io.quarkus.oidc.OidcTenantConfig$TokenStateManager.jdp Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of quarkus-oidc Show documentation

Secure your applications with OpenID Connect Adapter and IDP such as Keycloak

There is a newer version: 3.17.5

# #Wed Nov 08 11:42:05 CET 2023 io.quarkus.oidc.OidcTenantConfig.TokenStateManager.ID_TOKEN=Keep ID token only io.quarkus.oidc.OidcTenantConfig.TokenStateManager.splitTokens=Default TokenStateManager keeps all tokens (ID, access and refresh)\nreturned in the authorization code grant response in a single session cookie by default.\n\nEnable this property to minimize a session cookie size io.quarkus.oidc.OidcTenantConfig.TokenStateManager.KEEP_ALL_TOKENS=Keep ID, access and refresh tokens. io.quarkus.oidc.OidcTenantConfig.TokenStateManager.encryptionRequired=Mandates that the Default TokenStateManager will encrypt the session cookie that stores the tokens. io.quarkus.oidc.OidcTenantConfig.TokenStateManager.strategy=Default TokenStateManager strategy. io.quarkus.oidc.OidcTenantConfig.TokenStateManager.encryptionSecret=Secret which will be used by the Default TokenStateManager to encrypt the session cookie\nstoring the tokens when {@link \#encryptionRequired} property is enabled.\n\nIf this secret is not set, the client secret configured with\neither `quarkus.oidc.credentials.secret` or `quarkus.oidc.credentials.client-secret.value` will be checked.\nFinally, `quarkus.oidc.credentials.jwt.secret` which can be used for `client_jwt_secret` authentication will be\nchecked.\nThe secret will be auto-generated if it remains uninitialized after checking all of these properties.\n

\nThe length of the secret which will be used to encrypt the tokens should be at least 32 characters long.\nWarning will be logged if the secret length is less than 16 characters. io.quarkus.oidc.OidcTenantConfig.TokenStateManager.ID_REFRESH_TOKENS=Keep ID and refresh tokens only