Helidon

Appearance

io.helidon.security.providers.oidc.common.BaseBuilder

Description

Base builder of the OIDC config components

Configuration options

KeyTypeDefaultDescription
oidc-metadata.resourceResourceResource configuration for OIDC Metadata containing endpoints to various identity services, as well as information about the identity server
identity-uriURIURI of the identity server, base used to retrieve OIDC metadata
audienceStringAudience of issued tokens
optional-audienceBooleanfalseAllow audience claim to be optional
introspect-endpoint-uriURIEndpoint to use to validate JWT
sign-jwk.resourceResourceA resource pointing to JWK with public keys of signing certificates used to validate JWT
base-scopesStringopenidConfigure base scopes
decryption-keys.resourceResourceA resource pointing to JWK with private keys used for JWE content key decryption
server-typeString@defaultConfigure one of the supported types of identity servers
check-audienceBooleantrueConfigure audience claim check
client-timeout-millisDuration30000Timeout of calls using web client
issuerStringIssuer of issued tokens
authorization-endpoint-uriURIURI of an authorization endpoint used to redirect users to for logging-in
token-endpoint-uriURIURI of a token endpoint used to obtain a JWT based on the authentication code
validate-jwt-with-jwkBooleantrueUse JWK (a set of keys to validate signatures of JWT) to validate tokens
client-secretStringClient secret as generated by OIDC server
oidc-metadata-well-knownBooleantrueIf set to true, metadata will be loaded from default (well known) location, unless it is explicitly defined using oidc-metadata-resource
scope-audienceStringAudience of the scope required by this application
client-idStringClient ID as generated by OIDC server
token-endpoint-authClientAuthenticationCLIENT_SECRET_BASICType of authentication to use when invoking the token endpoint

Dependent Types

See the manifest for all available types.