Uses of Class org.forgerock.secrets.Secret (OpenAM Server Only 7.3.1 Documentation)

Packages that use Secret
Package	Description
org.forgerock.openam.secrets	The AM supporting classes for centrally configuring secrets.
org.forgerock.openam.secrets.config	Classes and interfaces to create configurable secret store backends.
org.forgerock.secrets	Provides a unified API for accessing secrets of various kinds.
org.forgerock.secrets.gcp.sm	Classes for integrating Google Secret Manager into the ForgeRock Secrets API.
org.forgerock.secrets.keys	Contains cryptographic key related API objects.
org.forgerock.secrets.keystore	Implementations of `SecretStore` for accessing keys stored in Java KeyStores, such as PKCS#11 Hardware Security Modules (HSMs) and PKCS#12 file-based encrypted key stores.
org.forgerock.secrets.propertyresolver	Provides a `SecretStore` implementation that loads secrets from a Common Configuration `PropertyResolver` and then decodes it with a `SecretPropertyFormat`.

Uses of Secret in org.forgerock.openam.secrets

Classes in org.forgerock.openam.secrets with type parameters of type Secret
Modifier and Type	Class	Description
`class`	`DefaultingPurpose<S extends Secret>`	A purpose that can fallback to a default secret ID if the first - more specific - secret ID could not be found in the secrets provider.

Methods in org.forgerock.openam.secrets with type parameters of type Secret
Modifier and Type	Method	Description
`<T extends Secret> SecretReference<T>`	SecretsReferenceProvider.`get(Purpose<T> purpose)`	Get the reference for the secrets that fulfil the purpose.
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProviderFacade.`getActiveSecret(DefaultingPurpose<S> defaultingPurpose, String instanceId)`	Get the active secret for a `DefaultingPurpose`.
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProviderFacade.`getActiveSecret(Purpose<S> purpose)`
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProviderFacade.`getNamedSecret(DefaultingPurpose<S> defaultingPurpose, String instanceId, String keyId)`	Get the named secret for a `DefaultingPurpose`.
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProviderFacade.`getNamedSecret(Purpose<S> purpose, String id)`
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	SecretsProviderFacade.`getValidSecrets(DefaultingPurpose<S> defaultingPurpose, String instanceId)`	Get a stream of the valid secrets for a `DefaultingPurpose`.
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	SecretsProviderFacade.`getValidSecrets(Purpose<S> purpose)`

Methods in org.forgerock.openam.secrets that return types with arguments of type Secret
Modifier and Type	Method	Description
`SecretStore<? extends Secret>`	LockedSecretStoreProvider.`getStore(SecretStoreContext context, SecretsReferenceProvider secrets)`	Get the commons `SecretStore` instance for this instance.
`SecretStore<? extends Secret>`	SimpleSecretStoreProvider.`getStore(SecretStoreContext context)`	Get the commons `SecretStore` instance for this instance.

Uses of Secret in org.forgerock.openam.secrets.config

Methods in org.forgerock.openam.secrets.config that return types with arguments of type Secret
Modifier and Type	Method	Description
`default SecretStore<? extends Secret>`	GoogleSecretManagerSecretStoreProvider.`getStore(SecretStoreContext context, SecretsReferenceProvider secretsReferenceProvider)`

Uses of Secret in org.forgerock.secrets

Classes in org.forgerock.secrets with type parameters of type Secret
Modifier and Type	Class	Description
`class`	`Purpose<T extends Secret>`	A purpose encapsulates both a name for a function that requires access to secrets, together with a hint as to the intended usage of those secrets.
`interface`	`SecretConstraint<T extends Secret>`	Interface for constraints on a secret that must be satisfied for a given `Purpose`.
`class`	`SecretReference<T extends Secret>`	A long-lived reference to an active or named secret.
`interface`	`SecretStore<T extends Secret>`	A backend storage mechanism for certain kinds of secrets.
`class`	`ThreadPoolSecretStore<T extends Secret>`	A secret store that wraps another secret store and performs all query operations in a background thread using a thread pool.

Subclasses of Secret in org.forgerock.secrets
Modifier and Type	Class	Description
`class`	`GenericSecret`	A generic secret represented as an opaque blob of bytes, such as a password or API key.

Methods in org.forgerock.secrets with type parameters of type Secret
Modifier and Type	Method	Description
`static <T extends Secret> SecretReference<T>`	SecretReference.`active(SecretsProvider secretsProvider, Purpose<T> purpose, Clock clock)`	Creates a reference to the active secret for the given purpose using the given secrets provider.
`<T extends Secret> T`	SecretBuilder.`build(Class<T> secretType)`	Deprecated. Use `SecretBuilder.build(Purpose)` instead.
`<T extends Secret> T`	SecretBuilder.`build(Purpose<T> purpose)`	Builds a secret of the given type, enforcing any `constraints` attached to the purpose.
`static <T extends Secret> SecretReference<T>`	SecretReference.`constant(T secret)`	Create a constant `SecretReference` for the given secret, that will never expire.
`<S extends Secret> SecretReference<S>`	SecretsProvider.`createActiveReference(Purpose<S> purpose)`	Creates the secret reference from the given purpose.
`<S extends Secret> SecretReference<S>`	SecretsProvider.`createNamedReference(Purpose<S> purpose, String name)`	Creates a reference to a secret with the given name (stable id) for the given purpose.
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProvider.`getActiveSecret(Purpose<S> purpose)`	Gets the currently active secret for the given purpose.
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	SecretsProvider.`getNamedOrValidSecrets(Purpose<S> purpose, String id)`	If the given id is not null, then this returns the single named secret that corresponds to that stable id (or a stream of valid secrets for the given `purpose` if no such secret exists), otherwise it returns all valid secrets for the given purpose.
`<S extends Secret> Promise<S,NoSuchSecretException>`	SecretsProvider.`getNamedSecret(Purpose<S> purpose, String id)`	Gets the secret for the given purpose with the given stable secret id.
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	SecretsProvider.`getValidSecrets(Purpose<S> purpose)`	Returns all secrets for the given purpose which have not yet expired.
`static <T extends Secret> SecretReference<T>`	SecretReference.`named(SecretsProvider secretsProvider, Purpose<T> purpose, String name, Clock clock)`	Creates a reference to a named secret using the given secrets provider.
`static <T extends Secret> Purpose<T>`	Purpose.`purpose(String label, Class<T> type)`	Constructs a purpose object.
`static <T extends Secret> Purpose<T>`	Purpose.`purpose(String label, Class<T> type, SecretConstraint<? super T>... constraints)`	Constructs a purpose object.
`protected <T extends Secret> void`	SecretsProvider.`setActiveStore(SecretStore<? super T> store, Purpose<? extends T> purpose)`	Sets the active store to use for the given purpose.
`<T extends Secret> SecretsProvider`	SecretsProvider.`setActiveStore(SecretStore<? super T> store, Purpose<? extends T>... purposes)`	Sets the active store to use for the given purpose.
`<S extends Secret> SecretsProvider`	SecretsProvider.`useSpecificSecretForPurpose(Purpose<S> purpose, S secret)`	Configures this SecretsProvider to always return the specific given secret for the given purpose.
`static <S extends Secret> ThreadPoolSecretStore<S>`	ThreadPoolSecretStore.`wrap(SecretStore<S> store)`	Wraps the given store in an asynchronous thread-pool executor using the system `ForkJoinPool.commonPool()`.
`static <S extends Secret> ThreadPoolSecretStore<S>`	ThreadPoolSecretStore.`wrap(SecretStore<S> store, ExecutorService executor)`	Wraps the given store in an asynchronous thread-pool executor using the given thread pool.

Uses of Secret in org.forgerock.secrets.gcp.sm

Methods in org.forgerock.secrets.gcp.sm with type parameters of type Secret
Modifier and Type	Method	Description
`<S extends Secret> Promise<S,NoSuchSecretException>`	GoogleSecretManagerSecretStore.`getActive(Purpose<S> purpose)`
`<S extends Secret> Promise<S,NoSuchSecretException>`	GoogleSecretManagerSecretStore.`getNamed(Purpose<S> purpose, String name)`
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	GoogleSecretManagerSecretStore.`getValid(Purpose<S> purpose)`

Methods in org.forgerock.secrets.gcp.sm that return types with arguments of type Secret
Modifier and Type	Method	Description
`Class<Secret>`	GoogleSecretManagerSecretStore.`getStoredType()`

Uses of Secret in org.forgerock.secrets.keys

Subclasses of Secret in org.forgerock.secrets.keys
Modifier and Type	Class	Description
`class`	`CertificateVerificationKey`	A key used for verifying certificate signatures.
`class`	`CryptoKey`	Base class for all secrets that are used as keys for cryptographic operations.
`class`	`DataDecryptionKey`	A key that is used for decrypting confidential data.
`class`	`DataEncryptionKey`	A key that is used for encrypting confidential data.
`class`	`KeyAgreementKey`	A key that is used in a key-agreement protocol (such as Diffie-Hellman) to agree another key.
`class`	`KeyDecryptionKey`	A key that is used to decrypt (or "unwrap") other keys that have been encrypted with a `KeyEncryptionKey`.
`class`	`KeyEncryptionKey`	A key that is used to encrypt ("wrap") other keys.
`class`	`SigningKey`	A key that is used for signing digital signatures.
`class`	`VerificationKey`	A key used for verifying digital signatures.

Uses of Secret in org.forgerock.secrets.keystore

Method parameters in org.forgerock.secrets.keystore with type arguments of type Secret
Modifier and Type	Method	Description
`String`	KeyStoreSecretStore.StableIdProvider.`stableIdFor(KeyStoreSecretStore.KeyDetails keyDetails, Class<? extends Secret> secretType)`	Produce the secret's stable ID.

Uses of Secret in org.forgerock.secrets.propertyresolver

Methods in org.forgerock.secrets.propertyresolver with type parameters of type Secret
Modifier and Type	Method	Description
`<S extends Secret> Promise<S,NoSuchSecretException>`	PropertyResolverSecretStore.`getActive(Purpose<S> purpose)`
`<S extends Secret> Promise<S,NoSuchSecretException>`	PropertyResolverSecretStore.`getNamed(Purpose<S> purpose, String name)`
`<S extends Secret> Promise<Stream<S>,NeverThrowsException>`	PropertyResolverSecretStore.`getValid(Purpose<S> purpose)`	Returns a stream of the active secret for the given purpose.

Methods in org.forgerock.secrets.propertyresolver that return types with arguments of type Secret
Modifier and Type	Method	Description
`Class<Secret>`	PropertyResolverSecretStore.`getStoredType()`