Package io.quarkus.oidc
Class OidcTenantConfig.TokenStateManager
java.lang.Object
io.quarkus.oidc.OidcTenantConfig.TokenStateManager
- Enclosing class:
- OidcTenantConfig
Default Authorization Code token state manager configuration
-
Nested Class Summary
-
Field Summary
Modifier and TypeFieldDescriptionboolean
Mandates that the Default TokenStateManager encrypt the session cookie that stores the tokens.The secret used by the Default TokenStateManager to encrypt the session cookie storing the tokens whenencryptionRequired
property is enabled.boolean
Default TokenStateManager keeps all tokens (ID, access and refresh) returned in the authorization code grant response in a single session cookie by default.Default TokenStateManager strategy. -
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionboolean
boolean
void
setEncryptionRequired
(boolean encryptionRequired) void
setEncryptionSecret
(String encryptionSecret) void
setSplitTokens
(boolean splitTokens) void
-
Field Details
-
strategy
@ConfigItem(defaultValue="keep_all_tokens") public OidcTenantConfig.TokenStateManager.Strategy strategyDefault TokenStateManager strategy. -
splitTokens
Default TokenStateManager keeps all tokens (ID, access and refresh) returned in the authorization code grant response in a single session cookie by default. Enable this property to minimize a session cookie size -
encryptionRequired
Mandates that the Default TokenStateManager encrypt the session cookie that stores the tokens. -
encryptionSecret
The secret used by the Default TokenStateManager to encrypt the session cookie storing the tokens whenencryptionRequired
property is enabled.If this secret is not set, the client secret configured with either `quarkus.oidc.credentials.secret` or `quarkus.oidc.credentials.client-secret.value` is checked. Finally, `quarkus.oidc.credentials.jwt.secret` which can be used for `client_jwt_secret` authentication is checked. The secret is auto-generated if it remains uninitialized after checking all of these properties.
The length of the secret used to encrypt the tokens should be at least 32 characters long. A warning is logged if the secret length is less than 16 characters.
-
-
Constructor Details
-
TokenStateManager
public TokenStateManager()
-
-
Method Details
-
isEncryptionRequired
public boolean isEncryptionRequired() -
setEncryptionRequired
public void setEncryptionRequired(boolean encryptionRequired) -
getEncryptionSecret
-
setEncryptionSecret
-
isSplitTokens
public boolean isSplitTokens() -
setSplitTokens
public void setSplitTokens(boolean splitTokens) -
getStrategy
-
setStrategy
-