@NonNullApi @NonNullFields

Package org.springframework.vault.authentication

Support for authentication and session management.

See: Description

Interface Summary

Interface	Description
AppIdUserIdMechanism	Interface to obtain a UserId for AppId authentication.
AppRoleAuthenticationOptions.RoleId	RoleId type encapsulating how the roleId is actually obtained.
AppRoleAuthenticationOptions.SecretId	SecretId type encapsulating how the secretId is actually obtained.
AuthenticationStepsFactory	Factory interface for components that create AuthenticationSteps.
ClientAuthentication	ClientAuthentication provides VaultToken to be used for authenticated Vault access.
KubernetesJwtSupplier	Interface to obtain a Kubernetes Service Account Token for Kubernetes authentication.
LifecycleAwareSessionManagerSupport.RefreshTrigger	Common interface for trigger objects that determine the next execution time of a refresh task.
ReactiveSessionManager	Strategy interface that encapsulates the creation and management of Vault sessions based on VaultToken used by reactive components.
SessionManager	Strategy interface that encapsulates the creation and management of Vault sessions based on VaultToken.
VaultTokenSupplier	VaultTokenSupplier provides a VaultToken to be used for authenticated Vault access.

Class Summary

Class	Description
AppIdAuthentication	AppId implementation of ClientAuthentication.
AppIdAuthenticationOptions	Authentication options for AppIdAuthentication.
AppIdAuthenticationOptions.AppIdAuthenticationOptionsBuilder	Builder for AppIdAuthenticationOptions.
AppRoleAuthentication	AppRole implementation of ClientAuthentication.
AppRoleAuthenticationOptions	Authentication options for AppRoleAuthentication.
AppRoleAuthenticationOptions.AppRoleAuthenticationOptionsBuilder	Builder for AppRoleAuthenticationOptions.
AuthenticationSteps	Authentication DSL allowing flow composition to create a VaultToken.
AuthenticationSteps.HttpRequest<T>	Value object representing a HTTP request.
AuthenticationSteps.HttpRequestBuilder	Builder for AuthenticationSteps.HttpRequest.
AuthenticationSteps.Node<T>	Intermediate authentication step with authentication flow operators represented as node.
AuthenticationStepsExecutor	Synchronous executor for AuthenticationSteps using RestOperations to login using authentication flows.
AuthenticationStepsOperator	VaultTokenSupplier using AuthenticationSteps to create an authentication flow emitting VaultToken.
AwsEc2Authentication	AWS-EC2 login implementation.
AwsEc2AuthenticationOptions	Authentication options for AwsEc2Authentication.
AwsEc2AuthenticationOptions.AwsEc2AuthenticationOptionsBuilder	Builder for AwsEc2AuthenticationOptions.AwsEc2AuthenticationOptionsBuilder.
AwsEc2AuthenticationOptions.Nonce	Value object for an authentication nonce.
AwsIamAuthentication	AWS IAM authentication using signed HTTP requests to query the current identity.
AwsIamAuthenticationOptions	Authentication options for AwsIamAuthentication.
AwsIamAuthenticationOptions.AwsIamAuthenticationOptionsBuilder	Builder for AwsIamAuthenticationOptions.
CachingVaultTokenSupplier	Default implementation of VaultTokenSupplier caching the VaultToken from a delegate VaultTokenSupplier.
ClientCertificateAuthentication	TLS Client Certificate ClientAuthentication.
CubbyholeAuthentication	Cubbyhole ClientAuthentication implementation.
CubbyholeAuthenticationOptions	Authentication options for CubbyholeAuthentication.
CubbyholeAuthenticationOptions.CubbyholeAuthenticationOptionsBuilder	Builder for CubbyholeAuthenticationOptions.
IpAddressUserId	Mechanism to generate a SHA-256 hashed and hex-encoded representation of the IP address.
KubernetesAuthentication	Kubernetes implementation of ClientAuthentication.
KubernetesAuthenticationOptions	Authentication options for KubernetesAuthentication.
KubernetesAuthenticationOptions.KubernetesAuthenticationOptionsBuilder	Builder for KubernetesAuthenticationOptions.
KubernetesServiceAccountTokenFile	Mechanism to retrieve a Kubernetes service account token.
LifecycleAwareSessionManager	Lifecycle-aware Session Manager.
LifecycleAwareSessionManagerSupport	Support class to build Lifecycle-aware Session Manager implementations, defining common properties such as the TaskScheduler and LifecycleAwareSessionManagerSupport.RefreshTrigger.
LifecycleAwareSessionManagerSupport.FixedTimeoutRefreshTrigger	LifecycleAwareSessionManagerSupport.RefreshTrigger implementation using a fixed timeout to schedule renewal before a LoginToken expires.
LoginToken	Value object for a Vault token obtained by a login method.
LoginTokenAdapter	Adapts tokens created by a ClientAuthentication to a LoginToken.
MacAddressUserId	Mechanism to generate a UserId based on the Mac address.
ReactiveLifecycleAwareSessionManager	Reactive implementation of Lifecycle-aware session manager.
ReactiveLifecycleAwareSessionManager.TokenWrapper	Wraps a VaultToken and specifies whether the token is revocable on factory shutdown.
SimpleSessionManager	Default implementation of SessionManager.
StaticUserId	A static UserId.
TokenAuthentication	Static Token-based ClientAuthentication method.

Exception Summary

Exception	Description
VaultTokenLookupException	Exception thrown if a token self-lookup fails via auth/token/lookup-self.

Package org.springframework.vault.authentication Description

Support for authentication and session management.