Base class for authentication details providers that make remote requests.
A class to hold X509 certificate and private key together.
An authentication details provider implementation that reads all authentication information from config file.
An Authentication details provider to provide delegation tokens from config file and generate service tokens from instance principals for actual signing.
An abstract class for user-based authentication details provider.
A class that builds key id.
A file-based delegation token provider. This class reads a delegation token from a file.
A file-based key provider. This class reads private key from a pem key file.
A file-based key provider with additional security checks. Before reading private key from a pem key file, this class checks the following: the key file to be encrypted (protected by pass phrase), the key file has minimum key length of 2048, and the encryption mode is CBC.
An Authentication details provider to generate service tokens used for actual signing.
An implementation to save and retrieves passphrase.
An implementation of ISupplier that reads private key.
A class that parses the jwt token, checks for the validity and can provide information of the jwt token.
A class to generate a public and private key pair.
A base authentication details provider that contains user authentication information and region information. This is an ideal provider to be used if customer authentication information is not read from config file.
A class that retrieves both certificate and private key off of URL. This class also provides a way to manually refresh the certificate and private key at any point.
This is the base interface of all authentication details providers.
An interface of user-based authentication details provider.
An interface of authentication details provider that is based on private key.
For authentication providers with refreshable authentication data (e.g. those which wrap a security token received from a remote service), this interface flags that when a caller receives a NotAuthenticated error (HTTP 401) that they can refresh the authentication data and retry their request. Consistent HTTP 401s would indicate that there is potentially an issue outside the issued token, so only making a single retry is suggested.
A session key supplier is responsible for providing public/private key pairs that will be used to both fetch federated service tokens and to sign individual requests to OCI. The returned keys should not change unless there as been a call to refreshKeys().
An interface of user-based delegation details provider.