All Classes and Interfaces
Class
Description
Access Token Decoder Factory provides Token Validation based on expected Access Token claims instead of ID Token Claims
Application Cookie Names
Application Cookie Service capable of generating and retrieving HTTP Cookies using standard properties
Converter for customized User Identity using SAML Attribute Value
OAuth2 Authentication Result Converter returns an extended Authentication Token containing the OAuth2 Access Token
Spring Configuration for Authentication Security
Request Attribute enumeration for Authentication User information
Authentication User Filter sets authentication username in request attribute for later retrieval and logging
Serialized representation of Authorized Client
Abstraction for encoding and decoding OpenID Connect Authorized Client Tokens
Runnable command to delete expired OpenID Authorized Clients
Serialized representation of Authorized Token with minimum required properties
Bearer Token Provider supports generation of Access Tokens used for Bearer Authentication
Key for the cache.
Represents the exceptional case when a users certificate status is not GOOD.
OpenID Connect Client Registration configuration with supporting components
Provider interface for OpenID Connect Client Registration abstracting access to metadata from a configurable location
Cross-Site Request Forgery Cookie Filter based on Spring Security recommendations for Single-Page Applications
Request Matcher checks for the existence of a cookie with the configured name
Disabled implementation of Client Registration Repository when OpenID Connect is not configured
Ed25519 implementation of JSON Web Security Signer using Java cryptography
Ed25519 implementation of JSON Web Security Verifier using Java cryptography
Thrown if the authentication of a given request is invalid.
JSON Web Token Issuer Provider abstracts determination of local address for issuer claims
JSON Web Signature Signer Container
JSON Web Signature Signer Provider supports accessing signer and identifier properties
JSON Web Token Configuration for Authentication Security
JSON Web Token Decoder Configuration with component supporting Bearer Token parsing and verification
JSON Web Token Logout Listener
JSON Web Token Revocation Service
JSON Web Token Validator checks the JWT Identifier against a Revocation Service
Key Expiration Command removes expired Verification Keys
Key Generation Command produces new RSA Key Pairs and configures a JWS Signer
Login Authentication Token containing mapped Identity and Expiration Time to exchange for Application Bearer Token
Spring Factory Bean implementation requires a generic Object return type to handle a null Provider configuration
Java class for anonymous complex type
Logout Authentication Token for processing Logout Requests using Spring Security handlers
Thrown if the authentication of a given request is invalid.
Extracts an anonymous authentication request from a specified servlet request.
This is an authentication request for an anonymous user.
The NiFiAuthenticationFilter abstract class defines the base methods for NiFi's various existing and future
authentication mechanisms.
Base AuthenticationProvider that provides common functionality to mapping identities.
Base class for authentication request tokens in NiFI.
An authentication token that represents an Authenticated and Authorized user of the NiFi Apis.
Standard Web Authentication Details with additional headers including User-Agent and X-Forwarded-For
AuthenticationDetailsSource implementation for NiFi Web.
This object contains factory methods for each
Java content interface and Java element interface
generated in the org.apache.nifi.authentication.generated package.
A request to verify/validate the specified subject certificate via OCSP.
OpenID Connect Authentication Success Handler redirects to the user interface and sets a Session Cookie with a Bearer Token
OpenID Connect Authorized Client with ID Token
OpenID Connect Filter for evaluating the application Bearer Token and returning an updated Bearer Token after successful OAuth2 Refresh Token processing
OpenID Connect Configuration Exception
OpenID Connect Logout Filter completes application Logout Requests
OpenID Connect Logout Success Handler supports RP-Initiated Logout and
completes Logout Requests with conditional redirect to Authorization Server
OpenID Connect configuration property for Registration information
OpenID Connect Configuration for Spring Security
Shared configuration for OpenID Connect URL Paths
Java class for Property complex type
Java class for Provider complex type
Provider interface for Relying Party Registration Builder abstracting access to metadata from a configurable location
Converter from SAML 2 Response Token to SAML 2 Authentication for Spring Security
Revocation Expiration Command removes expired Revocations
Cookie SameSite attribute policy
SAML 2 Authentication Success Handler redirects to the user interface and sets a Session Cookie with a Bearer Token
SAML 2 Logout Filter completes application Logout Requests
SAML 2 Logout Success Handler implementation for completing application Logout Requests
SAML 2 configuration for Registration information
SAML 2 Single Local Filter processes Single Logout Requests
Standard SAML 2 Single Logout Handler for tracking Logout Requests with Spring Saml2LogoutRequestFilter
SAML Configuration for Authentication Security
SAML Configuration Exception
Shared configuration for SAML URL Paths
Enumeration of HTTP Cookie Names for Security
Enumeration of HTTP Headers for Security
Listener handling JWS Signer events
Listener handling Signing Key events
Skip Replicated Cross-Site Request Forgery Filter disables subsequent filtering for matched requests
Standard implementation of Application Cookie Service using Spring Framework utilities
Standard Authentication Entry Point delegates to Bearer Authentication Entry Point and performs additional processing
OAuth2 Authorization Request Repository with Spring Cache storage and Request Identifier tracked using HTTP cookies
Standard Authorized Client Converter with JSON serialization and encryption
Standard Bearer Token Provider supports returning serialized and signed JSON Web Tokens
Bearer Token Resolver prefers the HTTP Authorization Header and then evaluates the Authorization Cookie when found
Standard implementation of Client Registration Provider using Application Properties
Standard implementation of CSRF Token Repository using stateless Spring Security double-submit cookie strategy
Cross-Site Request Forgery Mitigation Token Handler implementation supporting resolution using Request Header
JSON Web Token Decoder capable of delegating to specific Decoder based on Issuer claims for OpenID Connect Clients
Standard Issuer Provider with configurable host and port for HTTPS URI construction
Standard JSON Web Signature Key Selector for selecting keys using Key Identifier
Standard JSON Web Signature Signer Provider
Standard implementation of JSON Web Signature Verifier Factory
Standard Converter from JSON Web Token to NiFi Authentication Token
Standard JSON Web Token Logout Listener handles parsing and revocation
Standard JSON Web Token Revocation Service using State Manager
Standard Logout Filter completes application Logout Requests
OAuth2 Authentication Token extended to include the OAuth2 Access Token
Authorization Request Resolver supports handling of headers from reverse proxy servers
OpenID Connect implementation of Authorized Client Repository for storing OAuth2 Tokens
OpenID Connect ID Token Decoder Factory with configurable REST Operations for retrieval of JSON Web Keys
Standard extension of Spring Security OIDC User supporting customized name configuration
Standard extension of Spring Security OIDC User Service supporting customized identity claim mapping
Standard Registration Builder Provider implementation based on NiFi Application Properties
Standard implementation of Relying Party Registration Repository based on NiFi Properties
Standard Relying Party Registration Resolver with support for proxy headers
Standard implementation of SAML 2 Authentication Request Repository using cookies
Standard implementation of SAML 2 Logout Request Repository using cookies
Standard implementation for handling Token Revocation Requests using Spring REST Operations
Standard Verification Key Selector implements listener interfaces for updating Key status
Standard Verification Key Service implemented using State Manager
Principal extractor for extracting a DN.
Supported Claim for JSON Web Tokens
OAuth2 Token Revocation Request as described in RFC 7009 Section 2.1
OAuth2 Token Revocation Request as described in RFC 7009 Section 2.1
Abstraction for processing Token Revocation requests according to RFC 7009
Token Type Hint values as defined in RFC 7009 Section 2.1
Tracked abstraction for Authorized Client Repository supporting deletion of expired clients
Verification Key used for storing serialized instances
Listener handling Verification Key events
Verification Key Selector returns a List of java.security.Key objects for signature verification
Verification Key Service for storing and retrieving keys
Application Security Configuration using Spring Security
Custom X509 filter that will inspect the HTTP headers for a proxied user before extracting the user details from the client certificate.
This is an authentication request with a given JWT token.
X.509 Configuration for Authentication Security
Extracts client certificates from Http requests.
Extracts client certificates from Http requests.
Identity provider for extract the authenticating a ServletRequest with a X509Certificate.