Class FileSystemOidcJsonWebKeystoreProperties
java.lang.Object
org.apereo.cas.configuration.model.support.oidc.jwks.FileSystemOidcJsonWebKeystoreProperties
- All Implemented Interfaces:
Serializable
@RequiresModule(name="cas-server-support-oidc")
public class FileSystemOidcJsonWebKeystoreProperties
extends Object
implements Serializable
- Since:
- 6.4.0
- See Also:
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionPath to the JWKS file resource used to handle signing/encryption of authentication tokens.boolean
Flag indicating whether a background watcher thread is enabled for the purposes of live reloading of keystore data file changes from disk.setJwksFile
(String jwksFile) Path to the JWKS file resource used to handle signing/encryption of authentication tokens.setWatcherEnabled
(boolean watcherEnabled) Flag indicating whether a background watcher thread is enabled for the purposes of live reloading of keystore data file changes from disk.
-
Constructor Details
-
FileSystemOidcJsonWebKeystoreProperties
public FileSystemOidcJsonWebKeystoreProperties()
-
-
Method Details
-
getJwksFile
Path to the JWKS file resource used to handle signing/encryption of authentication tokens. Contents of the keystore may be encrypted using the same encryption and security mechanism available for all other CAS configuration settings. The setting value here may also be defined in a raw format; that is, you may pass the actual contents of the keystore verbaitm to this setting and CAS would load the keystore as an in-memory resource. This is relevant in scenarios where the setting source is external to CAS and has no support for file systems where the value is loaded on the fly from the source into this setting. Note that if the keystore files does not exist at the specified path, one will be generated for you. -
isWatcherEnabled
public boolean isWatcherEnabled()Flag indicating whether a background watcher thread is enabled for the purposes of live reloading of keystore data file changes from disk. -
setJwksFile
Path to the JWKS file resource used to handle signing/encryption of authentication tokens. Contents of the keystore may be encrypted using the same encryption and security mechanism available for all other CAS configuration settings. The setting value here may also be defined in a raw format; that is, you may pass the actual contents of the keystore verbaitm to this setting and CAS would load the keystore as an in-memory resource. This is relevant in scenarios where the setting source is external to CAS and has no support for file systems where the value is loaded on the fly from the source into this setting. Note that if the keystore files does not exist at the specified path, one will be generated for you.- Returns:
this
.
-
setWatcherEnabled
Flag indicating whether a background watcher thread is enabled for the purposes of live reloading of keystore data file changes from disk.- Returns:
this
.
-