Module io.helidon.security.providers.idcs.mapper

Package io.helidon.security.providers.idcs.mapper

Class IdcsMtRoleMapperProvider.DefaultMultitenancyEndpoints

java.lang.Object

io.helidon.security.providers.idcs.mapper.IdcsMtRoleMapperProvider.DefaultMultitenancyEndpoints

All Implemented Interfaces:

IdcsMtRoleMapperProvider.MultitenancyEndpoints

Enclosing class:

IdcsMtRoleMapperProvider

protected static class IdcsMtRoleMapperProvider.DefaultMultitenancyEndpoints
extends Object
implements IdcsMtRoleMapperProvider.MultitenancyEndpoints

Default implementation of the IdcsMtRoleMapperProvider.MultitenancyEndpoints. Caches the endpoints per tenant.

Constructor Summary

Constructors

Modifier	Constructor	Description
protected	DefaultMultitenancyEndpoints(OidcConfig config)	Creates endpoints from provided OIDC configuration using default URIs.

Method Summary

Modifier and Type	Method	Description
URI	assertEndpoint(String tenantId)	Asserter endpoint URI for a specific tenant.
String	idcsInfraTenantId()	The tenant id of the infrastructure tenant.
URI	tokenEndpoint(String tenantId)	Token endpoint URI for a specific tenant.
boolean	useClientCredentials(String tenantId, URI tokenEndpoint)	Whether client credentials may be attached to a token request for the resolved endpoint.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

DefaultMultitenancyEndpoints

protected DefaultMultitenancyEndpoints(OidcConfig config)

Creates endpoints from provided OIDC configuration using default URIs.

• For Asserter endpoint: /admin/v1/Asserter
• For Token endpoint: /oauth2/v1/token?IDCS_CLIENT_TENANT=

Parameters:

config - IDCS base configuration

Method Details

idcsInfraTenantId

public String idcsInfraTenantId()

Description copied from interface: IdcsMtRoleMapperProvider.MultitenancyEndpoints

The tenant id of the infrastructure tenant.

Specified by:

idcsInfraTenantId in interface IdcsMtRoleMapperProvider.MultitenancyEndpoints

Returns:

id of the tenant

assertEndpoint

public URI assertEndpoint(String tenantId)

Description copied from interface: IdcsMtRoleMapperProvider.MultitenancyEndpoints

Asserter endpoint URI for a specific tenant.

Specified by:

assertEndpoint in interface IdcsMtRoleMapperProvider.MultitenancyEndpoints

Parameters:

tenantId - id of tenant to get the endpoint for

Returns:

URI for the tenant

tokenEndpoint

public URI tokenEndpoint(String tenantId)

Description copied from interface: IdcsMtRoleMapperProvider.MultitenancyEndpoints

Token endpoint URI for a specific tenant.

Specified by:

tokenEndpoint in interface IdcsMtRoleMapperProvider.MultitenancyEndpoints

Parameters:

tenantId - id of tenant to get the endpoint for

Returns:

URI for the tenant

useClientCredentials

public boolean useClientCredentials(String tenantId,
 URI tokenEndpoint)

Description copied from interface: IdcsMtRoleMapperProvider.MultitenancyEndpoints

Whether client credentials may be attached to a token request for the resolved endpoint. The default preserves the legacy custom endpoint behavior. Custom endpoint implementations should override this method to return true only for endpoints they have validated as trusted for the provided tenant.

Specified by:

useClientCredentials in interface IdcsMtRoleMapperProvider.MultitenancyEndpoints

Parameters:

tenantId - id of tenant to get the endpoint for

tokenEndpoint - resolved token endpoint

Returns:

whether client credentials may be attached