Class MtlsAuthenticationMechanism
java.lang.Object
io.quarkus.vertx.http.runtime.security.MtlsAuthenticationMechanism
- All Implemented Interfaces:
HttpAuthenticationMechanism
The authentication handler responsible for mTLS client authentication
-
Nested Class Summary
Nested classes/interfaces inherited from interface io.quarkus.vertx.http.runtime.security.HttpAuthenticationMechanism
HttpAuthenticationMechanism.ChallengeSender
-
Field Summary
FieldsFields inherited from interface io.quarkus.vertx.http.runtime.security.HttpAuthenticationMechanism
DEFAULT_PRIORITY
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionio.smallrye.mutiny.Uni<io.quarkus.security.identity.SecurityIdentity>
authenticate
(io.vertx.ext.web.RoutingContext context, io.quarkus.security.identity.IdentityProviderManager identityProviderManager) io.smallrye.mutiny.Uni<ChallengeData>
getChallenge
(io.vertx.ext.web.RoutingContext context) io.smallrye.mutiny.Uni<HttpCredentialTransport>
getCredentialTransport
(io.vertx.ext.web.RoutingContext context) The credential transport, used for finding the best candidate for authenticating and challenging when more than one mechanism is installed.If this mechanism delegates authentication to theIdentityProviderManager
using theIdentityProviderManager.authenticate(AuthenticationRequest)
call, then the mechanism must provide supportedAuthenticationRequest
request types.(package private) void
setRoleMappings
(Map<String, Set<String>> roles) Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
Methods inherited from interface io.quarkus.vertx.http.runtime.security.HttpAuthenticationMechanism
getCredentialTransport, getPriority, sendChallenge
-
Field Details
-
roles
-
-
Constructor Details
-
MtlsAuthenticationMechanism
public MtlsAuthenticationMechanism()
-
-
Method Details
-
authenticate
public io.smallrye.mutiny.Uni<io.quarkus.security.identity.SecurityIdentity> authenticate(io.vertx.ext.web.RoutingContext context, io.quarkus.security.identity.IdentityProviderManager identityProviderManager) - Specified by:
authenticate
in interfaceHttpAuthenticationMechanism
-
getChallenge
- Specified by:
getChallenge
in interfaceHttpAuthenticationMechanism
-
getCredentialTypes
public Set<Class<? extends io.quarkus.security.identity.request.AuthenticationRequest>> getCredentialTypes()Description copied from interface:HttpAuthenticationMechanism
If this mechanism delegates authentication to theIdentityProviderManager
using theIdentityProviderManager.authenticate(AuthenticationRequest)
call, then the mechanism must provide supportedAuthenticationRequest
request types. It allows Quarkus to validate that one or moreIdentityProvider
providers with matching supportedIdentityProvider.getRequestType()
request types exist and fail otherwise.- Specified by:
getCredentialTypes
in interfaceHttpAuthenticationMechanism
- Returns:
- required credential types
-
getCredentialTransport
public io.smallrye.mutiny.Uni<HttpCredentialTransport> getCredentialTransport(io.vertx.ext.web.RoutingContext context) Description copied from interface:HttpAuthenticationMechanism
The credential transport, used for finding the best candidate for authenticating and challenging when more than one mechanism is installed. May be null if this mechanism cannot interfere with other mechanisms- Specified by:
getCredentialTransport
in interfaceHttpAuthenticationMechanism
-
setRoleMappings
-