal4j.AsymmetricKeyCredential.getClientId:()Ljava/lang/String;
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.issuer:(Ljava/lang/String;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
         6: .line 63
            invokestatic java.util.UUID.randomUUID:()Ljava/util/UUID;
            invokevirtual java.util.UUID.toString:()Ljava/lang/String;
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.jwtID:(Ljava/lang/String;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
         7: .line 64
            new java.util.Date
            dup
            lload 2 /* time */
            invokespecial java.util.Date.<init>:(J)V
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.notBeforeTime:(Ljava/util/Date;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
         8: .line 65
            new java.util.Date
            dup
            lload 2 /* time */
         9: .line 66
            ldc 600000
            ladd
        10: .line 65
            invokespecial java.util.Date.<init>:(J)V
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.expirationTime:(Ljava/util/Date;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
        11: .line 68
            aload 0 /* credential */
            invokevirtual com.microsoft.aad.adal4j.AsymmetricKeyCredential.getClientId:()Ljava/lang/String;
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.subject:(Ljava/lang/String;)Lcom/nimbusds/jwt/JWTClaimsSet$Builder;
        12: .line 69
            invokevirtual com.nimbusds.jwt.JWTClaimsSet$Builder.build:()Lcom/nimbusds/jwt/JWTClaimsSet;
        13: .line 60
            astore 4 /* claimsSet */
        start local 4 // com.nimbusds.jwt.JWTClaimsSet claimsSet
        14: .line 73
            new com.nimbusds.jose.JWSHeader$Builder
            dup
            getstatic com.nimbusds.jose.JWSAlgorithm.RS256:Lcom/nimbusds/jose/JWSAlgorithm;
            invokespecial com.nimbusds.jose.JWSHeader$Builder.<init>:(Lcom/nimbusds/jose/JWSAlgorithm;)V
            astore 6 /* builder */
        start local 6 // com.nimbusds.jose.JWSHeader$Builder builder
        15: .line 74
            new java.util.ArrayList
            dup
            invokespecial java.util.ArrayList.<init>:()V
            astore 7 /* certs */
        start local 7 // java.util.List certs
        16: .line 75
            aload 7 /* certs */
            new com.nimbusds.jose.util.Base64
            dup
            aload 0 /* credential */
            invokevirtual com.microsoft.aad.adal4j.AsymmetricKeyCredential.getPublicCertificate:()Ljava/lang/String;
            invokespecial com.nimbusds.jose.util.Base64.<init>:(Ljava/lang/String;)V
            invokeinterface java.util.List.add:(Ljava/lang/Object;)Z
            pop
        17: .line 76
            aload 6 /* builder */
            aload 7 /* certs */
            invokevirtual com.nimbusds.jose.JWSHeader$Builder.x509CertChain:(Ljava/util/List;)Lcom/nimbusds/jose/JWSHeader$Builder;
            pop
        18: .line 77
            aload 6 /* builder */
            new com.nimbusds.jose.util.Base64URL
            dup
            aload 0 /* credential */
        19: .line 78
            invokevirtual com.microsoft.aad.adal4j.AsymmetricKeyCredential.getPublicCertificateHash:()Ljava/lang/String;
            invokespecial com.nimbusds.jose.util.Base64URL.<init>:(Ljava/lang/String;)V
        20: .line 77
            invokevirtual com.nimbusds.jose.JWSHeader$Builder.x509CertThumbprint:(Lcom/nimbusds/jose/util/Base64URL;)Lcom/nimbusds/jose/JWSHeader$Builder;
            pop
        21: .line 79
            new com.nimbusds.jwt.SignedJWT
            dup
            aload 6 /* builder */
            invokevirtual com.nimbusds.jose.JWSHeader$Builder.build:()Lcom/nimbusds/jose/JWSHeader;
            aload 4 /* claimsSet */
            invokespecial com.nimbusds.jwt.SignedJWT.<init>:(Lcom/nimbusds/jose/JWSHeader;Lcom/nimbusds/jwt/JWTClaimsSet;)V
            astore 5 /* jwt */
        start local 5 // com.nimbusds.jwt.SignedJWT jwt
        22: .line 80
            new com.nimbusds.jose.crypto.RSASSASigner
            dup
            aload 0 /* credential */
            invokevirtual com.microsoft.aad.adal4j.AsymmetricKeyCredential.getKey:()Ljava/security/PrivateKey;
            invokespecial com.nimbusds.jose.crypto.RSASSASigner.<init>:(Ljava/security/PrivateKey;)V
            astore 8 /* signer */
        start local 8 // com.nimbusds.jose.crypto.RSASSASigner signer
        23: .line 82
            aload 5 /* jwt */
            aload 8 /* signer */
            invokevirtual com.nimbusds.jwt.SignedJWT.sign:(Lcom/nimbusds/jose/JWSSigner;)V
        end local 8 // com.nimbusds.jose.crypto.RSASSASigner signer
        end local 7 // java.util.List certs
        end local 6 // com.nimbusds.jose.JWSHeader$Builder builder
        24: .line 83
            goto 27
        end local 5 // com.nimbusds.jwt.SignedJWT jwt
        25: .line 84
      StackMap locals: com.microsoft.aad.adal4j.AsymmetricKeyCredential java.lang.String long com.nimbusds.jwt.JWTClaimsSet
      StackMap stack: java.lang.Exception
            astore 6 /* e */
        start local 6 // java.lang.Exception e
        26: .line 85
            new com.microsoft.aad.adal4j.AuthenticationException
            dup
            aload 6 /* e */
            invokespecial com.microsoft.aad.adal4j.AuthenticationException.<init>:(Ljava/lang/Throwable;)V
            athrow
        end local 6 // java.lang.Exception e
        start local 5 // com.nimbusds.jwt.SignedJWT jwt
        27: .line 88
      StackMap locals: com.nimbusds.jwt.SignedJWT
      StackMap stack:
            new com.microsoft.aad.adal4j.ClientAssertion
            dup
            aload 5 /* jwt */
            invokevirtual com.nimbusds.jwt.SignedJWT.serialize:()Ljava/lang/String;
            invokespecial com.microsoft.aad.adal4j.ClientAssertion.<init>:(Ljava/lang/String;)V
            areturn
        end local 5 // com.nimbusds.jwt.SignedJWT jwt
        end local 4 // com.nimbusds.jwt.JWTClaimsSet claimsSet
        end local 2 // long time
        end local 1 // java.lang.String jwtAudience
        end local 0 // com.microsoft.aad.adal4j.AsymmetricKeyCredential credential
      LocalVariableTable:
        Start  End  Slot         Name  Signature
            0   28     0   credential  Lcom/microsoft/aad/adal4j/AsymmetricKeyCredential;
            0   28     1  jwtAudience  Ljava/lang/String;
            3   28     2         time  J
           14   28     4    claimsSet  Lcom/nimbusds/jwt/JWTClaimsSet;
           22   25     5          jwt  Lcom/nimbusds/jwt/SignedJWT;
           27   28     5          jwt  Lcom/nimbusds/jwt/SignedJWT;
           15   24     6      builder  Lcom/nimbusds/jose/JWSHeader$Builder;
           16   24     7        certs  Ljava/util/List<Lcom/nimbusds/jose/util/Base64;>;
           23   24     8       signer  Lcom/nimbusds/jose/crypto/RSASSASigner;
           26   27     6            e  Ljava/lang/Exception;
      Exception table:
        from    to  target  type
          14    24      25  Class java.lang.Exception
    Exceptions:
      throws com.microsoft.aad.adal4j.AuthenticationException
    MethodParameters:
             Name  Flags
      credential   final
      jwtAudience  final
}
SourceFile: "JwtHelper.java"
InnerClasses:
  public Builder = com.nimbusds.jose.JWSHeader$Builder of com.nimbusds.jose.JWSHeader
  public Builder = com.nimbusds.jwt.JWTClaimsSet$Builder of com.nimbusds.jwt.JWTClaimsSet