@Generated(value="com.amazonaws:aws-java-sdk-code-generator") public class AuthenticateOidcActionConfig extends Object implements Serializable, Cloneable
Request parameters when using an identity provider (IdP) that is compliant with OpenID Connect (OIDC) to authenticate users.
Constructor and Description |
---|
AuthenticateOidcActionConfig() |
Modifier and Type | Method and Description |
---|---|
AuthenticateOidcActionConfig |
addAuthenticationRequestExtraParamsEntry(String key,
String value)
Add a single AuthenticationRequestExtraParams entry
|
AuthenticateOidcActionConfig |
clearAuthenticationRequestExtraParamsEntries()
Removes all the entries added into AuthenticationRequestExtraParams.
|
AuthenticateOidcActionConfig |
clone() |
boolean |
equals(Object obj) |
Map<String,String> |
getAuthenticationRequestExtraParams()
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
|
String |
getAuthorizationEndpoint()
The authorization endpoint of the IdP.
|
String |
getClientId()
The OAuth 2.0 client identifier.
|
String |
getClientSecret()
The OAuth 2.0 client secret.
|
String |
getIssuer()
The OIDC issuer identifier of the IdP.
|
String |
getOnUnauthenticatedRequest()
The behavior if the user is not authenticated.
|
String |
getScope()
The set of user claims to be requested from the IdP.
|
String |
getSessionCookieName()
The name of the cookie used to maintain session information.
|
Long |
getSessionTimeout()
The maximum duration of the authentication session, in seconds.
|
String |
getTokenEndpoint()
The token endpoint of the IdP.
|
Boolean |
getUseExistingClientSecret()
Indicates whether to use the existing client secret when modifying a rule.
|
String |
getUserInfoEndpoint()
The user info endpoint of the IdP.
|
int |
hashCode() |
Boolean |
isUseExistingClientSecret()
Indicates whether to use the existing client secret when modifying a rule.
|
void |
setAuthenticationRequestExtraParams(Map<String,String> authenticationRequestExtraParams)
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
|
void |
setAuthorizationEndpoint(String authorizationEndpoint)
The authorization endpoint of the IdP.
|
void |
setClientId(String clientId)
The OAuth 2.0 client identifier.
|
void |
setClientSecret(String clientSecret)
The OAuth 2.0 client secret.
|
void |
setIssuer(String issuer)
The OIDC issuer identifier of the IdP.
|
void |
setOnUnauthenticatedRequest(String onUnauthenticatedRequest)
The behavior if the user is not authenticated.
|
void |
setScope(String scope)
The set of user claims to be requested from the IdP.
|
void |
setSessionCookieName(String sessionCookieName)
The name of the cookie used to maintain session information.
|
void |
setSessionTimeout(Long sessionTimeout)
The maximum duration of the authentication session, in seconds.
|
void |
setTokenEndpoint(String tokenEndpoint)
The token endpoint of the IdP.
|
void |
setUseExistingClientSecret(Boolean useExistingClientSecret)
Indicates whether to use the existing client secret when modifying a rule.
|
void |
setUserInfoEndpoint(String userInfoEndpoint)
The user info endpoint of the IdP.
|
String |
toString()
Returns a string representation of this object.
|
AuthenticateOidcActionConfig |
withAuthenticationRequestExtraParams(Map<String,String> authenticationRequestExtraParams)
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
|
AuthenticateOidcActionConfig |
withAuthorizationEndpoint(String authorizationEndpoint)
The authorization endpoint of the IdP.
|
AuthenticateOidcActionConfig |
withClientId(String clientId)
The OAuth 2.0 client identifier.
|
AuthenticateOidcActionConfig |
withClientSecret(String clientSecret)
The OAuth 2.0 client secret.
|
AuthenticateOidcActionConfig |
withIssuer(String issuer)
The OIDC issuer identifier of the IdP.
|
AuthenticateOidcActionConfig |
withOnUnauthenticatedRequest(AuthenticateOidcActionConditionalBehaviorEnum onUnauthenticatedRequest)
The behavior if the user is not authenticated.
|
AuthenticateOidcActionConfig |
withOnUnauthenticatedRequest(String onUnauthenticatedRequest)
The behavior if the user is not authenticated.
|
AuthenticateOidcActionConfig |
withScope(String scope)
The set of user claims to be requested from the IdP.
|
AuthenticateOidcActionConfig |
withSessionCookieName(String sessionCookieName)
The name of the cookie used to maintain session information.
|
AuthenticateOidcActionConfig |
withSessionTimeout(Long sessionTimeout)
The maximum duration of the authentication session, in seconds.
|
AuthenticateOidcActionConfig |
withTokenEndpoint(String tokenEndpoint)
The token endpoint of the IdP.
|
AuthenticateOidcActionConfig |
withUseExistingClientSecret(Boolean useExistingClientSecret)
Indicates whether to use the existing client secret when modifying a rule.
|
AuthenticateOidcActionConfig |
withUserInfoEndpoint(String userInfoEndpoint)
The user info endpoint of the IdP.
|
public void setIssuer(String issuer)
The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
issuer
- The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain,
and the path.public String getIssuer()
The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
public AuthenticateOidcActionConfig withIssuer(String issuer)
The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
issuer
- The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain,
and the path.public void setAuthorizationEndpoint(String authorizationEndpoint)
The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
authorizationEndpoint
- The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain,
and the path.public String getAuthorizationEndpoint()
The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
public AuthenticateOidcActionConfig withAuthorizationEndpoint(String authorizationEndpoint)
The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
authorizationEndpoint
- The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain,
and the path.public void setTokenEndpoint(String tokenEndpoint)
The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
tokenEndpoint
- The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the
path.public String getTokenEndpoint()
The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
public AuthenticateOidcActionConfig withTokenEndpoint(String tokenEndpoint)
The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
tokenEndpoint
- The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the
path.public void setUserInfoEndpoint(String userInfoEndpoint)
The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
userInfoEndpoint
- The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and
the path.public String getUserInfoEndpoint()
The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
public AuthenticateOidcActionConfig withUserInfoEndpoint(String userInfoEndpoint)
The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path.
userInfoEndpoint
- The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and
the path.public void setClientId(String clientId)
The OAuth 2.0 client identifier.
clientId
- The OAuth 2.0 client identifier.public String getClientId()
The OAuth 2.0 client identifier.
public AuthenticateOidcActionConfig withClientId(String clientId)
The OAuth 2.0 client identifier.
clientId
- The OAuth 2.0 client identifier.public void setClientSecret(String clientSecret)
The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a rule,
you can omit this parameter if you set UseExistingClientSecret
to true.
clientSecret
- The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a
rule, you can omit this parameter if you set UseExistingClientSecret
to true.public String getClientSecret()
The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a rule,
you can omit this parameter if you set UseExistingClientSecret
to true.
UseExistingClientSecret
to true.public AuthenticateOidcActionConfig withClientSecret(String clientSecret)
The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a rule,
you can omit this parameter if you set UseExistingClientSecret
to true.
clientSecret
- The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a
rule, you can omit this parameter if you set UseExistingClientSecret
to true.public void setSessionCookieName(String sessionCookieName)
The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie.
sessionCookieName
- The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie.public String getSessionCookieName()
The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie.
public AuthenticateOidcActionConfig withSessionCookieName(String sessionCookieName)
The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie.
sessionCookieName
- The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie.public void setScope(String scope)
The set of user claims to be requested from the IdP. The default is openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
scope
- The set of user claims to be requested from the IdP. The default is openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
public String getScope()
The set of user claims to be requested from the IdP. The default is openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
public AuthenticateOidcActionConfig withScope(String scope)
The set of user claims to be requested from the IdP. The default is openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
scope
- The set of user claims to be requested from the IdP. The default is openid
.
To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP.
public void setSessionTimeout(Long sessionTimeout)
The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days).
sessionTimeout
- The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days).public Long getSessionTimeout()
The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days).
public AuthenticateOidcActionConfig withSessionTimeout(Long sessionTimeout)
The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days).
sessionTimeout
- The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days).public Map<String,String> getAuthenticationRequestExtraParams()
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
public void setAuthenticationRequestExtraParams(Map<String,String> authenticationRequestExtraParams)
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
authenticationRequestExtraParams
- The query parameters (up to 10) to include in the redirect request to the authorization endpoint.public AuthenticateOidcActionConfig withAuthenticationRequestExtraParams(Map<String,String> authenticationRequestExtraParams)
The query parameters (up to 10) to include in the redirect request to the authorization endpoint.
authenticationRequestExtraParams
- The query parameters (up to 10) to include in the redirect request to the authorization endpoint.public AuthenticateOidcActionConfig addAuthenticationRequestExtraParamsEntry(String key, String value)
public AuthenticateOidcActionConfig clearAuthenticationRequestExtraParamsEntries()
public void setOnUnauthenticatedRequest(String onUnauthenticatedRequest)
The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
onUnauthenticatedRequest
- The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
AuthenticateOidcActionConditionalBehaviorEnum
public String getOnUnauthenticatedRequest()
The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
AuthenticateOidcActionConditionalBehaviorEnum
public AuthenticateOidcActionConfig withOnUnauthenticatedRequest(String onUnauthenticatedRequest)
The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
onUnauthenticatedRequest
- The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
AuthenticateOidcActionConditionalBehaviorEnum
public AuthenticateOidcActionConfig withOnUnauthenticatedRequest(AuthenticateOidcActionConditionalBehaviorEnum onUnauthenticatedRequest)
The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
onUnauthenticatedRequest
- The behavior if the user is not authenticated. The following are possible values:
deny - Return an HTTP 401 Unauthorized error.
allow - Allow the request to be forwarded to the target.
authenticate - Redirect the request to the IdP authorization endpoint. This is the default value.
AuthenticateOidcActionConditionalBehaviorEnum
public void setUseExistingClientSecret(Boolean useExistingClientSecret)
Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you can omit this parameter or set it to false.
useExistingClientSecret
- Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you
can omit this parameter or set it to false.public Boolean getUseExistingClientSecret()
Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you can omit this parameter or set it to false.
public AuthenticateOidcActionConfig withUseExistingClientSecret(Boolean useExistingClientSecret)
Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you can omit this parameter or set it to false.
useExistingClientSecret
- Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you
can omit this parameter or set it to false.public Boolean isUseExistingClientSecret()
Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you can omit this parameter or set it to false.
public String toString()
toString
in class Object
Object.toString()
public AuthenticateOidcActionConfig clone()