Package io.quarkus.vault.runtime.config
Interface VaultAuthenticationConfig
-
public interface VaultAuthenticationConfig
-
-
Method Summary
All Methods Instance Methods Abstract Methods Default Methods Modifier and Type Method Description VaultAppRoleAuthenticationConfigappRole()AppRole authentication methodOptional<String>clientToken()Vault token, bypassing Vault authentication (kubernetes, userpass or approle).Optional<String>clientTokenWrappingToken()Client token wrapped in a wrapping token, such as what is returned by:default booleanisAppRole()default booleanisDirectClientToken()default booleanisUserpass()VaultKubernetesAuthenticationConfigkubernetes()Kubernetes authentication methodVaultUserpassAuthenticationConfiguserpass()Userpass authentication method
-
-
-
Method Detail
-
clientToken
Optional<String> clientToken()
Vault token, bypassing Vault authentication (kubernetes, userpass or approle). This is useful in development where an authentication mode might not have been set up. In production we will usually prefer some authentication such as userpass, or preferably kubernetes, where Vault tokens get generated with a TTL and some ability to revoke them. Lease renewal does not apply.
-
clientTokenWrappingToken
Optional<String> clientTokenWrappingToken()
Client token wrapped in a wrapping token, such as what is returned by:vault token create -wrap-ttl=60s -policy=myapp
client-token and client-token-wrapping-token are exclusive. Lease renewal does not apply.
-
appRole
VaultAppRoleAuthenticationConfig appRole()
AppRole authentication method
-
userpass
VaultUserpassAuthenticationConfig userpass()
Userpass authentication method
-
kubernetes
VaultKubernetesAuthenticationConfig kubernetes()
Kubernetes authentication method
-
isDirectClientToken
default boolean isDirectClientToken()
-
isAppRole
default boolean isAppRole()
-
isUserpass
default boolean isUserpass()
-
-