Uses of Interface
com.yahoo.vespa.athenz.api.AthenzIdentity
Packages that use AthenzIdentity
Package
Description
-
Uses of AthenzIdentity in com.yahoo.vespa.athenz.api
Classes in com.yahoo.vespa.athenz.api that implement AthenzIdentityMethods in com.yahoo.vespa.athenz.api that return AthenzIdentityModifier and TypeMethodDescriptionAthenzAccessToken.getAthenzIdentity()
AthenzPrincipal.getIdentity()
ZToken.getIdentity()
Methods in com.yahoo.vespa.athenz.api with parameters of type AthenzIdentityModifier and TypeMethodDescriptionstatic AwsRole
AwsRole.from
(AthenzIdentity identity) NTokenGenerator.setIdentity
(AthenzIdentity identity) Required.Constructors in com.yahoo.vespa.athenz.api with parameters of type AthenzIdentityModifierConstructorDescriptionAthenzPrincipal
(AthenzIdentity athenzIdentity) AthenzPrincipal
(AthenzIdentity athenzIdentity, NToken nToken) AthenzPrincipal
(AthenzIdentity identity, List<AthenzRole> roles) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.client.zms
Methods in com.yahoo.vespa.athenz.client.zms that return types with arguments of type AthenzIdentityModifier and TypeMethodDescriptionDefaultZmsClient.listMembers
(AthenzRole athenzRole) ZmsClient.listMembers
(AthenzRole athenzRole) DefaultZmsClient.listPendingRoleApprovals
(AthenzRole athenzRole) ZmsClient.listPendingRoleApprovals
(AthenzRole athenzRole) Methods in com.yahoo.vespa.athenz.client.zms with parameters of type AthenzIdentityModifier and TypeMethodDescriptionvoid
DefaultZmsClient.addRoleMember
(AthenzRole role, AthenzIdentity member, Optional<String> reason) void
ZmsClient.addRoleMember
(AthenzRole role, AthenzIdentity member, Optional<String> reason) void
DefaultZmsClient.createProviderResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity providerService, String resourceGroup, Set<RoleAction> roleActions, OAuthCredentials oAuthCredentials) void
ZmsClient.createProviderResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity providerService, String resourceGroup, Set<RoleAction> roleActions, OAuthCredentials oAuthCredentials) void
DefaultZmsClient.createTenancy
(AthenzDomain tenantDomain, AthenzIdentity providerService, OAuthCredentials oAuthCredentials) void
ZmsClient.createTenancy
(AthenzDomain tenantDomain, AthenzIdentity providerService, OAuthCredentials oAuthCredentials) void
DefaultZmsClient.createTenantResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity provider, String resourceGroup, Set<RoleAction> roleActions) void
ZmsClient.createTenantResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity provider, String resourceGroup, Set<RoleAction> roleActions) For manual tenancy provisioning - only creates roles/policies on provider domainvoid
DefaultZmsClient.decidePendingRoleMembership
(AthenzRole athenzRole, AthenzIdentity athenzIdentity, Instant expiry, Optional<String> reason, Optional<OAuthCredentials> oAuthCredentials, boolean approve) void
ZmsClient.decidePendingRoleMembership
(AthenzRole athenzRole, AthenzIdentity athenzIdentity, Instant expiry, Optional<String> reason, Optional<OAuthCredentials> oAuthCredentials, boolean approve) void
DefaultZmsClient.deleteProviderResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity providerService, String resourceGroup, OAuthCredentials oAuthCredentials) void
ZmsClient.deleteProviderResourceGroup
(AthenzDomain tenantDomain, AthenzIdentity providerService, String resourceGroup, OAuthCredentials oAuthCredentials) void
DefaultZmsClient.deleteRoleMember
(AthenzRole role, AthenzIdentity member) void
ZmsClient.deleteRoleMember
(AthenzRole role, AthenzIdentity member) void
DefaultZmsClient.deleteTenancy
(AthenzDomain tenantDomain, AthenzIdentity providerService, OAuthCredentials oAuthCredentials) void
ZmsClient.deleteTenancy
(AthenzDomain tenantDomain, AthenzIdentity providerService, OAuthCredentials oAuthCredentials) boolean
DefaultZmsClient.getGroupMembership
(AthenzGroup group, AthenzIdentity identity) boolean
ZmsClient.getGroupMembership
(AthenzGroup group, AthenzIdentity identity) boolean
DefaultZmsClient.getMembership
(AthenzRole role, AthenzIdentity identity) boolean
ZmsClient.getMembership
(AthenzRole role, AthenzIdentity identity) DefaultZmsClient.getTenantResourceGroups
(AthenzDomain tenantDomain, AthenzIdentity provider, String resourceGroup) ZmsClient.getTenantResourceGroups
(AthenzDomain tenantDomain, AthenzIdentity provider, String resourceGroup) boolean
DefaultZmsClient.hasAccess
(AthenzResourceName resource, String action, AthenzIdentity identity) boolean
ZmsClient.hasAccess
(AthenzResourceName resource, String action, AthenzIdentity identity) Constructors in com.yahoo.vespa.athenz.client.zms with parameters of type AthenzIdentityModifierConstructorDescriptionDefaultZmsClient
(URI zmsUrl, AthenzIdentity identity, SSLContext sslContext, ErrorHandler errorHandler) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.client.zms.bindings
Constructors in com.yahoo.vespa.athenz.client.zms.bindings with parameters of type AthenzIdentityModifierConstructorDescriptionResourceGroupRolesEntity
(AthenzIdentity providerService, AthenzDomain tenantDomain, Set<RoleAction> rolesActions, String resourceGroup) TenancyRequestEntity
(AthenzDomain tenantDomain, AthenzIdentity providerService, List<String> resourceGroups) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.client.zts
Methods in com.yahoo.vespa.athenz.client.zts with parameters of type AthenzIdentityModifier and TypeMethodDescriptionDefaultZtsClient.getServiceIdentity
(AthenzIdentity identity, String keyId, com.yahoo.security.Pkcs10Csr csr) DefaultZtsClient.getServiceIdentity
(AthenzIdentity identity, String keyId, com.yahoo.security.Pkcs10Csr csr, Optional<NToken> nToken) DefaultZtsClient.getServiceIdentity
(AthenzIdentity identity, String keyId, KeyPair keyPair, String dnsSuffix) ZtsClient.getServiceIdentity
(AthenzIdentity identity, String keyId, com.yahoo.security.Pkcs10Csr csr) Get service identityZtsClient.getServiceIdentity
(AthenzIdentity identity, String keyId, KeyPair keyPair, String dnsSuffix) Get service identityDefaultZtsClient.getTenantDomains
(AthenzIdentity providerIdentity, AthenzIdentity userIdentity, String roleName) ZtsClient.getTenantDomains
(AthenzIdentity providerIdentity, AthenzIdentity userIdentity, String roleName) For a given provider, get a list of tenant domains that the user is a member ofboolean
DefaultZtsClient.hasAccess
(AthenzResourceName resource, String action, AthenzIdentity identity) boolean
ZtsClient.hasAccess
(AthenzResourceName resource, String action, AthenzIdentity identity) Check access to resource for a given principalDefaultZtsClient.refreshInstance
(AthenzIdentity providerIdentity, AthenzIdentity instanceIdentity, String instanceId, com.yahoo.security.Pkcs10Csr csr) ZtsClient.refreshInstance
(AthenzIdentity providerIdentity, AthenzIdentity instanceIdentity, String instanceId, com.yahoo.security.Pkcs10Csr csr) Refresh an existing instanceDefaultZtsClient.registerInstance
(AthenzIdentity providerIdentity, AthenzIdentity instanceIdentity, String attestationData, com.yahoo.security.Pkcs10Csr csr) ZtsClient.registerInstance
(AthenzIdentity providerIdentity, AthenzIdentity instanceIdentity, String attestationData, com.yahoo.security.Pkcs10Csr csr) Register an instance using the specified provider.Method parameters in com.yahoo.vespa.athenz.client.zts with type arguments of type AthenzIdentityModifier and TypeMethodDescriptionDefaultZtsClient.getAccessToken
(AthenzDomain domain, List<AthenzIdentity> proxyPrincipals) ZtsClient.getAccessToken
(AthenzDomain domain, List<AthenzIdentity> proxyPrincipals) Fetch an access token for the target domain -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.client.zts.bindings
Constructors in com.yahoo.vespa.athenz.client.zts.bindings with parameters of type AthenzIdentityModifierConstructorDescriptionInstanceRegisterInformation
(AthenzIdentity providerIdentity, AthenzIdentity instanceIdentity, String attestationData, com.yahoo.security.Pkcs10Csr csr) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.client.zts.utils
Methods in com.yahoo.vespa.athenz.client.zts.utils with parameters of type AthenzIdentityModifier and TypeMethodDescriptioncom.yahoo.security.Pkcs10Csr
RoleCsrGenerator.generateCsr
(AthenzIdentity identity, AthenzRole role, KeyPair keyPair) com.yahoo.security.Pkcs10Csr
IdentityCsrGenerator.generateIdentityCsr
(AthenzIdentity identity, KeyPair keypair) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.identity
Methods in com.yahoo.vespa.athenz.identity that return AthenzIdentityModifier and TypeMethodDescriptionServiceIdentityProvider.identity()
SiaIdentityProvider.identity()
Constructors in com.yahoo.vespa.athenz.identity with parameters of type AthenzIdentityModifierConstructorDescriptionSiaIdentityProvider
(AthenzIdentity service, Path siaPath, Path clientTruststoreFile) SiaIdentityProvider
(AthenzIdentity service, Path privateKeyFile, Path certificateFile, Path clientTruststoreFile) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.identityprovider.api
Methods in com.yahoo.vespa.athenz.identityprovider.api that return AthenzIdentityModifier and TypeMethodDescriptionSignedIdentityDocument.serviceIdentity()
Returns the value of theserviceIdentity
record component.Methods in com.yahoo.vespa.athenz.identityprovider.api with parameters of type AthenzIdentityModifier and TypeMethodDescriptionSignedIdentityDocument.withServiceIdentity
(AthenzIdentity identity) Constructors in com.yahoo.vespa.athenz.identityprovider.api with parameters of type AthenzIdentityModifierConstructorDescriptionSignedIdentityDocument
(String signature, int signingKeyVersion, VespaUniqueInstanceId providerUniqueId, AthenzService providerService, int documentVersion, String configServerHostname, String instanceHostname, Instant createdAt, Set<String> ipAddresses, IdentityType identityType, ClusterType clusterType, String ztsUrl, AthenzIdentity serviceIdentity) SignedIdentityDocument
(String signature, int signingKeyVersion, VespaUniqueInstanceId providerUniqueId, AthenzService providerService, int documentVersion, String configServerHostname, String instanceHostname, Instant createdAt, Set<String> ipAddresses, IdentityType identityType, ClusterType clusterType, String ztsUrl, AthenzIdentity serviceIdentity, Map<String, Object> unknownAttributes) Creates an instance of aSignedIdentityDocument
record class. -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.identityprovider.client
Methods in com.yahoo.vespa.athenz.identityprovider.client with parameters of type AthenzIdentityModifier and TypeMethodDescriptioncom.yahoo.security.Pkcs10Csr
CsrGenerator.generateInstanceCsr
(AthenzIdentity instanceIdentity, VespaUniqueInstanceId instanceId, Set<String> ipAddresses, ClusterType clusterType, KeyPair keyPair) com.yahoo.security.Pkcs10Csr
CsrGenerator.generateRoleCsr
(AthenzIdentity identity, AthenzRole role, VespaUniqueInstanceId instanceId, ClusterType clusterType, KeyPair keyPair) IdentityDocumentSigner.generateSignature
(VespaUniqueInstanceId providerUniqueId, AthenzService providerService, String configServerHostname, String instanceHostname, Instant createdAt, Set<String> ipAddresses, IdentityType identityType, PrivateKey privateKey, AthenzIdentity serviceIdentity) -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.tls
Methods in com.yahoo.vespa.athenz.tls that return AthenzIdentityModifier and TypeMethodDescriptionstatic AthenzIdentity
AthenzX509CertificateUtils.getIdentityFromRoleCertificate
(X509Certificate certificate) Methods in com.yahoo.vespa.athenz.tls with parameters of type AthenzIdentityModifier and TypeMethodDescriptionboolean
AthenzIdentityVerifier.isTrusted
(AthenzIdentity identity) Constructor parameters in com.yahoo.vespa.athenz.tls with type arguments of type AthenzIdentity -
Uses of AthenzIdentity in com.yahoo.vespa.athenz.utils
Methods in com.yahoo.vespa.athenz.utils that return AthenzIdentityModifier and TypeMethodDescriptionstatic AthenzIdentity
AthenzIdentities.from
(AthenzDomain domain, String identityName) static AthenzIdentity
static AthenzIdentity
AthenzIdentities.from
(X509Certificate certificate) Methods in com.yahoo.vespa.athenz.utils that return types with arguments of type AthenzIdentityModifier and TypeMethodDescriptionstatic List<AthenzIdentity>
SiaUtils.findSiaServices()
static List<AthenzIdentity>
SiaUtils.findSiaServices
(Path root) Methods in com.yahoo.vespa.athenz.utils with parameters of type AthenzIdentityModifier and TypeMethodDescriptionstatic Path
SiaUtils.getCertificateFile
(AthenzIdentity service) static Path
SiaUtils.getCertificateFile
(Path root, AthenzIdentity service) static Path
SiaUtils.getPrivateKeyFile
(AthenzIdentity service) static Path
SiaUtils.getPrivateKeyFile
(Path root, AthenzIdentity service) static Optional<X509Certificate>
SiaUtils.readCertificateFile
(AthenzIdentity service) static Optional<X509Certificate>
SiaUtils.readCertificateFile
(Path root, AthenzIdentity service) static Optional<PrivateKey>
SiaUtils.readPrivateKeyFile
(AthenzIdentity service) static Optional<PrivateKey>
SiaUtils.readPrivateKeyFile
(Path root, AthenzIdentity service) static void
SiaUtils.writeCertificateFile
(AthenzIdentity service, X509Certificate certificate) static void
SiaUtils.writeCertificateFile
(Path root, AthenzIdentity service, X509Certificate certificate) static void
SiaUtils.writePrivateKeyFile
(AthenzIdentity service, PrivateKey privateKey) static void
SiaUtils.writePrivateKeyFile
(Path root, AthenzIdentity service, PrivateKey privateKey)