Class AccessTokenSecretStore

  • All Implemented Interfaces:
    SecretStore<GenericSecret>

    public final class AccessTokenSecretStore
    extends Object
    implements SecretStore<GenericSecret>
    A secret store that can obtain access tokens from an OAuth 2 provider. This store will fetch a fresh access token every time one is requested, so it is recommended to use a SecretReference to cache the returned access token:
    
     secretsProvider.setActiveStore(accessTokenStore, purpose);
     SecretReference<GenericSecret> accessTokenRef = secretsProvider.createActiveReference(purpose);
     
    • Method Detail

      • getStoredType

        public Class<GenericSecret> getStoredType()
        Description copied from interface: SecretStore
        The top-level class that this store is capable of storing. This is a reification of the type parameter and can be used to lookup stores for a given type.
        Specified by:
        getStoredType in interface SecretStore<GenericSecret>
        Returns:
        the top-most type that this store is capable of storing, typically either CryptoKey for key-stores, GenericSecret for password stores, or Secret if the store is capable of storing any type of secret.
      • getValid

        public <S extends GenericSecretPromise<Stream<S>,​NeverThrowsException> getValid​(Purpose<S> purpose)
        Description copied from interface: SecretStore
        Returns all valid secrets for the given purpose from this store.
        Specified by:
        getValid in interface SecretStore<GenericSecret>
        Type Parameters:
        S - the type of secret.
        Parameters:
        purpose - the purpose.
        Returns:
        a stream of all valid secrets of the given type from this store, or an empty stream if none exist.
      • refresh

        public void refresh()
        Description copied from interface: SecretStore
        Indicates that the store should refresh its secrets from the backing storage mechanism. This can be used to cause reload of a store after a secret rotation if the backend does not automatically detect such changes. Refresh may be an asynchronous operation and no guarantees are made about when clients of this secret store may see updated secrets after a call to refresh.
        Specified by:
        refresh in interface SecretStore<GenericSecret>