Uses of Class
org.forgerock.secrets.SecretReference
Package
Description
Core
Filter
implementations.This package provides APIs for OAuth 2.0 services implementations.
Classes and interfaces for JWT signing and JWS'.
Collection of heaplets supporting OAuth2 client authentication Filters.
Contains proxy related heaplets.
Provides the Common Secrets API for accessing secrets of various kinds.
Access Management Server.
AM authentication service.
Provides JWT capabilities to the Identity Gateway.
Miscellaneous utility classes.
Provides a unified API for accessing secrets of various kinds.
Contains secret credential related API objects.
Implementations of
SecretStore
for accessing keys stored in Java KeyStores, such as
PKCS#11 Hardware Security Modules (HSMs) and PKCS#12 file-based encrypted key stores.A Secrets API backend that can obtain OAuth 2 access tokens from a token endpoint, along with a collection of
grant type handlers.
-
Uses of SecretReference in org.forgerock.http.filter
Modifier and TypeMethodDescriptionstatic Filter
Filters.newBearerTokenAuthFilter
(SecretReference<GenericSecret> tokenReference) Creates an authenticationFilter
that puts a Bearer Authorization header in the request.static Filter
Filters.newBearerTokenAuthFilterWithoutRetry
(SecretReference<GenericSecret> tokenReference) Creates an authenticationFilter
that puts a Bearer Authorization header in the request.static Filter
Filters.newHttpBasicAuthenticationFilter
(String username, SecretReference<GenericSecret> password) Deprecated, for removal: This API element is subject to removal in a future version.static Filter
Filters.newHttpBasicAuthenticationFilter
(String username, SecretReference<GenericSecret> password, Charset charset) Deprecated, for removal: This API element is subject to removal in a future version.static Filter
Filters.newUrlEncodedHttpBasicAuthFilter
(String username, SecretReference<GenericSecret> password) Deprecated, for removal: This API element is subject to removal in a future version. -
Uses of SecretReference in org.forgerock.http.oauth2
Modifier and TypeMethodDescriptionEncryptedPrivateKeyJwtClientAuthenticationFilter.Builder.withEncryptionSecretReference
(SecretReference<DataEncryptionKey> secretReference) SetsSecretReference
to use as the encryption key.PrivateKeyJwtClientAuthenticationFilter.Builder.withSigningSecretReference
(SecretReference<SigningKey> secretReference) SetsSecretReference
to use as the signing key.ModifierConstructorDescriptionClientSecretBasicAuthenticationFilter
(String clientId, SecretReference<GenericSecret> secretReference) Deprecated.Creates and instance of ClientSecretBasicAuthenticationFilter.ClientSecretPostAuthenticationFilter
(String clientId, SecretReference<GenericSecret> secretReference) Creates an instance of this class. -
Uses of SecretReference in org.forgerock.json.jose.jws
Modifier and TypeMethodDescriptionSigningManager.newSigningHandler
(SecretReference<SigningKey> secretReference) Constructs a new SigningHandler configured for signing with the provided secret reference. -
Uses of SecretReference in org.forgerock.openig.filter.oauth2.client.authentication
Modifier and TypeMethodDescriptionprotected Filter
ClientSecretBasicAuthenticationFilterHeaplet.createFilter
(String clientId, SecretReference<GenericSecret> clientSecretRef) protected Filter
ClientSecretPostAuthenticationFilterHeaplet.createFilter
(String clientId, SecretReference<GenericSecret> clientSecretRef) -
Uses of SecretReference in org.forgerock.openig.proxy
ModifierConstructorDescriptionCustomProxyOptions
(URI uri, String username, SecretReference<GenericSecret> passwordReference) Creates a newCustomProxyOptions
with login/password. -
Uses of SecretReference in org.forgerock.openig.secrets
Modifier and TypeMethodDescription<S extends Secret>
SecretReference<S>SecretsService.createActiveReference
(Purpose<S> purpose) Create aSecretReference
for the givenPurpose
.<S extends Secret>
SecretReference<S>SecretsService.createNamedReference
(Purpose<S> purpose, String name) Creates a reference to a secret with the given name (stable id) for the given purpose. -
Uses of SecretReference in org.forgerock.openig.tools.am
Modifier and TypeMethodDescriptionstatic AmService.Discovery
AmService.discovery
(URI baseUri, Realm realm, String cookieName, Version versionHint, String agentId, SecretReference<GenericSecret> agentPassword, Handler amHandler) Create an AM Discovery object which will get information from AM upon building. -
Uses of SecretReference in org.forgerock.openig.tools.authentication
Modifier and TypeMethodDescriptionAuthenticationService.authenticate
(Context context, String username, SecretReference<GenericSecret> passwordRef) Authenticates a subject (identified with the givenusername
andpasswordRef
credentials), returning asynchronously an SSO token (if the authentication succeeded) or anAuthenticationException
on failures (I/O, invalid credentials, ...).AuthenticatorAuthenticationService.authenticate
(Context context, String username, SecretReference<GenericSecret> passwordRef) -
Uses of SecretReference in org.forgerock.openig.tools.jwt.factory
ModifierConstructorDescriptionEncryptedJwtFactory
(JweAlgorithm encryptionAlgorithm, EncryptionMethod encryptionMethod, SecretReference<DataEncryptionKey> encryptionKeyReference) Create a new instance of anJwtFactory
forEncryptedJwt
.SignedJwtFactory
(SigningManager signingManager, SecretReference<SigningKey> secretReference, JwsAlgorithm signingAlgorithm) Create a new instance ofSignedJwtFactory
.SignedJwtFactory
(SigningManager signingManager, SecretReference<SigningKey> secretReference, JwsAlgorithm signingAlgorithm, boolean includeKeyId) Create a new instance ofSignedJwtFactory
.SignedThenEncryptedJwtFactory
(SignedJwtFactory signedJwtFactory, JweAlgorithm encryptionAlgorithm, EncryptionMethod encryptionMethod, SecretReference<DataEncryptionKey> encryptionKeyReference) Create a new instance ofSignedThenEncryptedJwtFactory
. -
Uses of SecretReference in org.forgerock.openig.util
Modifier and TypeMethodDescriptionJsonValues.constantSecretReference()
Returns aconstant(Secret)
from aGenericSecret
attribute value.static <S extends Secret>
Function<JsonValue,SecretReference<S>, JsonValueException> JsonValues.secretReferenceOf
(Function<JsonValue, Purpose<S>, JsonValueException> purposeTransformer, SecretsProvider secretsProvider) Returns a function that returns aSecretReference
for thePurpose
represented by the givenString
value label and known to the suppliedSecretsProvider
. -
Uses of SecretReference in org.forgerock.secrets
Modifier and TypeMethodDescriptionstatic <T extends Secret>
SecretReference<T>SecretReference.active
(SecretsProvider secretsProvider, Purpose<T> purpose, Clock clock) Creates a reference to the active secret for the given purpose using the given secrets provider.static <T extends Secret>
SecretReference<T>SecretReference.constant
(T secret) Create a constantSecretReference
for the given secret, that will never expire.<S extends Secret>
SecretReference<S>SecretsProvider.createActiveReference
(Purpose<S> purpose) Creates the secret reference from the given purpose.<S extends Secret>
SecretReference<S>SecretsProvider.createNamedReference
(Purpose<S> purpose, String name) Creates a reference to a secret with the given name (stable id) for the given purpose.static <T extends Secret>
SecretReference<T>SecretReference.named
(SecretsProvider secretsProvider, Purpose<T> purpose, String name, Clock clock) Creates a reference to a named secret using the given secrets provider. -
Uses of SecretReference in org.forgerock.secrets.credentials
Modifier and TypeMethodDescriptionstatic <T extends Secret>
CredentialPair<T>CredentialPair.credentialPair
(SecretReference<T> secretReference, Function<T, PrincipalAndSecret<T>, NoSuchSecretException> mapper) Factory method to create a new instance ofCredentialPair
from a reference to a secret containing both the principal and secret.static <T extends Secret>
CredentialPair<T>CredentialPair.fixedPrincipalCredentialPair
(String principal, SecretReference<T> secretReference) Factory method to create a new instance ofCredentialPair
with a static principal and a dynamic principal secret. -
Uses of SecretReference in org.forgerock.secrets.keystore
ModifierConstructorDescriptionKeyStoreSecretStore
(Function<char[], KeyStore, KeyStoreException> keyStoreLoader, SecretReference<GenericSecret> keyStorePassword) Initialises the keystore using the same password for the keystore and all keys and default configuration options.KeyStoreSecretStore
(Function<char[], KeyStore, KeyStoreException> keyStoreLoader, SecretReference<GenericSecret> keyStorePassword, SecretReference<GenericSecret> keyEntryPassword, Options options, KeyStoreSecretStore.StableIdProvider stableIdProvider) Initialises the key store.KeyStoreSecretStore
(Function<char[], KeyStore, KeyStoreException> keyStoreLoader, SecretReference<GenericSecret> keyStorePassword, Options options) Initialises the keystore using the same password for the keystore and all keys. -
Uses of SecretReference in org.forgerock.secrets.oauth2
Modifier and TypeMethodDescriptionAccessTokenSecretStore.Builder.withClientSecretBasicAuth
(String clientId, SecretReference<GenericSecret> clientSecretRef) Configures the token store to supply client credentials via HTTP Basic Authentication.AccessTokenSecretStore.Builder.withClientSecretPostAuth
(String clientId, SecretReference<GenericSecret> clientSecretRef) Configures the token store to supply client credentials via client_secret_post method.ModifierConstructorDescriptionJwtBearerGrantTypeHandler
(SecretReference<GenericSecret> jwtReference) Constructs the handler with the given source of JWTs.JwtBearerGrantTypeHandler
(SecretReference<GenericSecret> jwtReference, String clientId, Collection<String> scope) Constructs the handler with the given source of JWTs, for the given client and scope.JwtBearerGrantTypeHandler
(SecretReference<GenericSecret> jwtReference, Collection<String> scope) Constructs the handler with the given source of JWTs, for the given scope.ResourceOwnerPasswordGrantTypeHandler
(String clientId, String username, SecretReference<GenericSecret> password) Initialises the grant type handler with the given credentials and the default scope for this client.ResourceOwnerPasswordGrantTypeHandler
(String clientId, String username, SecretReference<GenericSecret> password, Collection<String> scope) Initialises the grant type handler with the given credentials.
Filters.newHttpBasicAuthenticationFilter(CredentialPair)
instead