Package org.keycloak.vault
package org.keycloak.vault
-
ClassDescriptionAbstract class that is meant to be extended by implementations of
VaultProviderthat want to have support for key resolvers.Abstract class that is meant to be extended by implementations ofVaultProviderFactorythat want to offer support for the configuration of key resolvers.Enum containing the availableVaultKeyResolvers.DefaultVaultCharSecretimplementation based onCharBuffer.Default raw secret implementation forbyte[].DefaultVaultCharSecretimplementation based onString.DefaultVaultTranscriberimplementation that uses the configuredVaultProviderto obtain raw secrets and convert them into other types.A text-based vault provider, which stores each secret in a separate file.Creates and configuresFilesPlainTextVaultProvider.ACharBufferbased representation of the secret obtained from the vault that supports automated cleanup of memory.This exception is thrown when the factory fails to init due to a configuration error.VaultKeyResolveris aBiFunctionwhose implementation of theBiFunction.apply(Object, Object)method takes twoStrings representing the realm name and the key name (as used in${vault.key}expressions) and returns anotherStringrepresenting the final constructed key that is to be used when obtaining secrets from the vault.Thrown when a vault directory doesn't exist.Provider interface for a vault.Raw representation of the secret obtained from vault that supports automated cleanup of memory.SPI for a low-level vault access.AStringbased representation of the secret obtained from the vault that supports automated cleanup of memory.A facade to the configured vault provider that exposes utility methods for obtaining the vault secrets in different formats (such asVaultRawSecret,VaultCharSecretorVaultStringSecret).