@Generated(value="jsii-pacmak/1.67.0 (build 2c027f5)", date="2022-09-19T20:26:39.062Z") @Stability(value=Stable) public interface AuthenticateOidcOptions extends software.amazon.jsii.JsiiSerializable
Example:
ApplicationListener listener;
ApplicationTargetGroup myTargetGroup;
listener.addAction("DefaultAction", AddApplicationActionProps.builder()
.action(ListenerAction.authenticateOidc(AuthenticateOidcOptions.builder()
.authorizationEndpoint("https://example.com/openid")
// Other OIDC properties here
.clientId("...")
.clientSecret(SecretValue.secretsManager("..."))
.issuer("...")
.tokenEndpoint("...")
.userInfoEndpoint("...")
// Next
.next(ListenerAction.forward(List.of(myTargetGroup)))
.build()))
.build());
| Modifier and Type | Interface and Description |
|---|---|
static class |
AuthenticateOidcOptions.Builder
A builder for
AuthenticateOidcOptions |
static class |
AuthenticateOidcOptions.Jsii$Proxy
An implementation for
AuthenticateOidcOptions |
| Modifier and Type | Method and Description |
|---|---|
static AuthenticateOidcOptions.Builder |
builder() |
default Map<String,String> |
getAuthenticationRequestExtraParams()
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
|
String |
getAuthorizationEndpoint()
The authorization endpoint of the IdP.
|
String |
getClientId()
The OAuth 2.0 client identifier.
|
SecretValue |
getClientSecret()
The OAuth 2.0 client secret.
|
String |
getIssuer()
The OIDC issuer identifier of the IdP.
|
ListenerAction |
getNext()
What action to execute next.
|
default UnauthenticatedAction |
getOnUnauthenticatedRequest()
The behavior if the user is not authenticated.
|
default String |
getScope()
The set of user claims to be requested from the IdP.
|
default String |
getSessionCookieName()
The name of the cookie used to maintain session information.
|
default Duration |
getSessionTimeout()
The maximum duration of the authentication session.
|
String |
getTokenEndpoint()
The token endpoint of the IdP.
|
String |
getUserInfoEndpoint()
The user info endpoint of the IdP.
|
@Stability(value=Stable) @NotNull String getAuthorizationEndpoint()
This must be a full URL, including the HTTPS protocol, the domain, and the path.
@Stability(value=Stable) @NotNull String getClientId()
@Stability(value=Stable) @NotNull SecretValue getClientSecret()
@Stability(value=Stable) @NotNull String getIssuer()
This must be a full URL, including the HTTPS protocol, the domain, and the path.
@Stability(value=Stable) @NotNull ListenerAction getNext()
@Stability(value=Stable) @NotNull String getTokenEndpoint()
This must be a full URL, including the HTTPS protocol, the domain, and the path.
@Stability(value=Stable) @NotNull String getUserInfoEndpoint()
This must be a full URL, including the HTTPS protocol, the domain, and the path.
@Stability(value=Stable) @Nullable default Map<String,String> getAuthenticationRequestExtraParams()
Default: - No extra parameters
@Stability(value=Stable) @Nullable default UnauthenticatedAction getOnUnauthenticatedRequest()
Default: UnauthenticatedAction.AUTHENTICATE
@Stability(value=Stable) @Nullable default String getScope()
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
Default: "openid"
@Stability(value=Stable) @Nullable default String getSessionCookieName()
Default: "AWSELBAuthSessionCookie"
@Stability(value=Stable) @Nullable default Duration getSessionTimeout()
Default: Duration.days(7)
@Stability(value=Stable) static AuthenticateOidcOptions.Builder builder()
AuthenticateOidcOptions.Builder of AuthenticateOidcOptionsCopyright © 2022. All rights reserved.