Class Sign.Request
java.lang.Object
io.helidon.integrations.common.rest.ApiJsonBuilder<T>
io.helidon.integrations.common.rest.ApiJsonRequest<T>
io.helidon.integrations.vault.VaultRequest<Sign.Request>
io.helidon.integrations.vault.secrets.transit.Sign.Request
- All Implemented Interfaces:
ApiRequest<Sign.Request>
- Enclosing class:
- Sign
Request object. Can be configured with additional headers, query parameters etc.
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
Hash algorithm "sha2-224".static final String
Hash algorithm "sha2-256".static final String
Hash algorithm "sha2-384".static final String
Hash algorithm "sha2-512".static final String
Marshalling algorithm "asn1".static final String
Marshalling algorithm "jws".static final String
Signature algorithm "pkcs1v15".static final String
Signature algorithm "pss". -
Method Summary
Modifier and TypeMethodDescriptionstatic Sign.Request
builder()
Fluent API builder for configuring a request.context
(Base64Value value) Specifies the context for key derivation.data
(Base64Value value) The data to sign.hashAlgorithm
(String hashAlgorithm) Specifies the hash algorithm to use for supporting key types (notably, not including ed25519 which specifies its own hash algorithm).marshalingAlgorithm
(String marshalingAlgorithm) Specifies the way in which the signature should be marshaled.preHashed
(boolean preHashed) Set to true when the input is already hashed.signatureAlgorithm
(String signatureAlgorithm) When using a RSA key, specifies the RSA signature algorithm to use for signing.signatureKeyName
(String signatureKeyName) Specifies the name of the encryption key to sign against.signatureKeyVersion
(int version) Specifies the version of the key to use for signatures.Methods inherited from class io.helidon.integrations.vault.VaultRequest
add, addCommaDelimitedArray, addToCommaDelimitedArray, durationToTtl, preBuild
Methods inherited from class io.helidon.integrations.common.rest.ApiJsonRequest
addHeader, addQueryParam, headers, queryParams, requestId, requestId, requestMediaType, requestMediaType, responseMediaType, responseMediaType
Methods inherited from class io.helidon.integrations.common.rest.ApiJsonBuilder
add, add, add, add, add, add, addBase64, addToArray, addToArray, addToArray, addToArray, addToArray, addToArray, addToObject, addToObject, addToObject, addToObject, addToObject, emptyArray, me, postBuild, toJson
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
Methods inherited from interface io.helidon.integrations.common.rest.ApiRequest
toJson
-
Field Details
-
HASH_ALGORITHM_SHA2_224
Hash algorithm "sha2-224".- See Also:
-
HASH_ALGORITHM_SHA2_256
Hash algorithm "sha2-256".- See Also:
-
HASH_ALGORITHM_SHA2_384
Hash algorithm "sha2-384".- See Also:
-
HASH_ALGORITHM_SHA2_512
Hash algorithm "sha2-512".- See Also:
-
SIGNATURE_ALGORITHM_PSS
Signature algorithm "pss". -
SIGNATURE_ALGORITHM_PKCS1_V15
Signature algorithm "pkcs1v15". -
MARSHALLING_ALGORITHM_ASN_1
Marshalling algorithm "asn1". -
MARSHALLING_ALGORITHM_JWS
Marshalling algorithm "jws".
-
-
Method Details
-
builder
Fluent API builder for configuring a request. The request builder is passed as is, without a build method. The equivalent of a build method isApiJsonBuilder.toJson(jakarta.json.JsonBuilderFactory)
used by theRestApi
.- Returns:
- new request builder
-
signatureKeyName
Specifies the name of the encryption key to sign against. Required.- Parameters:
signatureKeyName
- name of the key- Returns:
- updated request
-
signatureKeyVersion
Specifies the version of the key to use for signatures. If not set, uses the latest version. Must be greater than or equal to the key'smin_encryption_version
, if set. Optional.- Parameters:
version
- key version- Returns:
- updated request
-
data
The data to sign.- Parameters:
value
- value to encrypt- Returns:
- updated request
- See Also:
-
context
Specifies the context for key derivation. This is required if key derivation is enabled for this key; currently only available with ed25519 keys.- Parameters:
value
- context- Returns:
- updated request
-
preHashed
Set to true when the input is already hashed. If the key type is rsa-2048, rsa-3072 or rsa-4096, then the algorithm used to hash the input should be indicated by the hash_algorithm parameter. Just as the value to sign should be the base64-encoded representation of the exact binary data you want signed, when set, input is expected to be base64-encoded binary hashed data, not hex-formatted. (As an example, on the command line, you could generate a suitable input via openssl dgst -sha256 -binary | base64.).- Parameters:
preHashed
- whether the data is pre hashed or not- Returns:
- updated erqust
-
signatureAlgorithm
When using a RSA key, specifies the RSA signature algorithm to use for signing. Supported signature types are: pss pkcs1v15 See signature algorithm constants on this class.- Parameters:
signatureAlgorithm
- signature algorithm to use- Returns:
- updated request
-
marshalingAlgorithm
Specifies the way in which the signature should be marshaled. This currently only applies to ECDSA keys. Supported types are: asn1: The default, used by OpenSSL and X.509 jws: The version used by JWS (and thus for JWTs). Selecting this will also change the output encoding to URL-safe Base64 encoding instead of standard Base64-encoding.- Parameters:
marshalingAlgorithm
- marshaling algorithm- Returns:
- updated request
-
hashAlgorithm
Specifies the hash algorithm to use for supporting key types (notably, not including ed25519 which specifies its own hash algorithm). See hash algorithm constants on this class.- Parameters:
hashAlgorithm
- algorithm to use- Returns:
- updated request
-