Package io.confluent.security.authentication.oauthbearer
package io.confluent.security.authentication.oauthbearer
-
ClassDescription
Constraintrestricts signature verification to a specific set ofSignatureAlgorithms.ExtendsJwtPrincipalwith custom Confluent Cloud claimsExtendsVerificationKeyResolverwith ability to add customConstraints.An interface for adding custom constraints to the token verification process.Decode JWT to extract issuer field in the JWT claims.ConfigureJwtAuthenticatorinstance.Authenticatorwhich decodes and validatesJsonWebSignatures.Constructs a newJwtConsumerinstance forJsonWebSignaturedecoding and validation.Fetches Signature Verification key information at theURLfound in the tokens jku claim.JwtIssuerwhich fetchesJsonWebKeySetfrom a trusted HTTPS endpoint.Constructs a newJwtIssuerinstance with aHttpsJwksVerificationKeyResolver.JwtIssuerwhich fetches trust bundleJwtBundlefrom SPIRE workload API.Constructs a newJwtIssuerSpireinstance.Interface with method that can be used to configure the SPIRE agent endpoint for fetching trust bundleJwtBundle.JwtIssuerwith a staticJsonWebKeySet.APrincipalimplementation that wraps a JSON Web Token (JWT).Exception raised when aConstraintcan't be satisfied.MockJwtSourceclass Visible for testing SPIFFE JWT-SVID changesSupportedJsonWebSignaturealgorithms.Fetch JWKS data from SPIRE Trust Bundle.