Module org.elasticsearch.security
Class OpenIdConnectToken
java.lang.Object
org.elasticsearch.xpack.security.authc.oidc.OpenIdConnectToken
- All Implemented Interfaces:
AuthenticationToken
A
AuthenticationToken to hold OpenID Connect related content.
Depending on the flow the token can contain only a code ( oAuth2 authorization code
grant flow ) or even an Identity Token ( oAuth2 implicit flow )-
Constructor Summary
ConstructorsConstructorDescriptionOpenIdConnectToken(String redirectUrl, com.nimbusds.oauth2.sdk.id.State state, com.nimbusds.openid.connect.sdk.Nonce nonce, String authenticatingRealm) -
Method Summary
-
Constructor Details
-
OpenIdConnectToken
public OpenIdConnectToken(String redirectUrl, com.nimbusds.oauth2.sdk.id.State state, com.nimbusds.openid.connect.sdk.Nonce nonce, @Nullable String authenticatingRealm) - Parameters:
redirectUrl- The URI where the OP redirected the browser after the authentication event at the OP. This is passed as is from the facilitator entity (i.e. Kibana), so it is URL Encoded. It contains either the code or the id_token itself depending on the flow usedstate- The state value that we generated or the facilitator provided for this specific flow and should be stored at the user's session with the facilitator.nonce- The nonce value that we generated or the facilitator provided for this specific flow and should be stored at the user's session with the facilitator.authenticatingRealm- The realm that should authenticate this OpenId Connect Authentication Response
-
-
Method Details
-
principal
- Specified by:
principalin interfaceAuthenticationToken
-
credentials
- Specified by:
credentialsin interfaceAuthenticationToken
-
clearCredentials
public void clearCredentials()- Specified by:
clearCredentialsin interfaceAuthenticationToken
-
getState
public com.nimbusds.oauth2.sdk.id.State getState() -
getNonce
public com.nimbusds.openid.connect.sdk.Nonce getNonce() -
getRedirectUrl
-
getAuthenticatingRealm
-
toString
-