Class InboundClientDefinition
java.lang.Object
io.helidon.security.providers.httpsign.InboundClientDefinition
Configuration of inbound client.
This information is used to validate incoming signatures and to create a principal.
-
Nested Class Summary
Modifier and TypeClassDescriptionstatic final class
Fluent API builder to create a new instance ofInboundClientDefinition
. -
Method Summary
Modifier and TypeMethodDescriptionAlgorithm of signature used by this client.Create a new builder from configuration.Create a new builder for the keyId.static InboundClientDefinition
Create a new instance from configuration.Optional<byte[]>
For hmac-sha256 algorithm, this provides access to a secret shared with the client.For rsa-sha256 algorithm, this provides access to the public key of the client.keyId()
The key id of this client.The principal name of the client.The type of principal we have authenticated (either user or service, defaults to service).
-
Method Details
-
builder
Create a new builder for the keyId.- Parameters:
keyId
- Key id as is received in inbound signature (mandatory part of the signature header) to map to configured RSA or HMAC key.- Returns:
- builder instance
-
builder
Create a new builder from configuration.- Parameters:
config
- configuration instance located at a single client definition (expect key-id as a child)- Returns:
- builder configured based on config
-
create
Create a new instance from configuration.- Parameters:
config
- configuration instance located at a single client definition (expect key-id as a child)- Returns:
- instance configured based on config
-
keyId
The key id of this client.- Returns:
- key id to map this configuration to inbound signature
-
principalName
The principal name of the client.- Returns:
- name to use when creating security principal for this client
-
subjectType
The type of principal we have authenticated (either user or service, defaults to service).- Returns:
- principal type to use when creating security principal for this client
-
algorithm
Algorithm of signature used by this client.- Returns:
- algorithm of signature expected in request
-
keyConfig
For rsa-sha256 algorithm, this provides access to the public key of the client.- Returns:
- Public key configuration to validate signature or empty optional if none configured
-