| Package | Description |
|---|---|
| org.forgerock.openam.secrets |
The AM supporting classes for centrally configuring secrets.
|
| org.forgerock.secrets |
Provides a unified API for accessing secrets of various kinds.
|
| org.forgerock.secrets.jwkset |
Secret store backend for retrieving keys from a local or remote JWK Set.
|
| org.forgerock.secrets.keys |
Contains cryptographic key related API objects.
|
| org.forgerock.secrets.keystore |
Implementations of
SecretStore for accessing keys stored in Java KeyStores, such as
PKCS#11 Hardware Security Modules (HSMs) and PKCS#12 file-based encrypted key stores. |
| org.forgerock.secrets.propertyresolver |
Provides a
SecretStore implementation that loads secrets from a Common Configuration
PropertyResolver and then decodes it with a
SecretPropertyFormat. |
| Modifier and Type | Method and Description |
|---|---|
static Key |
SecretsUtils.convertRawEncryptionKey(CryptoKey cryptoKey,
JweAlgorithm jweAlgorithm,
EncryptionMethod encryptionMethod)
Converts symmetric encryption key that was created using the RAW algorithm to a more suitable key, but
only if the key material is available.
|
| Modifier and Type | Method and Description |
|---|---|
<S extends T> |
ThreadPoolSecretStore.getActive(Purpose<S> purpose) |
<S extends T> |
SecretStore.getActive(Purpose<S> purpose)
Returns the active secret for the given purpose.
|
<S extends Secret> |
SecretsProvider.getActiveSecret(Purpose<S> purpose)
Gets the currently active secret for the given purpose.
|
Promise<T,NoSuchSecretException> |
SecretReference.getAsync()
Gets the current active secret object asynchronously, refreshing it if necessary.
|
<S extends T> |
ThreadPoolSecretStore.getNamed(Purpose<S> purpose,
String name) |
<S extends T> |
SecretStore.getNamed(Purpose<S> purpose,
String name)
Returns the named secret from this store.
|
<S extends Secret> |
SecretsProvider.getNamedSecret(Purpose<S> purpose,
String id)
Gets the secret for the given purpose with the given stable secret id.
|
| Modifier and Type | Method and Description |
|---|---|
<T extends Secret> |
SecretBuilder.build(Class<T> secretType)
Builds a secret of the given type.
|
T |
SecretReference.get()
Gets the current active secret object, refreshing it if necessary.
|
byte[] |
SecretBuilder.getRawData()
Returns the raw secret data, or null if the raw data is not available.
|
Key |
SecretBuilder.getSecretKey()
Returns the secret (or private) key associated with this secret, or null if not specified.
|
| Constructor and Description |
|---|
GenericSecret(SecretBuilder builder)
Constructs a generic secret with the given stable identifier and secret data.
|
| Modifier and Type | Method and Description |
|---|---|
<S extends CryptoKey> |
JwkSetSecretStore.getActive(Purpose<S> purpose) |
<S extends CryptoKey> |
JwkSetSecretStore.getNamed(Purpose<S> purpose,
String name) |
| Modifier and Type | Method and Description |
|---|---|
String |
KeyFormatPem.export(CryptoKey key,
Key rawKey) |
T |
KeyFormat.export(CryptoKey key,
Key rawKey)
Exports the given crypto key and raw key material.
|
<T> T |
CryptoKey.export(KeyFormat<T> format)
Exports the key material in the given format.
|
| Constructor and Description |
|---|
DataDecryptionKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
DataEncryptionKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
KeyAgreementKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
KeyDecryptionKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
KeyEncryptionKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
SigningKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
VerificationKey(SecretBuilder builder)
Initialises the key with the given secret data.
|
| Modifier and Type | Method and Description |
|---|---|
<S extends CryptoKey> |
KeyStoreSecretStore.getActive(Purpose<S> purpose) |
<S extends CryptoKey> |
KeyStoreSecretStore.getNamed(Purpose<S> purpose,
String id) |
| Modifier and Type | Method and Description |
|---|---|
Key |
KeyStoreSecretStore.KeyDetails.getSecretKey()
Get the
Key instance for the secret component of this key. |
| Modifier and Type | Method and Description |
|---|---|
default Promise<SecretBuilder,NoSuchSecretException> |
SecretPropertyFormat.decodeToPromise(String propertyValue)
Decodes the input property value, setting relevant properties on a
SecretBuilder object. |
<S extends Secret> |
PropertyResolverSecretStore.getActive(Purpose<S> purpose) |
<S extends Secret> |
PropertyResolverSecretStore.getNamed(Purpose<S> purpose,
String name) |
| Modifier and Type | Method and Description |
|---|---|
SecretBuilder |
SecretPropertyFormat.decode(String propertyValue)
Decodes the input property value, setting relevant properties on a
SecretBuilder object. |
SecretBuilder |
SecretKeyPropertyFormat.decode(String propertyValue) |
Copyright © 2010-2018, ForgeRock All Rights Reserved.