Package org.forgerock.secrets.propertyresolver
package org.forgerock.secrets.propertyresolver
Provides a
SecretStore
implementation that loads secrets from a Common Configuration
PropertyResolver
and then decodes it with a
SecretPropertyFormat
. This supports devops-friendly secret
management, including loading secrets from environment variables and system properties, as well as from flat files.
This allows for easy integration with existing deployment options such as Docker or Kubernetes secrets APIs.-
ClassDescriptionA
SecretStore
that reads secrets from a directory with the expectation that each file contains a separate secret.A builder for more fluently creating a FileSystemSecretStore.Decodes a JSON Web Key (JWK) as a secret.ASecretPropertyFormat
that wraps another format, extracting the secret value from a JWT before delegating to the wrapped format.AStableIdResolver
that uses a version suffix and a subsequent number to determine the stableId of aSecret
.Supports decoding keys and certificates in PEM format.Decodes secrets in raw base64 format.ASecretStore
implementation that resolves secrets as base64-encoded strings from an underlyingPropertyResolver
.Wraps a property format that decodes raw bytes and converts it into a property format for extracting secret keys using some algorithm.Defines the format of secrets loaded from configuration properties.The secret resource used for creating aSecret
.AStableIdResolver
that matches a stableId exactly to the purpose for returning only oneSecret
.Interface for resolving stable ids in aSecretStore
.