Package | Description |
---|---|
org.forgerock.openig.secrets |
Provides the Common Secrets API for accessing secrets of various kinds.
|
org.forgerock.secrets |
Provides a unified API for accessing secrets of various kinds.
|
org.forgerock.secrets.keystore |
Implementations of
SecretStore for accessing keys stored in Java KeyStores, such as
PKCS#11 Hardware Security Modules (HSMs) and PKCS#12 file-based encrypted key stores. |
org.forgerock.secrets.propertyresolver |
Provides a
SecretStore implementation that loads secrets from a Common Configuration
PropertyResolver and then decodes it with a
SecretPropertyFormat . |
Modifier and Type | Method and Description |
---|---|
static SecretStore<Secret> |
SystemAndEnvSecretStoreHeaplet.newBase64SysEnvSecretStore()
Returns a new instance of a SecretStore that reads base64-encoded secrets (passwords or symmetric keys)
from system properties and environment variables.
|
Modifier and Type | Method and Description |
---|---|
DefaultSecretsService.Builder |
DefaultSecretsService.Builder.withDefaultStore(Supplier<SecretStore<?>> supplier)
Configure this service with a default SecretStore supplier.
|
Modifier and Type | Class and Description |
---|---|
class |
ThreadPoolSecretStore<T extends Secret>
A secret store that wraps another secret store and performs all query operations in a background thread using a
thread pool.
|
Modifier and Type | Method and Description |
---|---|
<T extends Secret> |
SecretsProvider.setActiveStore(SecretStore<? super T> store,
Purpose<? extends T>... purposes)
Sets the active store to use for the given purpose.
|
protected <T extends Secret> |
SecretsProvider.setActiveStore(SecretStore<? super T> store,
Purpose<? extends T> purpose)
Sets the active store to use for the given purpose.
|
SecretsProvider |
SecretsProvider.setDefaultStores(SecretStore<?> activeStore,
SecretStore<?>... defaultStores)
Sets the default store(s) to use if there is no specific store configured for a particular purpose.
|
SecretsProvider |
SecretsProvider.setDefaultStores(SecretStore<?> activeStore,
SecretStore<?>... defaultStores)
Sets the default store(s) to use if there is no specific store configured for a particular purpose.
|
static <S extends Secret> |
ThreadPoolSecretStore.wrap(SecretStore<S> store)
Wraps the given store in an asynchronous thread-pool executor using the system
ForkJoinPool.commonPool() . |
static <S extends Secret> |
ThreadPoolSecretStore.wrap(SecretStore<S> store,
ExecutorService executor)
Wraps the given store in an asynchronous thread-pool executor using the given thread pool.
|
Modifier and Type | Class and Description |
---|---|
class |
KeyStoreSecretStore
A secret store for cryptographic keys based on a standard Java
KeyStore . |
Modifier and Type | Class and Description |
---|---|
class |
PropertyResolverSecretStore
A
SecretStore implementation that resolves secrets as base64-encoded strings from an underlying
PropertyResolver . |
Copyright 2011-2017 ForgeRock AS.