org.keycloak.adapters.authentication.JWTClientSecretCredentialsProvider の継承関係図
org.keycloak.adapters.authentication.JWTClientSecretCredentialsProvider 連携図
公開メンバ関数 | |
| String | getId () |
| void | init (KeycloakDeployment deployment, Object config) |
| void | setClientCredentials (KeycloakDeployment deployment, Map< String, String > requestHeaders, Map< String, String > formParams) |
| void | setClientSecret (String clientSecretString) |
| String | createSignedRequestToken (String clientId, String realmInfoUrl) |
静的公開変数類 | |
| static final String | PROVIDER_ID = "secret-jwt" |
非公開メンバ関数 | |
| JsonWebToken | createRequestToken (String clientId, String realmInfoUrl) |
非公開変数類 | |
| SecretKey | clientSecret |
静的非公開変数類 | |
| static final Logger | logger = Logger.getLogger(JWTClientSecretCredentialsProvider.class) |
詳解
Client authentication based on JWT signed by client secret instead of private key . See specs for more details.
関数詳解
◆ createRequestToken()
|
inlineprivate |
◆ createSignedRequestToken()
|
inline |
73 // JOSE header {"alg":"HS256","typ" : "JWT"} no need "kid" due to using only one registered client secret.
74 // Use "HmacSHA256" consulting <a href="https://docs.oracle.com/javase/jp/8/docs/api/javax/crypto/Mac.html">java8 api</a>.
SecretKey clientSecret
Definition: JWTClientSecretCredentialsProvider.java:30
JsonWebToken createRequestToken(String clientId, String realmInfoUrl)
Definition: JWTClientSecretCredentialsProvider.java:79
◆ getId()
|
inline |
org.keycloak.adapters.authentication.ClientCredentialsProviderを実装しています。
static final String PROVIDER_ID
Definition: JWTClientSecretCredentialsProvider.java:28
◆ init()
|
inline |
org.keycloak.adapters.authentication.ClientCredentialsProviderを実装しています。
40 throw new RuntimeException("Configuration of jwt credentials by client secret is missing or incorrect for client '" + deployment.getResourceName() + "'. Check your adapter configuration");
46 throw new RuntimeException("Missing parameter secret-jwt in configuration of jwt for client " + deployment.getResourceName());
void setClientSecret(String clientSecretString)
Definition: JWTClientSecretCredentialsProvider.java:58
◆ setClientCredentials()
|
inline |
org.keycloak.adapters.authentication.ClientCredentialsProviderを実装しています。
53 String signedToken = createSignedRequestToken(deployment.getResourceName(), deployment.getRealmInfoUrl());
54 formParams.put(OAuth2Constants.CLIENT_ASSERTION_TYPE, OAuth2Constants.CLIENT_ASSERTION_TYPE_JWT);
String createSignedRequestToken(String clientId, String realmInfoUrl)
Definition: JWTClientSecretCredentialsProvider.java:71
◆ setClientSecret()
|
inline |
60 // According to <a href="http://openid.net/specs/openid-connect-core-1_0.html#ClientAuthentication">OIDC's client authentication spec</a>,
61 // The HMAC (Hash-based Message Authentication Code) is calculated using the octets of the UTF-8 representation of the client_secret as the shared key.
62 // Use "HmacSHA256" consulting <a href="https://docs.oracle.com/javase/jp/8/docs/api/javax/crypto/Mac.html">java8 api</a>
SecretKey clientSecret
Definition: JWTClientSecretCredentialsProvider.java:30
メンバ詳解
◆ clientSecret
|
private |
◆ logger
|
staticprivate |
◆ PROVIDER_ID
|
static |
このクラス詳解は次のファイルから抽出されました:
- D:/AppData/OpenId/keycloak/doxygen/src/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/authentication/JWTClientSecretCredentialsProvider.java
