Namespace Oci.Common.Auth

Classes

AbstractRequestingAuthenticationDetailsProvider

Base class for authentication details providers that make remote requests.

AbstractServiceAccountTokenSupplier

CertificateAndPrivateKeyPair

A class to hold X509 certificate and private key together.

ConfigFileAuthenticationDetailsProvider

An authentication details provider implementation that reads all authentication information from config file.

ConfigFileInstancePrincipalsAuthenticationDetailsProvider

An Authentication details provider to provide delegation tokens from config file and generate service tokens from instance principals for actual signing.

CustomerAuthenticationDetailsProvider

An abstract class for user-based authentication details provider.

DefaultServiceAccountTokenSupplier

FileBasedKeySupplier

A Session Key Supplier that gets the private key and it's pass phrase from files

FileDelegationTokenSupplier

A file-based delegation token provider. This class reads a delegation token from a file.

FilePrivateKeySupplier

A file-based key provider. This class reads private key from a pem key file.

A file-based key provider with additional security checks. Before reading private key from a pem key file, this class checks the following: the key file to be encrypted (protected by pass phrase), the key file has minimum key length of 2048, and the encryption mode is CBC.

FixedContentKeySupplier

InstancePrincipalsAuthenticationDetailsProvider

An Authentication details provider to generate service tokens used for actual signing.

OkeWorkloadIdentityAuthenticationDetailsProvider

Implementation of OkeWorkloadIdentityAuthenticationDetailsProvider. This provider can only be inside pods

PasswordFinder

An implementation to save and retrieves passphrase.

PrivateKeySupplier

An implementation of ISupplier that reads private key.

ResourcePrincipalAuthenticationDetailsProvider

An authentication details providers that make remote requests via Resource Prinicipals

SecurityTokenAdapter

A class that parses the jwt token, checks for the validity and can provide information of the jwt token.

SessionKey

A class to generate a public and private key pair.

SessionTokenAuthenticationDetailsProvider

SimpleAuthenticationDetailsProvider

A base authentication details provider that contains user authentication information and region information. This is an ideal provider to be used if customer authentication information is not read from config file.

SuppliedServiceAccountTokenProvider

URLBasedX509CertificateSupplier

A class that retrieves both certificate and private key off of URL. This class also provides a way to manually refresh the certificate and private key at any point.

Interfaces

IAbstractAuthenticationDetailsProvider

This is the base interface of all authentication details providers.

IAuthenticationDetailsProvider

An interface of user-based authentication details provider.

IBasicAuthenticationDetailsProvider

An interface of authentication details provider that is based on private key.

IRefreshableOnNotAuthenticatedProvider<T>

For authentication providers with refreshable authentication data (e.g. those which wrap a security token received from a remote service), this interface flags that when a caller receives a NotAuthenticated error (HTTP 401) that they can refresh the authentication data and retry their request. Consistent HTTP 401s would indicate that there is potentially an issue outside the issued token, so only making a single retry is suggested.

IRegionProvider

IServiceAccountTokenSupplier

An interface that provides ServiceAccountToken

ISessionKeySupplier

A session key supplier is responsible for providing public/private key pairs that will be used to both fetch federated service tokens and to sign individual requests to OCI. The returned keys should not change unless there as been a call to refreshKeys().