Index (ce-security-extensions 8.2.2-ce API)

A B C D E F G H I J K L M N O P R S T U V Y
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form

A

AbstractConfiguration<T> - Class in io.confluent.security.config
AbstractConfiguration() - Constructor for class io.confluent.security.config.AbstractConfiguration
AbstractConfiguration.Builder<BuilderT> - Class in io.confluent.security.config: Construct an immutable configuration object.
accessToken(String) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
acrValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
addIdentityPool(String, int, String, String, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
addIdentityPool(Optional<Principal>, String, int, String, String, String, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Adds a new IdentityPool record.
addIdentityProvider(String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
addIdentityProvider(Optional<Principal>, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Add a new identity provider record
addJwks(String, String, JsonWebKeySet) - Method in interface io.confluent.security.trustservice.store.TrustWriter
addJwks(Optional<Principal>, String, String, JsonWebKeySet, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Adds a new Jwks record.
addRefreshTokenInfo(String, String, long, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
addRefreshTokenInfo(Optional<Principal>, String, String, long, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Adds refresh token information
AdmissionController - Class in io.confluent.security.authentication
AdmissionController(Authenticator<?, ?>, Supplier<TrustCache>, PolicyEngine<String>) - Constructor for class io.confluent.security.authentication.AdmissionController
algorithmWhitelist() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
algorithmWhitelist(Set<SignatureAlgorithm>) - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig.Builder
AlgorithmWhitelist - Class in io.confluent.security.authentication.oauthbearer: Constraint restricts signature verification to a specific set of SignatureAlgorithms.
AlgorithmWhitelist(Set<SignatureAlgorithm>) - Constructor for class io.confluent.security.authentication.oauthbearer.AlgorithmWhitelist
ANONYMOUS - Static variable in class io.confluent.security.authentication.http.ConfluentSecurityContext
ARRAY_LIST_LIMIT_DEFAULT - Static variable in class io.confluent.security.policyapi.engine.TrustPolicyEngine
asMap() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
asMap() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
assumePrincipal(Map<String, Object>, String, String) - Method in class io.confluent.security.authentication.AdmissionController
assumePrincipal(Map<String, Object>, String, String, String) - Method in class io.confluent.security.authentication.AdmissionController
AssumePrincipalData - Class in io.confluent.security.trustservice.entities.v1
AssumePrincipalData.Builder - Class in io.confluent.security.trustservice.entities.v1
AssumePrincipalRequest - Class in io.confluent.security.trustservice.entities.v1
AssumePrincipalRequest.Builder - Class in io.confluent.security.trustservice.entities.v1
AssumePrincipalResponse - Class in io.confluent.security.trustservice.entities.v1
atLeast(long, long) - Static method in class io.confluent.security.config.Validation
audience() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuer: The recipient(s) for this token.
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku: The recipient(s) for this token.
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks: The recipient(s) for this token.
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire: The recipient(s) for this token.
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic: The recipient(s) for this token.
audience() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
audience(Set<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku.Builder
audience(Set<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks.Builder
audience(Set<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire.Builder
audience(Set<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic.Builder
authenticate(C) - Method in interface io.confluent.security.authentication.Authenticator: Given , return a Principal.
authenticate(BearerCredential) - Method in class io.confluent.security.authentication.AdmissionController
authenticate(BearerCredential) - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticator: Given , return a Principal.
authenticate(BearerCredential, SecurityContext) - Method in class io.confluent.security.authentication.AdmissionController
authenticate(BearerCredential, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticator
authenticate(HttpCredential) - Method in class io.confluent.security.authentication.http.HttpAuthenticator: Given HttpCredential , return a Principal.
authenticate(HttpCredential) - Method in class io.confluent.security.authentication.http.HttpAuthenticatorJwt: Given HttpCredential , return a Principal.
authenticateEndpoint(URI) - Method in class io.confluent.security.authentication.oauthbearer.TrustServiceClient.Builder
authentication(HttpCredential) - Method in class io.confluent.security.authentication.http.HttpClient.Builder
AuthenticationConfig<C,P> - Class in io.confluent.security.authentication: Configures a Authenticator instance.
AuthenticationConfig() - Constructor for class io.confluent.security.authentication.AuthenticationConfig
AuthenticationConfig.Kind - Enum Class in io.confluent.security.authentication
authenticationModule() - Static method in class io.confluent.security.authentication.utils.JacksonSerde
Authenticator<C,P> - Interface in io.confluent.security.authentication: Validates user-provided credentials and returns a Principal.
authMethod(Function<ClientCredentials, String>) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
authorizationEndpoint() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
authorizationEndpoint(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
authorizedParty() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
authorizedParty() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
authParams() - Method in class io.confluent.security.authentication.credential.HttpAnonymousCredential
authParams() - Method in class io.confluent.security.authentication.credential.HttpBasicCredential
authParams() - Method in class io.confluent.security.authentication.credential.HttpBearerCredential
authParams() - Method in class io.confluent.security.authentication.credential.HttpCredential: HTTP authentication token.

B

BASIC - Enum constant in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme
BEARER - Enum constant in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme
BearerCredential - Class in io.confluent.security.authentication.credential
BearerCredential(String) - Constructor for class io.confluent.security.authentication.credential.BearerCredential
bearerToken() - Method in class io.confluent.security.authentication.credential.BearerCredential
build() - Method in class io.confluent.security.authentication.http.HttpClient.Builder
build() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig.Builder
build() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku.Builder: Construct new JwtIssuerJku instance.
build() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks.Builder: Construct new JwtIssuerJku instance.
build() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire.Builder: Construct new JwtIssuerSpire instance.
build() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic.Builder: Construct new JwtIssuerJku instance.
build() - Method in class io.confluent.security.authentication.oauthbearer.TrustServiceClient.Builder
build() - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
build() - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
build() - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
build() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData.Builder
build() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest.Builder
builder() - Static method in class io.confluent.security.authentication.http.HttpClient
builder() - Static method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
builder() - Static method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku
builder() - Static method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks
builder() - Static method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire
builder() - Static method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic
builder() - Static method in class io.confluent.security.authentication.oauthbearer.TrustServiceClient
builder() - Static method in class io.confluent.security.authentication.oidc.MetadataResponse
builder() - Static method in class io.confluent.security.authentication.oidc.OpenIdClient
builder() - Static method in class io.confluent.security.authentication.oidc.TokenResponse
builder() - Static method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData
builder() - Static method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest
Builder() - Constructor for class io.confluent.security.authentication.oauthbearer.TrustServiceClient.Builder
Builder() - Constructor for class io.confluent.security.authentication.oidc.MetadataResponse.Builder
Builder() - Constructor for class io.confluent.security.authentication.oidc.OpenIdClient.Builder
Builder() - Constructor for class io.confluent.security.authentication.oidc.TokenResponse.Builder
Builder() - Constructor for class io.confluent.security.trustservice.entities.v1.AssumePrincipalData.Builder
Builder() - Constructor for class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest.Builder

C

C - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
CachedGrant - Class in io.confluent.security.authentication.oidc
calendar(Calendar) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
CAPACITY_DEFAULT - Static variable in class io.confluent.security.policyapi.PolicyRuleLoadingCache
certChainToString(Certificate[]) - Static method in class io.confluent.security.mtls.CertificateUtils: Get a string representation of a certificate chain.
CertIdentityPoolFilter - Class in io.confluent.security.mtls: This class implements the CEL filter for the cert identity pool.
CertIdentityPoolFilter() - Constructor for class io.confluent.security.mtls.CertIdentityPoolFilter
CertificateMetadata - Class in io.confluent.security.mtls: Utility class for generating certificate metadata.
CertificateMetadata(String) - Constructor for class io.confluent.security.mtls.CertificateMetadata
CertificateMetadata(X509Certificate) - Constructor for class io.confluent.security.mtls.CertificateMetadata
CertificateUtils - Class in io.confluent.security.mtls
CertMetadataIdentifier - Enum Class in io.confluent.security.mtls: Enum for Certificate Metadata Identifiers, defined in spec
certToString(Certificate) - Static method in class io.confluent.security.mtls.CertificateUtils: Get a short string representation of a certificate.
CHAIN_LIMIT_DEFAULT - Static variable in class io.confluent.security.policyapi.engine.TrustPolicyEngine
challenge() - Method in class io.confluent.security.authentication.http.HttpAuthenticator
challenge() - Method in class io.confluent.security.authentication.http.HttpAuthenticatorJwt
CLAIM_CLUSTERS - Static variable in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
CLAIM_ORGANIZATION_ID - Static variable in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
CLAIM_PREFIX - Static variable in class io.confluent.security.policyapi.cel.TrustPolicyCelParser
CLAIM_USER_ID - Static variable in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
CLAIM_USER_RESOURCE_ID - Static variable in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
Claims - Interface in io.confluent.security.authentication.oauthbearer
claimsLocalesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
claimsParameterSupported(boolean) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
claimsSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
claimTypesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
claimValue(String, Class<T>) - Method in interface io.confluent.security.authentication.oauthbearer.Claims
claimValue(String, Class<T>) - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
claimValues(String, Class<T>) - Method in interface io.confluent.security.authentication.oauthbearer.Claims
claimValues(String, Class<T>) - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
client(HttpClient) - Method in class io.confluent.security.authentication.oauthbearer.TrustServiceClient.Builder
client(Client) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
CLIENT_CREDENTIALS - Enum constant in enum class io.confluent.security.authentication.oidc.GrantBase.GrantType
ClientCredentials - Class in io.confluent.security.authentication.oidc: Client id/secret pair used for client credentials grants ClientCredentialsGrant
ClientCredentials(String, String) - Constructor for class io.confluent.security.authentication.oidc.ClientCredentials
ClientCredentialsGrant - Class in io.confluent.security.authentication.oidc: Represents a client's request for authentication via client credentials https://openid.net/specs/openid-connect-core-1_0.html#ClientAuthentication
ClientCredentialsGrant(String) - Constructor for class io.confluent.security.authentication.oidc.ClientCredentialsGrant
ClientCredentialsGrant(Set<String>) - Constructor for class io.confluent.security.authentication.oidc.ClientCredentialsGrant
close() - Method in class io.confluent.security.authentication.http.HttpClient
close() - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
CloudJwtPrincipal - Class in io.confluent.security.authentication.oauthbearer: Extends JwtPrincipal with custom Confluent Cloud claims
CloudJwtPrincipal(JwtClaims) - Constructor for class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
clusters() - Method in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
CN - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
compilePolicy(Env, String) - Static method in class io.confluent.security.policyapi.cel.TrustPolicyCelParser
condition() - Method in interface io.confluent.security.policyapi.ConfluentPolicy
condition() - Method in class io.confluent.security.policyapi.jackson.ConfluentPolicyModule.TrustPolicyMixin: Policy statements.
condition() - Method in class io.confluent.security.policyapi.TrustPolicy
CONFIG_PREFIX - Static variable in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
ConfigurationException - Exception Class in io.confluent.security.config: Raised when a problem arises processing a configuration object.
ConfigurationException(String) - Constructor for exception class io.confluent.security.config.ConfigurationException: Creates a new ConfigurationException with the given message.
ConfigurationException(String, Throwable) - Constructor for exception class io.confluent.security.config.ConfigurationException: Creates a new ConfigurationException with the given message and cause.
configureJwtSource(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire: Set SPIRE agent endpoint where trust bundle JwtBundle can be fetched.
configureJwtSource(String) - Method in interface io.confluent.security.authentication.oauthbearer.JwtIssuerSpireConfigurator: Set SPIRE agent endpoint where trust bundle JwtBundle can be fetched.
CONFLUENT_ISSUER - Static variable in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
CONFLUENT_SPIRE_ISSUER_SUFFIX - Static variable in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
CONFLUENT_SPIRE_ISSUER_SUFFIX_PROP - Static variable in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
ConfluentPolicy<T> - Interface in io.confluent.security.policyapi: Versioned Confluent Policy definition.
ConfluentPolicy.Kind - Enum Class in io.confluent.security.policyapi
ConfluentPolicyModule - Class in io.confluent.security.policyapi.jackson
ConfluentPolicyModule() - Constructor for class io.confluent.security.policyapi.jackson.ConfluentPolicyModule
ConfluentPolicyModule.TrustPolicyMixin - Class in io.confluent.security.policyapi.jackson
ConfluentSecurityContext - Class in io.confluent.security.authentication.http
ConfluentSecurityContext(HttpCredential.Scheme, Principal, boolean) - Constructor for class io.confluent.security.authentication.http.ConfluentSecurityContext
connectTimeout(Duration) - Method in class io.confluent.security.authentication.http.HttpClient.Builder
ConstrainedVerificationKeyResolver - Class in io.confluent.security.authentication.oauthbearer: Extends VerificationKeyResolver with ability to add custom Constraints.
ConstrainedVerificationKeyResolver(VerificationKeyResolver, Collection<Constraint>) - Constructor for class io.confluent.security.authentication.oauthbearer.ConstrainedVerificationKeyResolver: Constructs a new VerificationKeyResolver with a collection of Constraint.
Constraint - Interface in io.confluent.security.authentication.oauthbearer: An interface for adding custom constraints to the token verification process.
create() - Method in class io.confluent.security.config.AbstractConfiguration: Construct an instance of T using the properties found within this Configuration instance.
create(AssumePrincipalData) - Static method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalResponse
createAuthenticator() - Method in class io.confluent.security.authentication.AuthenticationConfig: Creates a new Authenticator instance.
createAuthenticator() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig: Creates a new Authenticator instance.
createConsumer(Collection<Constraint>, boolean, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuer: Creates a new JwtConsumer to process incoming JsonWebSignatures.
createConsumer(Collection<Constraint>, boolean, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku
createConsumer(Collection<Constraint>, boolean, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks
createEncodedJws(MockJwtSource.Kid, JwtClaims) - Static method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
createJws(MockJwtSource.Kid, JwtClaims) - Static method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
createJwsWithInvalidKid(JwtClaims) - Static method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
credential() - Method in class io.confluent.security.authentication.credential.HttpAnonymousCredential
credential() - Method in class io.confluent.security.authentication.credential.HttpBasicCredential
credential() - Method in class io.confluent.security.authentication.credential.HttpBearerCredential
credential() - Method in class io.confluent.security.authentication.credential.HttpCredential
Credential - Class in io.confluent.security.authentication.credential
Credential() - Constructor for class io.confluent.security.authentication.credential.Credential
credentialsSupplier(Supplier<ClientCredentials>) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
customEnvOption() - Static method in class io.confluent.security.policyapi.cel.TrustPolicyCelLibrary

D

DC - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
deserialize(JsonParser, DeserializationContext) - Method in class io.confluent.security.authentication.utils.JacksonSerde.JwkJsonDeserializer
deserialize(JsonParser, DeserializationContext) - Method in class io.confluent.security.authentication.utils.JacksonSerde.JwksJsonDeserializer
displayValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
DN - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
domainWhitelist(List<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku.Builder: Set JkuDomainWhitelist domain whitelist.
Duration - Class in io.confluent.security.config: A configuration value representing some duration.
Duration(long, TimeUnit) - Constructor for class io.confluent.security.config.Duration

E

ecSpire1 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
ecSpire2 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
encryptedRefreshToken() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
equals(Object) - Method in class io.confluent.security.authentication.credential.BearerCredential
equals(Object) - Method in class io.confluent.security.authentication.credential.Credential
equals(Object) - Method in class io.confluent.security.authentication.credential.HttpAnonymousCredential
equals(Object) - Method in class io.confluent.security.authentication.credential.HttpBasicCredential
equals(Object) - Method in class io.confluent.security.authentication.credential.HttpBearerCredential
equals(Object) - Method in class io.confluent.security.authentication.credential.UsernamePasswordCredential
equals(Object) - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
equals(Object) - Method in class io.confluent.security.policyapi.TrustPolicy
equals(Object) - Method in class io.confluent.security.trustservice.store.data.IdentityPool
equals(Object) - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
ES256 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
ES384 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
ES512 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
EU_SPIRE_1 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
EU_SPIRE_2 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
evaluatePolicy(ConfluentPolicy<String>, Map<String, Object>) - Method in class io.confluent.security.policyapi.engine.TrustPolicyEngine
evaluatePolicy(ConfluentPolicy<T>, Map<String, Object>) - Method in interface io.confluent.security.policyapi.engine.PolicyEngine
evaluatePolicy(Program, Map<String, Object>) - Static method in class io.confluent.security.policyapi.cel.TrustPolicyCelParser
expiresIn - Variable in class io.confluent.security.authentication.oidc.TokenResponse.Builder
expiresIn() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData
expiresIn(long) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
expiresIn(long) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData.Builder
expiresOn() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
expiresOn() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal

F

fetchJwtSvid(SpiffeId, String, String...) - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
fetchJwtSvid(String, String...) - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
fetchJwtSvids(SpiffeId, String, String...) - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
fetchJwtSvids(String, String...) - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
filter(ClientRequestContext) - Method in class io.confluent.security.authentication.http.HttpClientAuthFilter
filter(ContainerRequestContext) - Method in class io.confluent.security.authentication.http.HttpServerAuthFilter
filter(ContainerRequestContext) - Method in class io.confluent.security.authentication.oauthbearer.TrustServiceBearerServerAuthFilter
filter(String, Map<String, String>) - Method in class io.confluent.security.mtls.CertIdentityPoolFilter: Apply CEL filter on the given vars and return boolean result.
findIdentityPools(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Return the identity pools that match the given provider id.
findIdentityProviderIds(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Return the collections of identity providers that match the organization id.
from(String) - Static method in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme
fromCachedEntry(CachedGrant) - Static method in class io.confluent.security.authentication.oidc.TokenResponse
fromTokenResponse(TokenResponse, Calendar) - Static method in class io.confluent.security.authentication.oidc.CachedGrant

G

get(ConfluentPolicy<T>) - Method in class io.confluent.security.policyapi.PolicyRuleLoadingCache
getAccessToken() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getAccessToken() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getAuthenticationScheme() - Method in class io.confluent.security.authentication.http.ConfluentSecurityContext
getBundleForTrustDomain(TrustDomain) - Method in class io.confluent.security.authentication.oauthbearer.MockJwtSource
getCelVars() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the certificate metadata variables for Cert Identity Pool CEL filter evaluation.
getCn() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the CN (Common Name) of the certificate.
getCompileOptions() - Method in class io.confluent.security.policyapi.cel.TrustPolicyCelLibrary
getDelegate() - Method in class io.confluent.security.authentication.oauthbearer.ConstrainedVerificationKeyResolver
getDescription() - Method in enum class io.confluent.security.mtls.CertMetadataIdentifier
getDn() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the subject DN of the certificate.
getError() - Method in class io.confluent.security.authentication.oidc.TokenError
getErrorDescription() - Method in class io.confluent.security.authentication.oidc.TokenError
getErrorUri() - Method in class io.confluent.security.authentication.oidc.TokenError
getExpiresAtMs() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getExpiresIn() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getGrantType() - Method in class io.confluent.security.authentication.oidc.ClientCredentialsGrant
getGrantType() - Method in class io.confluent.security.authentication.oidc.GrantBase
getIdToken() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getIdToken() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getIssuer(String) - Static method in class io.confluent.security.authentication.oauthbearer.IssuerExtractor: Returns Json Web Token Issuer claim value.
getIssuerDn() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the Issuer DN of the certificate (in RFC2253 format).
getIssuerDn(X509CRL) - Static method in class io.confluent.security.mtls.CertificateMetadata: Get the Issuer DN of the CRL entry (in RFC2253 format).
getLifespanSeconds() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getName() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
getProgramOptions() - Method in class io.confluent.security.policyapi.cel.TrustPolicyCelLibrary
getRefreshToken() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getRefreshToken() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getSan() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the subject alternative name of the certificate.
getScope() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getScope() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getSerialNumber(X509CRLEntry) - Static method in class io.confluent.security.mtls.CertificateMetadata
getSha1() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the SHA-1 fingerprint of the certificate.
getSnid() - Method in class io.confluent.security.mtls.CertificateMetadata: Get the serial number of the certificate.
getSpireIssuerSuffix() - Method in class io.confluent.security.authentication.oauthbearer.SpireVerificationKeyResolver
getTokenError() - Method in class io.confluent.security.authentication.oidc.GrantBase
getTokenRequest() - Method in class io.confluent.security.authentication.oidc.GrantBase
getTokenResponse() - Method in class io.confluent.security.authentication.oidc.GrantBase
getTokenType() - Method in class io.confluent.security.authentication.oidc.CachedGrant
getTokenType() - Method in class io.confluent.security.authentication.oidc.TokenResponse
getTrustPolicyEnv() - Static method in class io.confluent.security.policyapi.cel.TrustPolicyCelParser
getUserPrincipal() - Method in class io.confluent.security.authentication.http.ConfluentSecurityContext
getValue() - Method in enum class io.confluent.security.mtls.CertMetadataIdentifier
GrantBase - Class in io.confluent.security.authentication.oidc: Base class representing a client's OpenId authentication request.
GrantBase.GrantType - Enum Class in io.confluent.security.authentication.oidc
grantType() - Method in interface io.confluent.security.authentication.oidc.TokenRequest
grantTypesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder

H

handleGrant(GrantBase) - Method in class io.confluent.security.authentication.oidc.OpenIdClient
hashCode() - Method in class io.confluent.security.authentication.credential.BearerCredential
hashCode() - Method in class io.confluent.security.authentication.credential.HttpAnonymousCredential
hashCode() - Method in class io.confluent.security.authentication.credential.HttpBasicCredential
hashCode() - Method in class io.confluent.security.authentication.credential.HttpBearerCredential
hashCode() - Method in class io.confluent.security.authentication.credential.UsernamePasswordCredential
hashCode() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
hashCode() - Method in class io.confluent.security.policyapi.TrustPolicy
hashCode() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
hashCode() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
hostNameVerifier(HostnameVerifier) - Method in class io.confluent.security.authentication.http.HttpClient.Builder
HttpAnonymousCredential - Class in io.confluent.security.authentication.credential
HttpAnonymousCredential() - Constructor for class io.confluent.security.authentication.credential.HttpAnonymousCredential
HttpAuthenticator<T> - Class in io.confluent.security.authentication.http
HttpAuthenticator() - Constructor for class io.confluent.security.authentication.http.HttpAuthenticator
HttpAuthenticatorJwt - Class in io.confluent.security.authentication.http: HttpAuthenticator which decodes and validates JsonWebSignatures.
HttpAuthenticatorJwt(Authenticator<BearerCredential, JwtPrincipal>) - Constructor for class io.confluent.security.authentication.http.HttpAuthenticatorJwt
HttpBasicCredential - Class in io.confluent.security.authentication.credential: HTTP Basic Authentication credentials.
HttpBasicCredential(String) - Constructor for class io.confluent.security.authentication.credential.HttpBasicCredential
HttpBasicCredential(String, String) - Constructor for class io.confluent.security.authentication.credential.HttpBasicCredential
HttpBasicCredential(Supplier<UsernamePasswordCredential>) - Constructor for class io.confluent.security.authentication.credential.HttpBasicCredential
HttpBearerCredential - Class in io.confluent.security.authentication.credential: HTTP Bearer Authentication credentials.
HttpBearerCredential(BearerCredential) - Constructor for class io.confluent.security.authentication.credential.HttpBearerCredential
HttpBearerCredential(String) - Constructor for class io.confluent.security.authentication.credential.HttpBearerCredential
HttpClient - Class in io.confluent.security.authentication.http
HttpClient(Client) - Constructor for class io.confluent.security.authentication.http.HttpClient
HttpClient.Builder - Class in io.confluent.security.authentication.http
HttpClientAuthFilter - Class in io.confluent.security.authentication.http
HttpClientAuthFilter(HttpCredential) - Constructor for class io.confluent.security.authentication.http.HttpClientAuthFilter
HttpCredential - Class in io.confluent.security.authentication.credential: Generic container for HTTP Client credentials.
HttpCredential() - Constructor for class io.confluent.security.authentication.credential.HttpCredential
HttpCredential.Scheme - Enum Class in io.confluent.security.authentication.credential: Supported HTTP Authentication Schemes.
HttpServerAuthFilter - Class in io.confluent.security.authentication.http: Given HttpAuthenticator authenticator, authenticate incoming request and set SecurityContext.
HttpServerAuthFilter(HttpAuthenticator<?>) - Constructor for class io.confluent.security.authentication.http.HttpServerAuthFilter
HttpServerAuthFilter(HttpAuthenticator<?>, Supplier<Collection<String>>) - Constructor for class io.confluent.security.authentication.http.HttpServerAuthFilter

I

id() - Method in interface io.confluent.security.policyapi.ConfluentPolicy
id() - Method in class io.confluent.security.policyapi.jackson.ConfluentPolicyModule.TrustPolicyMixin: Unique identifier for this policy
id() - Method in class io.confluent.security.policyapi.TrustPolicy
IDENTIFIERS - Static variable in enum class io.confluent.security.mtls.CertMetadataIdentifier
identityPool() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest
identityPool(String) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest.Builder
identityPool(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns IdentityPool identified by poolId.
IdentityPool - Class in io.confluent.security.trustservice.store.data
IdentityPool(String, long, String, String, String, String, String) - Constructor for class io.confluent.security.trustservice.store.data.IdentityPool
IdentityPool(String, long, String, String, String, String, String, String) - Constructor for class io.confluent.security.trustservice.store.data.IdentityPool
IdentityPool(String, long, String, String, String, String, String, String, String) - Constructor for class io.confluent.security.trustservice.store.data.IdentityPool
identityPools() - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns map of known IdentityPools keyed by pool id.
identityProvider(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns IdentityProvider identified by providerId.
IdentityProvider - Class in io.confluent.security.trustservice.store.data
IdentityProvider(String, String, String, String, String) - Constructor for class io.confluent.security.trustservice.store.data.IdentityProvider
idToken - Variable in class io.confluent.security.authentication.oidc.TokenResponse.Builder
idToken(String) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
idTokenEncryptionAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
idTokenEncryptionEncValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
idTokenSigningAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
IdTokenSigningAlgValuesSupported() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
INVALID_KID - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
io.confluent.security.authentication - package io.confluent.security.authentication
io.confluent.security.authentication.credential - package io.confluent.security.authentication.credential
io.confluent.security.authentication.http - package io.confluent.security.authentication.http
io.confluent.security.authentication.oauthbearer - package io.confluent.security.authentication.oauthbearer
io.confluent.security.authentication.oidc - package io.confluent.security.authentication.oidc
io.confluent.security.authentication.utils - package io.confluent.security.authentication.utils
io.confluent.security.config - package io.confluent.security.config
io.confluent.security.mtls - package io.confluent.security.mtls
io.confluent.security.policyapi - package io.confluent.security.policyapi
io.confluent.security.policyapi.cel - package io.confluent.security.policyapi.cel
io.confluent.security.policyapi.engine - package io.confluent.security.policyapi.engine
io.confluent.security.policyapi.exception - package io.confluent.security.policyapi.exception
io.confluent.security.policyapi.jackson - package io.confluent.security.policyapi.jackson
io.confluent.security.trustservice.entities.v1 - package io.confluent.security.trustservice.entities.v1
io.confluent.security.trustservice.store - package io.confluent.security.trustservice.store
io.confluent.security.trustservice.store.data - package io.confluent.security.trustservice.store.data
io.confluent.security.util - package io.confluent.security.util
isBetween(int, int, int) - Static method in class io.confluent.security.config.Validation
isExpired() - Method in class io.confluent.security.authentication.oidc.CachedGrant
isSecure() - Method in class io.confluent.security.authentication.http.ConfluentSecurityContext
issuedAt() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
issuedAt() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
issuedAt() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
issuer() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
issuer() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
issuer() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
issuer() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
issuer() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
issuer() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
issuer(String) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
Issuer(String) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
Issuer(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
IssuerExtractor - Class in io.confluent.security.authentication.oauthbearer: Decode JWT to extract issuer field in the JWT claims.
issuers() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig: List of JwtIssuers registered with this JwtAuthenticator.
issuers(List<JwtIssuer>) - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig.Builder: List of VerificationKeyResolver instances keyed by Issuer name.
isUserInRole(String) - Method in class io.confluent.security.authentication.http.ConfluentSecurityContext

J

JacksonSerde - Class in io.confluent.security.authentication.utils
JacksonSerde() - Constructor for class io.confluent.security.authentication.utils.JacksonSerde
JacksonSerde.DataFormat - Enum Class in io.confluent.security.authentication.utils: Supported ObjectMapper data formats.
JacksonSerde.JwkJsonDeserializer - Class in io.confluent.security.authentication.utils
JacksonSerde.JwkJsonSerializer - Class in io.confluent.security.authentication.utils
JacksonSerde.JwksJsonDeserializer - Class in io.confluent.security.authentication.utils
JSON - Enum constant in enum class io.confluent.security.authentication.utils.JacksonSerde.DataFormat
jsonMapper() - Static method in class io.confluent.security.authentication.utils.JacksonSerde
jsonWebKeySet(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns the JsonWebKeySet associated with the given Issuer.
jsonWebKeySets() - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns a map of all known JsonWebKeySets keyed by Issuer.
jti() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
jti() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
JwkJsonDeserializer(Class<JsonWebKey>) - Constructor for class io.confluent.security.authentication.utils.JacksonSerde.JwkJsonDeserializer
JwkJsonSerializer(Class<JsonWebKey>) - Constructor for class io.confluent.security.authentication.utils.JacksonSerde.JwkJsonSerializer
jwksEndpoint() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
jwksEndpoint() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
jwksEndpoint() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
jwksEndpoint(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
JwksJsonDeserializer(Class<JsonWebKeySet>) - Constructor for class io.confluent.security.authentication.utils.JacksonSerde.JwksJsonDeserializer
jwksUri() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks: HTTPS endpoint hosting this issuers JsonWebKeySet.
jwksUri(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks.Builder: Set Jwks endpoint where Issuer's JsonWebKeySet can be fetched.
JWT - Enum constant in enum class io.confluent.security.authentication.AuthenticationConfig.Kind
JWT_BUNDLE_SET - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
JwtAuthenticationConfig - Class in io.confluent.security.authentication.oauthbearer: Configure JwtAuthenticator instance.
JwtAuthenticationConfig.Builder - Class in io.confluent.security.authentication.oauthbearer
JwtAuthenticator - Class in io.confluent.security.authentication.oauthbearer: Authenticator which decodes and validates JsonWebSignatures.
JwtAuthenticator(List<JwtIssuer>, Collection<Constraint>) - Constructor for class io.confluent.security.authentication.oauthbearer.JwtAuthenticator
JwtIssuer - Class in io.confluent.security.authentication.oauthbearer: Constructs a new JwtConsumer instance for JsonWebSignature decoding and validation.
JwtIssuer() - Constructor for class io.confluent.security.authentication.oauthbearer.JwtIssuer
JwtIssuerJku - Class in io.confluent.security.authentication.oauthbearer: Fetches Signature Verification key information at the URL found in the tokens jku claim.
JwtIssuerJku.Builder - Class in io.confluent.security.authentication.oauthbearer
JwtIssuerJwks - Class in io.confluent.security.authentication.oauthbearer: JwtIssuer which fetches JsonWebKeySet from a trusted HTTPS endpoint.
JwtIssuerJwks.Builder - Class in io.confluent.security.authentication.oauthbearer: Constructs a new JwtIssuer instance with a HttpsJwksVerificationKeyResolver.
JwtIssuerSpire - Class in io.confluent.security.authentication.oauthbearer: JwtIssuer which fetches trust bundle JwtBundle from SPIRE workload API.
JwtIssuerSpire(String, Set<String>, String) - Constructor for class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire
JwtIssuerSpire.Builder - Class in io.confluent.security.authentication.oauthbearer: Constructs a new JwtIssuerSpire instance.
JwtIssuerSpireConfigurator - Interface in io.confluent.security.authentication.oauthbearer: Interface with method that can be used to configure the SPIRE agent endpoint for fetching trust bundle JwtBundle.
JwtIssuerStatic - Class in io.confluent.security.authentication.oauthbearer: JwtIssuer with a static JsonWebKeySet.
JwtIssuerStatic(String, Set<String>, JsonWebKeySet) - Constructor for class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic
JwtIssuerStatic.Builder - Class in io.confluent.security.authentication.oauthbearer
JwtPrincipal - Class in io.confluent.security.authentication.oauthbearer: A Principal implementation that wraps a JSON Web Token (JWT).
JwtPrincipal(JwtClaims) - Constructor for class io.confluent.security.authentication.oauthbearer.JwtPrincipal

K

KeyConstraintException - Exception Class in io.confluent.security.authentication.oauthbearer: Exception raised when a Constraint can't be satisfied.
KeyConstraintException(String) - Constructor for exception class io.confluent.security.authentication.oauthbearer.KeyConstraintException: Creates a new KeyConstraintException with the given message.
KeyConstraintException(String, Throwable) - Constructor for exception class io.confluent.security.authentication.oauthbearer.KeyConstraintException: Creates a new KeyConstraintException with the given message and cause.
keyResolver(Collection<Constraint>, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuer: Creates a new ConstrainedVerificationKeyResolver bound to this issuer.
keyResolver(Collection<Constraint>, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku: Returns Signature Verification Key identified by HeaderParameterNames.JWK_SET_URL
keyResolver(Collection<Constraint>, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks: Returns Signature Verification Key identified by HeaderParameterNames.JWK_SET_URL
keyResolver(Collection<Constraint>, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire: Returns Signature Verification Key identified by HeaderParameterNames.KEY_ID
keyResolver(Collection<Constraint>, SecurityContext) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic: Returns Signature Verification Key identified by HeaderParameterNames.JWK_SET_URL
kind() - Method in class io.confluent.security.authentication.AuthenticationConfig: Describes the AuthenticationConfig implementation.
kind() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig: Describes the AuthenticationConfig implementation.
kind() - Method in interface io.confluent.security.policyapi.ConfluentPolicy
kind() - Method in class io.confluent.security.policyapi.jackson.ConfluentPolicyModule.TrustPolicyMixin
kind() - Method in class io.confluent.security.policyapi.TrustPolicy

L

L - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
load(InputStream, Class<T>) - Method in class io.confluent.security.config.YamlConfigReader: Creates a new instance of T based on the contents read from the specified InputStream.
load(InputStream, Class<T>) - Method in interface io.confluent.security.util.ResourceLoader: Creates a new instance of T based on the contents read from the specified InputStream.
load(URL, Class<T>) - Method in class io.confluent.security.config.YamlConfigReader
load(URL, Class<T>) - Method in interface io.confluent.security.util.ResourceLoader: Creates a new instance of T based on the contents retrieved from the specified URL.

M

mapper(JacksonSerde.DataFormat) - Static method in class io.confluent.security.authentication.utils.JacksonSerde
MDS_POOL_ID_KEY - Static variable in class io.confluent.security.authentication.oauthbearer.TrustServiceBearerServerAuthFilter
MetadataResponse - Class in io.confluent.security.authentication.oidc: Metadata returned by the IdP containing info useful for OpenId operations, such as token exchange endpoints https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
MetadataResponse.Builder - Class in io.confluent.security.authentication.oidc
MockJwtSource - Class in io.confluent.security.authentication.oauthbearer: Mock JwtSource class Visible for testing SPIFFE JWT-SVID changes
MockJwtSource() - Constructor for class io.confluent.security.authentication.oauthbearer.MockJwtSource
MockJwtSource.Kid - Enum Class in io.confluent.security.authentication.oauthbearer

N

name() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuer: JsonWebSignature Issuer name.
name() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku: JsonWebSignature Issuer name.
name() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks: JsonWebSignature Issuer name.
name() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire: JsonWebSignature Issuer name.
name() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic: JsonWebSignature Issuer name.
name(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku.Builder
name(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJwks.Builder
name(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire.Builder
name(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic.Builder
NESTING_LIMIT_DEFAULT - Static variable in class io.confluent.security.policyapi.engine.TrustPolicyEngine
NONE - Enum constant in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme
notBefore() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
notBefore() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal

O

O - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
OAUTH_AUTHORIZED_PARTY - Static variable in class io.confluent.security.authentication.AdmissionController
OAUTH_POOL_DELIMITER - Static variable in class io.confluent.security.authentication.AdmissionController
OAUTH_UNION_OF_POOLS_AUDIT_IDENTITY - Static variable in class io.confluent.security.authentication.AdmissionController
objectMapper(ObjectMapper) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
objectMapper(JacksonSerde.DataFormat) - Static method in class io.confluent.security.authentication.utils.JacksonSerde
OpenIdClient - Class in io.confluent.security.authentication.oidc: OpenIdHttpClient processes authentication requests based on the OpenId spec https://openid.net/specs/openid-connect-core-1_0.html
OpenIdClient.Builder - Class in io.confluent.security.authentication.oidc
opPolicyUri(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
opTosUri(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
organizationId() - Method in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
orgId() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
orgId() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
OU - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier

P

pems(List<String>) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerStatic.Builder: Set PEM encoded key material
policy() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
PolicyEngine<T> - Interface in io.confluent.security.policyapi.engine: Evaluates a ConfluentPolicy against a collection of verified claims.
PolicyEngineException - Exception Class in io.confluent.security.policyapi.exception: Any exception raised during policy rule compilation or evaluation.
PolicyEngineException(String) - Constructor for exception class io.confluent.security.policyapi.exception.PolicyEngineException
PolicyEngineException(String, Throwable) - Constructor for exception class io.confluent.security.policyapi.exception.PolicyEngineException
PolicyEngineException(Throwable) - Constructor for exception class io.confluent.security.policyapi.exception.PolicyEngineException
PolicyRuleLoadingCache<T> - Class in io.confluent.security.policyapi
PolicyRuleLoadingCache(long, Env) - Constructor for class io.confluent.security.policyapi.PolicyRuleLoadingCache
PolicyRuleLoadingCache(Env) - Constructor for class io.confluent.security.policyapi.PolicyRuleLoadingCache
PolicyViolationException - Exception Class in io.confluent.security.policyapi.exception
PolicyViolationException(String) - Constructor for exception class io.confluent.security.policyapi.exception.PolicyViolationException
poolId() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
providerId() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
providerId() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
PS256 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
PS384 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
PS512 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm

R

read(String) - Static method in class io.confluent.security.authentication.credential.HttpCredential
readTimeout(Duration) - Method in class io.confluent.security.authentication.http.HttpClient.Builder
refreshToken(String) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
refreshTokenInfo(String) - Method in interface io.confluent.security.trustservice.store.TrustCache: Returns RefreshTokenInfo keyed by combination of issuer and subClaim.
RefreshTokenInfo - Class in io.confluent.security.authentication.oidc
RefreshTokenInfo(String, String, long, String, String) - Constructor for class io.confluent.security.authentication.oidc.RefreshTokenInfo
registrationEndpoint() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
registrationEndpoint(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
removeIdentityPool(String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
removeIdentityPool(Optional<Principal>, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Removes an IdentityPool record.
removeIdentityProvider(String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
removeIdentityProvider(Optional<Principal>, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Remove an existing identity provider record
removeJwks(String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
removeJwks(Optional<Principal>, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Removes a Jwks
removeRefreshTokenInfo(String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
removeRefreshTokenInfo(Optional<Principal>, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
replaceIdentityPool(String, int, String, String, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
replaceIdentityPool(Optional<Principal>, String, int, String, String, String, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Replaces an IdentityPool
replaceIdentityProvider(String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
replaceIdentityProvider(Optional<Principal>, String, String, String, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Replace an existing identity provider record
replaceJwks(String, String, JsonWebKeySet) - Method in interface io.confluent.security.trustservice.store.TrustWriter
replaceJwks(Optional<Principal>, String, String, JsonWebKeySet, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter: Replaces a Jwks
replaceRefreshTokenInfo(String, String, long, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
replaceRefreshTokenInfo(Optional<Principal>, String, String, long, String, String) - Method in interface io.confluent.security.trustservice.store.TrustWriter
requestObjectEncryptionAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
requestObjectEncryptionEncValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
requestObjectSigningAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
requestParameterSupported(boolean) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
requestUriParameterSupported(boolean) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
requireRequestUriRegistration(boolean) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
resolveKey(JsonWebSignature, List<JsonWebStructure>) - Method in class io.confluent.security.authentication.oauthbearer.ConstrainedVerificationKeyResolver: Chooses the key to be used for signature verification on the given JWS.
resolveKey(JsonWebSignature, List<JsonWebStructure>) - Method in class io.confluent.security.authentication.oauthbearer.SpireVerificationKeyResolver: Resolve the public key corresponding to .
ResourceLoader - Interface in io.confluent.security.util: Constructs a new object based on the contents read from some URL.
responseModesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
responseTypesSupported() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
responseTypesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
retainCacheOnErrorDuration(long) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerJku.Builder
RS256 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
RS384 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
RS512 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm
RSA_EXCLUDE_SPIRE_1 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
RSA_EXCLUDE_SPIRE_2 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
RSA_SPIRE_1 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
RSA_SPIRE_2 - Enum constant in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid
rsa512Spire1 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
rsa512Spire2 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
rsaSpire1 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
rsaSpire2 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource

S

SAN - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
scheme() - Method in class io.confluent.security.authentication.credential.HttpAnonymousCredential
scheme() - Method in class io.confluent.security.authentication.credential.HttpBasicCredential
scheme() - Method in class io.confluent.security.authentication.credential.HttpBearerCredential
scheme() - Method in class io.confluent.security.authentication.credential.HttpCredential: HTTP Authentication Scheme.
scope - Variable in class io.confluent.security.authentication.oidc.TokenResponse.Builder
scope(String) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
scopesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
serialize(JsonWebKey, JsonGenerator, SerializerProvider) - Method in class io.confluent.security.authentication.utils.JacksonSerde.JwkJsonSerializer
serviceAccount() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
serviceDocumentation(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
sessionId() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
setIdentityPool(String) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest
setToken(String) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest
SHA1 - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
SignatureAlgorithm - Enum Class in io.confluent.security.authentication.oauthbearer: Supported JsonWebSignature algorithms.
SNID - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
SPIRE_ISSUER - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
SPIRE_TRUST_DOMAIN_1 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
SPIRE_TRUST_DOMAIN_2 - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
spireAgentSocketEndpoint() - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig
spireAgentSocketEndpoint() - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire: SPIRE endpoint hosting the SPIRE Agent.
spireAgentSocketEndpoint(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtAuthenticationConfig.Builder
spireIssuerSuffix(String) - Method in class io.confluent.security.authentication.oauthbearer.JwtIssuerSpire.Builder
SpireVerificationKeyResolver - Class in io.confluent.security.authentication.oauthbearer: Fetch JWKS data from SPIRE Trust Bundle.
SpireVerificationKeyResolver(JwtSource, String) - Constructor for class io.confluent.security.authentication.oauthbearer.SpireVerificationKeyResolver
sslContext(SSLContext) - Method in class io.confluent.security.authentication.http.HttpClient.Builder
sslContext(SSLContext) - Method in class io.confluent.security.authentication.oidc.OpenIdClient.Builder
ST - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
STREET - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
subClaim() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
subject() - Method in interface io.confluent.security.authentication.oauthbearer.Claims
subject() - Method in class io.confluent.security.authentication.oauthbearer.JwtPrincipal
subjectClaim() - Method in class io.confluent.security.trustservice.store.data.IdentityPool
subjectClaim() - Method in class io.confluent.security.trustservice.store.data.IdentityProvider
subjectTypesSupported() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
subjectTypesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
SyntaxException - Exception Class in io.confluent.security.policyapi.exception
SyntaxException(String) - Constructor for exception class io.confluent.security.policyapi.exception.SyntaxException

T

target(URI) - Method in class io.confluent.security.authentication.http.HttpClient
target(URI, HttpCredential) - Method in class io.confluent.security.authentication.http.HttpClient
token() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData
token() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest
token(String) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalData.Builder
token(String) - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalRequest.Builder
tokenEndpoint() - Method in class io.confluent.security.authentication.oidc.MetadataResponse
tokenEndpoint(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
tokenEndpointAuthMethodsSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
tokenEndpointAuthSigningAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
TokenError - Class in io.confluent.security.authentication.oidc
TokenRequest - Interface in io.confluent.security.authentication.oidc
TokenResponse - Class in io.confluent.security.authentication.oidc
TokenResponse(String, String, String, long, String, String) - Constructor for class io.confluent.security.authentication.oidc.TokenResponse
TokenResponse.Builder - Class in io.confluent.security.authentication.oidc
tokenType(String) - Method in class io.confluent.security.authentication.oidc.TokenResponse.Builder
toString() - Method in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme
toString() - Method in class io.confluent.security.authentication.credential.HttpCredential
toString() - Method in enum class io.confluent.security.authentication.oidc.GrantBase.GrantType
toString() - Method in class io.confluent.security.authentication.oidc.RefreshTokenInfo
TRUST - Enum constant in enum class io.confluent.security.policyapi.ConfluentPolicy.Kind
TrustCache - Interface in io.confluent.security.trustservice.store
TrustPolicy - Class in io.confluent.security.policyapi: A TrustPolicy describes who may assume some role.
TrustPolicy(String, long, String) - Constructor for class io.confluent.security.policyapi.TrustPolicy
TrustPolicyCelLibrary - Class in io.confluent.security.policyapi.cel: This class implements a library similar to the cel standard library, but with only the subset of compile and program options that we want to support.
TrustPolicyCelLibrary() - Constructor for class io.confluent.security.policyapi.cel.TrustPolicyCelLibrary
TrustPolicyCelParser - Class in io.confluent.security.policyapi.cel
TrustPolicyCelParser() - Constructor for class io.confluent.security.policyapi.cel.TrustPolicyCelParser
TrustPolicyEngine - Class in io.confluent.security.policyapi.engine
TrustPolicyEngine() - Constructor for class io.confluent.security.policyapi.engine.TrustPolicyEngine
TrustPolicyEngine(PolicyRuleLoadingCache<String>) - Constructor for class io.confluent.security.policyapi.engine.TrustPolicyEngine
TrustPolicyEngine(Env, PolicyRuleLoadingCache<String>) - Constructor for class io.confluent.security.policyapi.engine.TrustPolicyEngine
TrustServiceBearerServerAuthFilter - Class in io.confluent.security.authentication.oauthbearer
TrustServiceBearerServerAuthFilter(TrustServiceClient, HttpAuthenticatorJwt) - Constructor for class io.confluent.security.authentication.oauthbearer.TrustServiceBearerServerAuthFilter
TrustServiceClient - Class in io.confluent.security.authentication.oauthbearer
TrustServiceClient.Builder - Class in io.confluent.security.authentication.oauthbearer
TrustWriter - Interface in io.confluent.security.trustservice.store

U

UID - Enum constant in enum class io.confluent.security.mtls.CertMetadataIdentifier
uiLocalesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
unit() - Method in class io.confluent.security.config.Duration
userId() - Method in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal
userInfoEncryptionAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
userInfoEncryptionEncValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
userInfoEndpoint(URI) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
userInfoSigningAlgValuesSupported(String[]) - Method in class io.confluent.security.authentication.oidc.MetadataResponse.Builder
UsernamePasswordCredential - Class in io.confluent.security.authentication.credential
UsernamePasswordCredential(String, String) - Constructor for class io.confluent.security.authentication.credential.UsernamePasswordCredential
userResourceId() - Method in class io.confluent.security.authentication.oauthbearer.CloudJwtPrincipal

V

VALID_AUD - Static variable in class io.confluent.security.authentication.oauthbearer.MockJwtSource
validate(String) - Method in class io.confluent.security.mtls.CertIdentityPoolFilter: Validate the given filter, throw exception if the filter is invalid.
validate(JsonWebSignature) - Method in class io.confluent.security.authentication.oauthbearer.AlgorithmWhitelist: Ensures JWS was signed using a whitelisted signature algorithm.
validate(JsonWebSignature) - Method in interface io.confluent.security.authentication.oauthbearer.Constraint: Custom constraints to be enforced on the token verification process.
validatePolicy(String) - Method in class io.confluent.security.policyapi.engine.TrustPolicyEngine
validatePolicy(T) - Method in interface io.confluent.security.policyapi.engine.PolicyEngine
validatePolicyEvaluation(String, Map<String, Object>) - Method in class io.confluent.security.policyapi.engine.TrustPolicyEngine
validatePolicyEvaluation(T, Map<String, Object>) - Method in interface io.confluent.security.policyapi.engine.PolicyEngine
validateToken(AssumePrincipalRequest) - Method in class io.confluent.security.authentication.oauthbearer.TrustServiceClient
Validation - Class in io.confluent.security.config: Shared collection of configuration parameter input validations.
Validation() - Constructor for class io.confluent.security.config.Validation
value() - Method in class io.confluent.security.config.Duration
value() - Method in class io.confluent.security.trustservice.entities.v1.AssumePrincipalResponse
valueOf(String) - Static method in enum class io.confluent.security.authentication.AuthenticationConfig.Kind: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.authentication.oidc.GrantBase.GrantType: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.authentication.utils.JacksonSerde.DataFormat: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.mtls.CertMetadataIdentifier: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class io.confluent.security.policyapi.ConfluentPolicy.Kind: Returns the enum constant of this class with the specified name.
values() - Static method in enum class io.confluent.security.authentication.AuthenticationConfig.Kind: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.authentication.credential.HttpCredential.Scheme: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.authentication.oauthbearer.MockJwtSource.Kid: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.authentication.oauthbearer.SignatureAlgorithm: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.authentication.oidc.GrantBase.GrantType: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.authentication.utils.JacksonSerde.DataFormat: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.mtls.CertMetadataIdentifier: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class io.confluent.security.policyapi.ConfluentPolicy.Kind: Returns an array containing the constants of this enum class, in the order they are declared.
version() - Method in interface io.confluent.security.policyapi.ConfluentPolicy
version() - Method in class io.confluent.security.policyapi.jackson.ConfluentPolicyModule.TrustPolicyMixin: The version number for this policy
version() - Method in class io.confluent.security.policyapi.TrustPolicy
version() - Method in class io.confluent.security.trustservice.store.data.IdentityPool

Y

YAML - Enum constant in enum class io.confluent.security.authentication.utils.JacksonSerde.DataFormat
YamlConfigReader - Class in io.confluent.security.config: ResourceLoader for reading YAML encoded configurations.
YamlConfigReader() - Constructor for class io.confluent.security.config.YamlConfigReader

A B C D E F G H I J K L M N O P R S T U V Y
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form