Uses of Interface
se.swedenconnect.security.credential.PkiCredential
Package
Description
Generic support for X.509 credentials.
Support for credential "bundles".
Support for credential containers.
Spring factory beans for creating credential objects.
Nimbus add-ons for credentials support.
Credentials defined for use with OpenSAML/Shibboleth.
Interfaces and classes for handling PKCS#11 providers.
Spring support for configuring credentials.
Spring factory classes for credentials.
-
Uses of PkiCredential in se.swedenconnect.security.credential
Modifier and TypeInterfaceDescriptioninterface
An interface for credentials are "testable" and "reloadable".Modifier and TypeClassDescriptionclass
Abstract base class for classes implementing thePkiCredential
interface.class
Abstract base class for reloadable credentials.class
A basic implementation of thePkiCredential
interface.class
Modifier and TypeMethodDescriptiondefault <T> T
PkiCredential.transform
(Function<PkiCredential, T> transformFunction) Transforms the credential to another format, for example an JWK or aKeyPair
. -
Uses of PkiCredential in se.swedenconnect.security.credential.bundle
Modifier and TypeMethodDescriptionCredentialBundles.getCredential
(String id) Gets thePkiCredential
registered under the given ID.DefaultCredentialBundleRegistry.getCredential
(String id) Gets thePkiCredential
registered under the given ID.Modifier and TypeMethodDescriptiondefault Function
<String, PkiCredential> CredentialBundles.getCredentialProvider()
Gets a function that provides a credential based on an identifier.Modifier and TypeMethodDescriptionvoid
CredentialBundleRegistry.registerCredential
(String id, PkiCredential credential) Registers a credential.void
DefaultCredentialBundleRegistry.registerCredential
(String id, PkiCredential credential) Registers a credential. -
Uses of PkiCredential in se.swedenconnect.security.credential.container
Modifier and TypeClassDescriptionclass
A managedPkiCredential
is used when aPkiCredentialContainer
returns credentials.Modifier and TypeMethodDescriptionprotected abstract PkiCredential
AbstractKeyStorePkiCredentialContainer.getCredentialFromAlias
(String alias) Gets the credential for a specific alias from the credential container.HsmPkiCredentialContainer.getCredentialFromAlias
(String alias) Gets the credential for a specific alias from the credential container.SoftPkiCredentialContainer.getCredentialFromAlias
(String alias) Gets the credential for a specific alias from the credential container.ModifierConstructorDescriptionManagedPkiCredential
(PkiCredential managedCredential, Consumer<PkiCredential> destroyCallback, Consumer<X509Certificate[]> updateCertificateCallback) Constructor setting the credential to be managed and callbacks to be used by the underlying container.ModifierConstructorDescriptionManagedPkiCredential
(PkiCredential managedCredential, Consumer<PkiCredential> destroyCallback, Consumer<X509Certificate[]> updateCertificateCallback) Constructor setting the credential to be managed and callbacks to be used by the underlying container. -
Uses of PkiCredential in se.swedenconnect.security.credential.factory
Modifier and TypeMethodDescriptionstatic PkiCredential
PkiCredentialFactory.createCredential
(PemCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader) Creates aPkiCredential
based on aPemCredentialConfiguration
.static PkiCredential
PkiCredentialFactory.createCredential
(PkiCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredential
based on the suppliedPkiCredentialConfiguration
.static PkiCredential
PkiCredentialFactory.createCredential
(StoreCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredential
based on aStoreCredentialConfiguration
.protected PkiCredential
PkiCredentialFactoryBean.createInstance()
Deprecated, for removal: This API element is subject to removal in a future version.Modifier and TypeMethodDescriptionstatic PkiCredential
PkiCredentialFactory.createCredential
(PkiCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredential
based on the suppliedPkiCredentialConfiguration
. -
Uses of PkiCredential in se.swedenconnect.security.credential.nimbus
Modifier and TypeMethodDescriptionJwkTransformerFunction.apply
(PkiCredential credential) Transforms the suppliedPkiCredential
into anJWK
.JwkTransformerFunction.DefaultAlgorithmFunction.apply
(PkiCredential credential) JwkTransformerFunction.DefaultKeyIdFunction.apply
(PkiCredential credential) If the credential metadata contains akey-id
, this is used, otherwise the function attempts to calculate the RFC 7638 thumbprint, and finally the serial number of the certificate is used for key id-calculation.JwkTransformerFunction.DefaultKeyOpsFunction.apply
(PkiCredential credential) Returns aSet
ofKeyOperation
s if the metadata propertykey-ops
is assigned to any of the following: ACollection
ofKeyOperation
objects. A singleKeyOperation
object. An array ofKeyOperation
objects. A comma separated string with key operations (see valid string values inKeyOperation
).JwkTransformerFunction.DefaultKeyUseFunction.apply
(PkiCredential credential) Will use thekey-use
property from the metadata, and if not present, use the certificate to calculate the usage.Modifier and TypeMethodDescriptionvoid
JwkTransformerFunction.setAlgorithmFunction
(Function<PkiCredential, Algorithm> algorithmFunction) Assigns the function that returns the JOSE algorithm.void
JwkTransformerFunction.setKeyIdFunction
(Function<PkiCredential, String> keyIdFunction) Assigns the function that returns the key ID property (JWKkid
property).void
JwkTransformerFunction.setKeyOpsFunction
(Function<PkiCredential, Set<KeyOperation>> keyOpsFunction) Assigns the function that returns a set ofKeyOperation
s.void
JwkTransformerFunction.setKeyUseFunction
(Function<PkiCredential, KeyUse> keyUseFunction) Assigns the function that returns the key use property (JWKuse
property). -
Uses of PkiCredential in se.swedenconnect.security.credential.opensaml
Modifier and TypeMethodDescriptionOpenSamlCredentialTransformerFunction.apply
(PkiCredential credential) Transforms the suppliedPkiCredential
into anX509Credential
.OpenSamlCredentialTransformerFunction.DefaultEntityIdFunction.apply
(PkiCredential credential) Accesses theentity-id
metadata property from the supplied credential.Modifier and TypeMethodDescriptionvoid
OpenSamlCredentialTransformerFunction.setEntityIdFunction
(Function<PkiCredential, String> entityIdFunction) Assigns the function that gets the SAML entity ID to add to the OpenSAML credential.ModifierConstructorDescriptionOpenSamlCredential
(PkiCredential credential) Constructor setting up the OpenSAML credential by assigning aPkiCredential
instance. -
Uses of PkiCredential in se.swedenconnect.security.credential.pkcs11
Modifier and TypeClassDescriptionclass
A PKCS#11 credential implementation of thePkiCredential
andReloadablePkiCredential
interfaces. -
Uses of PkiCredential in se.swedenconnect.security.credential.spring.config
Modifier and TypeMethodDescriptionPkiCredentialReference.get()
Resolves a reference to aPkiCredential
using theCredentialBundles
bean. -
Uses of PkiCredential in se.swedenconnect.security.credential.spring.factory
Modifier and TypeMethodDescriptionprotected PkiCredential
PkiCredentialFactoryBean.createInstance()
Modifier and TypeMethodDescriptionvoid
PkiCredentialFactoryBean.setCredentialProvider
(Function<String, PkiCredential> credentialProvider) If a configuration is used that has a credential reference, a credential provider is needed.