- All Known Subinterfaces:
AuditProvider
,AuthenticationProvider
,AuthorizationProvider
,DigestProvider<T>
,EncryptionProvider<T>
,OutboundSecurityProvider
,SecretsProvider<T>
,SubjectMappingProvider
- All Known Implementing Classes:
AbacProvider
,ConfigVaultProvider
,CubbyholeSecurityProvider
,GoogleTokenProvider
,HeaderAtnProvider
,HttpBasicAuthProvider
,HttpDigestAuthProvider
,HttpSignProvider
,IdcsMtRoleMapperProvider
,IdcsMtRoleMapperRxProvider
,IdcsRoleMapperProvider
,IdcsRoleMapperProviderBase
,IdcsRoleMapperRxProvider
,IdcsRoleMapperRxProviderBase
,JwtAuthProvider
,JwtProvider
,Kv1SecurityProvider
,Kv2SecurityProvider
,OidcProvider
,SynchronousProvider
,TransitSecurityProvider
public interface SecurityProvider
Base interface for all security providers.
-
Method Summary
Modifier and TypeMethodDescriptiondefault Collection<Class<? extends Annotation>>
Provide extension annotations supported by this provider (e.g.default Collection<String>
A collection of attribute names expected by this provider to override endpoint configuration.default Collection<String>
Keys expected in configuration.default Collection<Class<? extends ProviderConfig>>
Class of the configuration type.
-
Method Details
-
supportedAnnotations
Provide extension annotations supported by this provider (e.g.jakarta.annotation.security.RolesAllowed
). Annotations will be collected according to framework in use. For JAX-RS, annotations from application class, resource class and resource methods will be collected.- Returns:
- Collection of annotations this provider expects.
-
supportedConfigKeys
Keys expected in configuration. This may be used in integrations that can be fully configured through a file (e.g. integration with web server). This is a configuration of a specific resource access (e.g. GET on /my/resource) and is to be used by this provider to evaluate security.- Returns:
- name of the configuration key or empty (default)
- See Also:
-
supportedCustomObjects
Class of the configuration type. The provider may use a POJO implementing aProviderConfig
to configure it. When configuring security, you user can provide an instance of such a class to configure that provider.- Returns:
- class of the type or empty (default)
- See Also:
-
supportedAttributes
A collection of attribute names expected by this provider to override endpoint configuration.- Returns:
- collection of supported attribute names
- See Also:
-