org.apache.nifi.web.security.configuration

Class JwtAuthenticationSecurityConfiguration

java.lang.Object

org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration

@Configuration
public class JwtAuthenticationSecurityConfiguration
extends Object

JSON Web Token Configuration for Authentication Security

Field Summary

Fields

Modifier and Type	Field and Description
private Authorizer	authorizer
private IdpUserGroupService	idpUserGroupService
private Duration	keyRotationPeriod
private NiFiProperties	niFiProperties
private static Set<String>	REQUIRED_CLAIMS
private StateManagerProvider	stateManagerProvider

Constructor Summary

Constructors

Constructor and Description
JwtAuthenticationSecurityConfiguration(NiFiProperties niFiProperties, Authorizer authorizer, IdpUserGroupService idpUserGroupService, StateManagerProvider stateManagerProvider)

Method Summary

Modifier and Type	Method and Description
StandardAuthenticationEntryPoint	authenticationEntryPoint()
org.springframework.security.oauth2.server.resource.web.BearerTokenAuthenticationFilter	bearerTokenAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager)
BearerTokenProvider	bearerTokenProvider()
org.springframework.security.oauth2.server.resource.web.BearerTokenResolver	bearerTokenResolver()
com.nimbusds.jwt.proc.JWTClaimsSetVerifier<com.nimbusds.jose.proc.SecurityContext>	claimsSetVerifier()
org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler	commandScheduler()
com.nimbusds.jose.proc.JWSKeySelector<com.nimbusds.jose.proc.SecurityContext>	jwsKeySelector()
StandardJwsSignerProvider	jwsSignerProvider()
StandardJwtAuthenticationConverter	jwtAuthenticationConverter()
org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationProvider	jwtAuthenticationProvider()
org.springframework.security.oauth2.jwt.JwtDecoder	jwtDecoder()
JwtLogoutListener	jwtLogoutListener()
com.nimbusds.jwt.proc.JWTProcessor<com.nimbusds.jose.proc.SecurityContext>	jwtProcessor()
JwtRevocationService	jwtRevocationService()
org.springframework.security.oauth2.core.OAuth2TokenValidator<org.springframework.security.oauth2.jwt.Jwt>	jwtRevocationValidator()
KeyExpirationCommand	keyExpirationCommand()
KeyGenerationCommand	keyGenerationCommand()
RevocationExpirationCommand	revocationExpirationCommand()
StandardVerificationKeySelector	verificationKeySelector()
VerificationKeyService	verificationKeyService()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

REQUIRED_CLAIMS

private static final Set<String> REQUIRED_CLAIMS

niFiProperties

private final NiFiProperties niFiProperties

authorizer

private final Authorizer authorizer

idpUserGroupService

private final IdpUserGroupService idpUserGroupService

stateManagerProvider

private final StateManagerProvider stateManagerProvider

keyRotationPeriod

private final Duration keyRotationPeriod

Constructor Detail

JwtAuthenticationSecurityConfiguration

@Autowired
public JwtAuthenticationSecurityConfiguration(NiFiProperties niFiProperties,
                                                         Authorizer authorizer,
                                                         IdpUserGroupService idpUserGroupService,
                                                         StateManagerProvider stateManagerProvider)

Method Detail

bearerTokenAuthenticationFilter

@Bean
public org.springframework.security.oauth2.server.resource.web.BearerTokenAuthenticationFilter bearerTokenAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager)

bearerTokenResolver

@Bean
public org.springframework.security.oauth2.server.resource.web.BearerTokenResolver bearerTokenResolver()

authenticationEntryPoint

@Bean
public StandardAuthenticationEntryPoint authenticationEntryPoint()

jwtAuthenticationProvider

@Bean
public org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationProvider jwtAuthenticationProvider()

jwtDecoder

@Bean
public org.springframework.security.oauth2.jwt.JwtDecoder jwtDecoder()

jwtRevocationValidator

@Bean
public org.springframework.security.oauth2.core.OAuth2TokenValidator<org.springframework.security.oauth2.jwt.Jwt> jwtRevocationValidator()

jwtRevocationService

@Bean
public JwtRevocationService jwtRevocationService()

jwtLogoutListener

@Bean
public JwtLogoutListener jwtLogoutListener()

jwtProcessor

@Bean
public com.nimbusds.jwt.proc.JWTProcessor<com.nimbusds.jose.proc.SecurityContext> jwtProcessor()

jwsKeySelector

@Bean
public com.nimbusds.jose.proc.JWSKeySelector<com.nimbusds.jose.proc.SecurityContext> jwsKeySelector()

claimsSetVerifier

@Bean
public com.nimbusds.jwt.proc.JWTClaimsSetVerifier<com.nimbusds.jose.proc.SecurityContext> claimsSetVerifier()

jwtAuthenticationConverter

@Bean
public StandardJwtAuthenticationConverter jwtAuthenticationConverter()

bearerTokenProvider

@Bean
public BearerTokenProvider bearerTokenProvider()

jwsSignerProvider

@Bean
public StandardJwsSignerProvider jwsSignerProvider()

verificationKeySelector

@Bean
public StandardVerificationKeySelector verificationKeySelector()

verificationKeyService

@Bean
public VerificationKeyService verificationKeyService()

keyGenerationCommand

@Bean
public KeyGenerationCommand keyGenerationCommand()

keyExpirationCommand

@Bean
public KeyExpirationCommand keyExpirationCommand()

revocationExpirationCommand

@Bean
public RevocationExpirationCommand revocationExpirationCommand()

commandScheduler

@Bean
public org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler commandScheduler()