io.trino.server.security.jwt.JwtAuthenticatorConfig Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of trino-main Show documentation
Trino - Engine
There is a newer version: 465
/*
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package io.trino.server.security.jwt;

import io.airlift.configuration.Config;
import io.airlift.configuration.LegacyConfig;
import io.airlift.configuration.validation.FileExists;
import jakarta.validation.constraints.NotNull;

import java.io.File;
import java.util.Optional;

public class JwtAuthenticatorConfig
{
    private String keyFile;
    private String requiredIssuer;
    private String requiredAudience;
    private String principalField = "sub";
    private Optional userMappingPattern = Optional.empty();
    private Optional userMappingFile = Optional.empty();

    @NotNull
    public String getKeyFile()
    {
        return keyFile;
    }

    @Config("http-server.authentication.jwt.key-file")
    @LegacyConfig("http.authentication.jwt.key-file")
    public JwtAuthenticatorConfig setKeyFile(String keyFile)
    {
        this.keyFile = keyFile;
        return this;
    }

    public String getRequiredIssuer()
    {
        return requiredIssuer;
    }

    @Config("http-server.authentication.jwt.required-issuer")
    @LegacyConfig("http.authentication.jwt.required-issuer")
    public JwtAuthenticatorConfig setRequiredIssuer(String requiredIssuer)
    {
        this.requiredIssuer = requiredIssuer;
        return this;
    }

    public String getRequiredAudience()
    {
        return requiredAudience;
    }

    @Config("http-server.authentication.jwt.required-audience")
    @LegacyConfig("http.authentication.jwt.required-audience")
    public JwtAuthenticatorConfig setRequiredAudience(String requiredAudience)
    {
        this.requiredAudience = requiredAudience;
        return this;
    }

    @NotNull
    public String getPrincipalField()
    {
        return principalField;
    }

    @Config("http-server.authentication.jwt.principal-field")
    public JwtAuthenticatorConfig setPrincipalField(String principalField)
    {
        this.principalField = principalField;
        return this;
    }

    public Optional getUserMappingPattern()
    {
        return userMappingPattern;
    }

    @Config("http-server.authentication.jwt.user-mapping.pattern")
    public JwtAuthenticatorConfig setUserMappingPattern(String userMappingPattern)
    {
        this.userMappingPattern = Optional.ofNullable(userMappingPattern);
        return this;
    }

    public Optional<@FileExists File> getUserMappingFile()
    {
        return userMappingFile;
    }

    @Config("http-server.authentication.jwt.user-mapping.file")
    public JwtAuthenticatorConfig setUserMappingFile(File userMappingFile)
    {
        this.userMappingFile = Optional.ofNullable(userMappingFile);
        return this;
    }
}