Skip to content

Latest commit

 

History

History
76 lines (51 loc) · 3.32 KB

File metadata and controls

76 lines (51 loc) · 3.32 KB

IdcsMtRoleMapperRxProvider (security.providers.idcs.mapper) Configuration

Multitenant IDCS role mapping provider

Config key
idcs-role-mapper

This type provides the following service implementations:

  • io.helidon.security.spi.SecurityProvider

  • io.helidon.security.spi.SubjectMappingProvider

Configuration options

Table 1. Optional configuration options
key type default value description

cache-config

 

Use explicit io.helidon.security.providers.common.EvictableCache for role caching.

default-idcs-subject-type

string

user

Configure subject type to use when requesting roles from IDCS. Can be either #IDCS_SUBJECT_TYPE_USER or #IDCS_SUBJECT_TYPE_CLIENT. Defaults to #IDCS_SUBJECT_TYPE_USER.

idcs-app-name-handler

 

Configure token handler for IDCS Application name. By default the header IdcsMtRoleMapperRxProvider#IDCS_APP_HEADER is used.

idcs-tenant-handler

 

Configure token handler for IDCS Tenant ID. By default the header IdcsMtRoleMapperRxProvider#IDCS_TENANT_HEADER is used.

oidc-config

 

Use explicit io.helidon.security.providers.oidc.common.OidcConfig instance, e.g. when using it also for OIDC provider.

subject-types

SubjectType[] (USER, SERVICE)

USER

Add a supported subject type. If none added, io.helidon.security.SubjectType#USER is used. If any added, only the ones added will be used (e.g. if you want to use both io.helidon.security.SubjectType#USER and io.helidon.security.SubjectType#SERVICE, both need to be added.