All Classes and Interfaces

Class
Description
AbstractTokenLoginCallbackHandler
An abstract CallbackHandler for the OAuthLoginModule.
AclBindingFilterMapKeyDeserializer
 
AclBindingFilterMapKeySerializer
 
AclBindingMapKeyDeserializer
 
AclBindingMapKeySerializer
 
AclFilter
 
AsyncHttpsJwks
Extends HttpsJwks with an asynchronous refresh implementation.
AsyncHttpsJwksVerificationKeyResolver
AsyncHttpsJwksVerificationKeyResolver asynchronously maintains a JsonWebKeySet.
AuthenticationErrorInfo
This interface is used to specify extra payload in case AuthenticationException occurs.
AuthenticationErrorInfo.GeneralInfo
 
AuthenticationErrorInfo.JwtClaimsInfo
 
AuthenticationException
 
AuthenticationExceptionReasonCodes
 
AuthenticationExceptionReasonCodes.ErrorTypes
Enum to encapsulate Jose4J error codes
AuthenticationResponse
 
BasicAuthCredentialProvider
Interface used by providers user credentials for HTTP basic authentication
BcFipsJsseProviderCreator
 
BcFipsProviderCreator
 
BuiltInAuthProviders
 
BuiltInAuthProviders.BasicAuthCredentialProviders
 
BuiltInAuthProviders.HttpCredentialProviders
 
CertificateId
 
CertificateIdsJsonConfig
 
CloseableVerificationKeyResolver
Extends VerificationKeyResolver interface with Closeable.
ClusterLinkAccessTokenRetrieverFactory
 
ClusterLinkHttpAccessTokenRetriever
 
ClusterLinkOAuthBearerLoginCallbackHandler
 
ConfluentFipsValidator
This class centralizes FIPS validation for cipher suites, SSL/TLS versions and kafka broker protocols.
ConfluentTrustManager
A trust manager that verifies that the client invalid input: '&' server certificate presented during clientAuth belongs to confluent cloud and then delegates to the defaultTrustManager for general certificate chain validation.
ConfluentTrustManagerFactory
 
ConfluentTrustProvider
 
ConfluentTrustProviderCreator
 
CreateAclRequest
 
CreateAclsRequest
 
CreateAclsResult
 
CreateAclsResult.CreateResult
 
DecryptionEngine
DecryptionEngine Engine performs Key loading and decryption operations.
DeleteAclsRequest
 
DeleteAclsResult
 
DeleteAclsResult.DeleteResult
 
ErrorMessage
Generic JSON error message.
FileBasedDynamicBasicAuthCredentialProvider
 
FilteringDnsResolver
A custom DNS resolver which filters out resolved IP addresses based on the following rules (in order): If the IP address is in allowCidrRanges, allow it If filterLocalAddresses is true and the IP address is a local IP, disallow it If filterPrivateAddresses is true and the IP address is a private IP, disallow it If filterClassEAddresses is true and the IP address is a class E IP, disallow it If the IP address is in disallowCidrRanges, disallow it
FipsSecurityConfig
Contains the FIPS security config
HttpBasicCredentialProvider
 
HttpBearerCredentialProvider
 
HttpCredentialProvider
 
HttpOauthBearerCredentialProvider
Implementation of HttpCredentialProvider used in RestClient for making calls to mds using Oauth/OIDC token.
InvalidFipsBrokerProtocolException
 
InvalidFipsRestProtocolException
 
InvalidFipsTlsCipherSuiteException
 
InvalidFipsTlsVersionException
 
JkuVerificationKeyResolver
Inspired by Confluent's Schroedinger https://github.com/confluentinc/schroedinger JkuVerificationKeyResolver extracts jku from the JWT header and validates that it is from an authorized domain.
JsonMapper
 
JsonMapper.JwkJsonDeserializer
 
JsonMapper.JwkJsonSerializer
 
JsonMapper.JwksJsonDeserializer
 
JsonStrict
 
JwtAuthenticator
JwtAuthenticator validates JwtClaims returning OAuthBearerJwsToken on success.
JwtAuthenticatorConfig
 
JwtBearerToken
 
JwtUtils
 
JwtUtils.Error
 
JwtUtils.ErrorInfo
 
JwtVerificationException
 
KafkaModule
 
MockSpireJwtLoginCallbackHandler
For testing
MockSpireJwtTokenRetriever
For testing
NetworkLinkTrustManager
 
NetworkLinkTrustManagerFactory
 
OAuthBearerLoginCallbackHandler
A CallbackHandler that recognizes OAuthBearerTokenCallback and retrieves OAuth 2 Bearer Token that was provided via the JAAS config.
OauthMayActClaim
 
PemKey
Utility class for reading PEM encoded objects.
PublicKeyJwks
PublicKeyJwks converts PublicKeys files into a JsonWebKey collection.
PublicKeyVerificationKeyResolver
PublicKeyKeyVerificationKeyResolver maintains a static JsonWebKeySet.
RefreshingAccessTokenRetriever
Implementation of AccessTokenReceiver which refreshes the token after 80% of its lifetime is complete.
RequestSender
 
RestClient
Rest client for sending RBAC requests to the metadata service.
RestClientConfig
 
RestClientException
 
RestClientThreadFactory
 
RestRequest
 
SanitizeTokenRequest
Class for making a sanitize request.
SecurePassConfigProvider
An implementation of ConfigProvider that represents a Properties file.
SecurityContext
 
SpireJwtLoginCallbackHandler
A CallbackHandler that recognizes OAuthBearerTokenCallback and retrieves SPIFFE JWT from Spire Agent that is running at the endpoint provided via the sasl.oauthbearer.token.spire.agent.endpoint.
SpireJwtTokenLoginValidator
A JwtValidator that does basic validation of the JWT retrieved from the Spire Agent.
SpireJwtTokenRetriever
A JwtRetriever that retrieves the JWT SVID from the Spire agent
TokenBearerLoginCallbackHandler
A CallbackHandler for the OAuthBearerLoginModule.
TokenCertificateLoginCallbackHandler
A CallbackHandler for the OAuthBearerLoginModule.
TokenUserLoginCallbackHandler
A CallbackHandler for the OAuthBearerLoginModule.
UamiJwtRetriever
This class implements a JwtRetriever for Azure UAMI.
UnverifiedJwtBearerToken
 
UrlSelector