Package io.quarkus.oidc

Class OidcTenantConfig.TokenStateManager

java.lang.Object
io.quarkus.oidc.OidcTenantConfig.TokenStateManager
All Implemented Interfaces:
OidcTenantConfig.TokenStateManager
Enclosing class:
OidcTenantConfig
@Deprecated(since="3.18") public static class OidcTenantConfig.TokenStateManager extends Object implements OidcTenantConfig.TokenStateManager
Deprecated.
use the OidcTenantConfigBuilder.TokenStateManagerBuilder builder
Default Authorization Code token state manager configuration

  • Field Details

    • strategy

      public OidcTenantConfig.TokenStateManager.Strategy strategy
      Deprecated.
      Default TokenStateManager strategy.

    • splitTokens

      public boolean splitTokens
      Deprecated.
      Default TokenStateManager keeps all tokens (ID, access and refresh) returned in the authorization code grant response in a single session cookie by default. Enable this property to minimize a session cookie size

    • encryptionRequired

      public boolean encryptionRequired
      Deprecated.
      Mandates that the Default TokenStateManager encrypt the session cookie that stores the tokens.

    • encryptionSecret

      public Optional<String> encryptionSecret
      Deprecated.
      The secret used by the Default TokenStateManager to encrypt the session cookie storing the tokens when encryptionRequired property is enabled.

      If this secret is not set, the client secret configured with either `quarkus.oidc.credentials.secret` or `quarkus.oidc.credentials.client-secret.value` is checked. Finally, `quarkus.oidc.credentials.jwt.secret` which can be used for `client_jwt_secret` authentication is checked. The secret is auto-generated every time an application starts if it remains uninitialized after checking all of these properties. Generated secret can not decrypt the session cookie encrypted before the restart, therefore a user re-authentication will be required.

      The length of the secret used to encrypt the tokens should be at least 32 characters long. A warning is logged if the secret length is less than 16 characters.

    • encryptionAlgorithm

      public OidcTenantConfig.TokenStateManager.EncryptionAlgorithm encryptionAlgorithm
      Deprecated.
      Session cookie key encryption algorithm

  • Constructor Details

    • TokenStateManager

      public TokenStateManager()
      Deprecated.

  • Method Details