Index (nifi-web-security 2.4.0 API)

A B C D E F G H I J K L M N O P R S T U V W X
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form

A

ACCESS_TOKEN - Enum constant in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint
accessToken - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
accessToken - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.StandardOAuth2AuthenticationToken
AccessTokenDecoderFactory - Class in org.apache.nifi.web.security.oidc.authentication: Access Token Decoder Factory provides Token Validation based on expected Access Token claims instead of ID Token Claims
AccessTokenDecoderFactory(String, RestOperations) - Constructor for class org.apache.nifi.web.security.oidc.authentication.AccessTokenDecoderFactory: Standard constructor with optional JWS Algorithm and required REST Operations for retrieving JSON Web Keys
accessTokenResponseClient() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Access Token Response Client for retrieving Access Tokens using Authorization Codes
addCookie(URI, HttpServletResponse, ApplicationCookieName, String) - Method in interface org.apache.nifi.web.security.cookie.ApplicationCookieService: Generate cookie with specified value
addCookie(URI, HttpServletResponse, ApplicationCookieName, String) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService: Generate cookie with specified value
addSessionCookie(URI, HttpServletResponse, ApplicationCookieName, String) - Method in interface org.apache.nifi.web.security.cookie.ApplicationCookieService: Generate cookie with session-based expiration and specified value
addSessionCookie(URI, HttpServletResponse, ApplicationCookieName, String) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService: Generate cookie with session-based expiration and specified value as well as SameSite Strict property
algorithm - Variable in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
ANONYMOUS_CHAIN - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
ANONYMOUS_IDENTITY - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
anonymousAuthenticationFilter(AuthenticationManager) - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
anonymousAuthenticationProvider() - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
ApplicationCookieName - Enum Class in org.apache.nifi.web.security.cookie: Application Cookie Names
ApplicationCookieName(String, SameSitePolicy) - Constructor for enum class org.apache.nifi.web.security.cookie.ApplicationCookieName
applicationCookieService - Static variable in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository
applicationCookieService - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
applicationCookieService - Static variable in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository
applicationCookieService - Variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
applicationCookieService - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
applicationCookieService - Static variable in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository
applicationCookieService - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler
applicationCookieService - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
applicationCookieService - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository
applicationCookieService - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
applicationCookieService - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
ApplicationCookieService - Interface in org.apache.nifi.web.security.cookie: Application Cookie Service capable of generating and retrieving HTTP Cookies using standard properties
applicationJwtDecoder - Variable in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
attemptAuthentication(HttpServletRequest) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationFilter
attemptAuthentication(HttpServletRequest) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter: Attempt to extract an authentication attempt from the specified request.
attemptAuthentication(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
attributeName - Variable in class org.apache.nifi.web.security.saml2.web.authentication.identity.AttributeNameIdentityConverter
AttributeNameIdentityConverter - Class in org.apache.nifi.web.security.saml2.web.authentication.identity: Converter for customized User Identity using SAML Attribute Value
AttributeNameIdentityConverter(String) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.identity.AttributeNameIdentityConverter
AUDIENCE - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.3
authenticate(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
authenticate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.X509IdentityProvider: Authenticates the specified request by checking certificate validity.
authenticate(Authentication) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationProvider
authenticate(Authentication) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
AUTHENTICATE_HEADER - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
authenticationDetailsSource - Variable in class org.apache.nifi.web.security.NiFiAuthenticationFilter
authenticationDetailsSource() - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
authenticationEntryPoint() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Authentication Entry Point delegating to Bearer Token Entry Point for returning headers on authentication failures
authenticationManager - Variable in class org.apache.nifi.web.security.NiFiAuthenticationFilter
authenticationManager(List<AuthenticationProvider>) - Method in class org.apache.nifi.web.security.configuration.WebSecurityConfiguration: Spring Security Authentication Manager configured using Authentication Providers from specific configuration classes
AuthenticationResultConverter - Class in org.apache.nifi.web.security.oidc.client.web.converter: OAuth2 Authentication Result Converter returns an extended Authentication Token containing the OAuth2 Access Token
AuthenticationResultConverter() - Constructor for class org.apache.nifi.web.security.oidc.client.web.converter.AuthenticationResultConverter
AuthenticationSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: Spring Configuration for Authentication Security
AuthenticationSecurityConfiguration(NiFiProperties, ExtensionManager, Authorizer) - Constructor for class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
AuthenticationUserAttribute - Enum Class in org.apache.nifi.web.security.log: Request Attribute enumeration for Authentication User information
AuthenticationUserAttribute(String) - Constructor for enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute
AuthenticationUserFilter - Class in org.apache.nifi.web.security.log: Authentication User Filter sets authentication username in request attribute for later retrieval and logging
AuthenticationUserFilter() - Constructor for class org.apache.nifi.web.security.log.AuthenticationUserFilter
AUTHORIZATION - Enum constant in enum class org.apache.nifi.web.security.http.SecurityHeader: Authorization Header described in RFC 7235 Section 4.2
AUTHORIZATION_BEARER - Enum constant in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: Authorization Bearer contains signed JSON Web Token and requires Strict Same Site handling
AUTHORIZATION_BEARER - Enum constant in enum class org.apache.nifi.web.security.http.SecurityCookieName
AUTHORIZATION_REQUEST_CACHE_SIZE - Static variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
authorizationRequestRepository() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: OpenID Connect Authorization Request Repository with Cache abstraction based on Caffeine implementation
AuthorizedClient - Class in org.apache.nifi.web.security.oidc.client.web.converter: Serialized representation of Authorized Client
AuthorizedClient(String, AuthorizedToken, AuthorizedToken, AuthorizedToken) - Constructor for class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
authorizedClientConverter - Variable in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
authorizedClientConverter() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Authorized Client Converter for OpenID Connect Tokens supporting serialization of OpenID Connect Tokens
AuthorizedClientConverter - Interface in org.apache.nifi.web.security.oidc.client.web.converter: Abstraction for encoding and decoding OpenID Connect Authorized Client Tokens
authorizedClientExpirationCommand() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
AuthorizedClientExpirationCommand - Class in org.apache.nifi.web.security.oidc.client.web: Runnable command to delete expired OpenID Authorized Clients
AuthorizedClientExpirationCommand(TrackedAuthorizedClientRepository, TokenRevocationResponseClient) - Constructor for class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand
authorizedClientRepository - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
authorizedClientRepository - Variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
authorizedClientRepository() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Authorized Client Repository for storing OpenID Connect Tokens in application State Manager
AuthorizedToken - Class in org.apache.nifi.web.security.oidc.client.web.converter: Serialized representation of Authorized Token with minimum required properties
AuthorizedToken(String, Instant, Instant) - Constructor for class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
authorizer - Variable in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
authorizer - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
authorizer - Variable in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
authorizer - Variable in class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter
authorizer - Variable in class org.apache.nifi.web.security.NiFiAuthenticationProvider
authorizer - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationProvider

B

BASE_URL_FORMAT - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
BASE_URL_KEY - Static variable in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
base64Decode(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Performs the reverse of Base64 encoding
BEARER_HEADER - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
BEARER_PREFIX - Static variable in class org.apache.nifi.web.security.jwt.resolver.StandardBearerTokenResolver
bearerTokenAuthenticationEntryPoint - Variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
bearerTokenAuthenticationFilter(AuthenticationManager, AuthenticationDetailsSource<HttpServletRequest, NiFiWebAuthenticationDetails>) - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Bearer Token Authentication Filter responsible for reading and authenticating Bearer JSON Web Tokens from HTTP Requests
bearerTokenProvider - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
bearerTokenProvider - Variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
bearerTokenProvider - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
bearerTokenProvider - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
bearerTokenProvider - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
bearerTokenProvider() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Application Bearer Token Provider responsible for signing and encoding new JSON Web Tokens
BearerTokenProvider - Interface in org.apache.nifi.web.security.jwt.provider: Bearer Token Provider supports generation of Access Tokens used for Bearer Authentication
bearerTokenResolver - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
bearerTokenResolver - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
bearerTokenResolver() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Bearer Token Resolver responsible for reading Bearer JSON Web Tokens from HTTP headers or cookies
buildDecoder(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
buildDetails(HttpServletRequest) - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetailsSource
buildProxiedEntitiesChainString(NiFiUser) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Builds the proxy chain for the specified user.
buildProxiedEntityGroupsString(Set<String>) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Builds the string representation for a set of groups that belong to a proxied entity.
BYPASS_URI_PREFIXES - Static variable in class org.apache.nifi.web.security.requests.ContentLengthFilter

C

cache - Variable in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository
cache - Variable in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository
cache - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository
CacheKey - Class in org.apache.nifi.web.security.util: Key for the cache.
CacheKey(String) - Constructor for class org.apache.nifi.web.security.util.CacheKey
CALLBACK - Enum constant in enum class org.apache.nifi.web.security.oidc.OidcUrlPath
certificateExtractor - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
certificateExtractor() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
certificateIdentityProvider - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
certificateIdentityProvider() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
certificates - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
CertificateStatusException - Exception Class in org.apache.nifi.web.security.x509.ocsp: Represents the exceptional case when a users certificate status is not GOOD.
CertificateStatusException() - Constructor for exception class org.apache.nifi.web.security.x509.ocsp.CertificateStatusException
CertificateStatusException(String) - Constructor for exception class org.apache.nifi.web.security.x509.ocsp.CertificateStatusException
CertificateStatusException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.x509.ocsp.CertificateStatusException
CertificateStatusException(String, Throwable, boolean, boolean) - Constructor for exception class org.apache.nifi.web.security.x509.ocsp.CertificateStatusException
CertificateStatusException(Throwable) - Constructor for exception class org.apache.nifi.web.security.x509.ocsp.CertificateStatusException
certificateValidator - Variable in class org.apache.nifi.web.security.x509.X509IdentityProvider
certificateValidator() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
claim - Variable in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim
clazz - Variable in class org.apache.nifi.authentication.generated.Provider
client - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
clientAddress - Variable in class org.apache.nifi.web.security.NiFiAuthenticationRequestToken
clientRegistration - Variable in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
ClientRegistrationConfiguration - Class in org.apache.nifi.web.security.configuration: OpenID Connect Client Registration configuration with supporting components
ClientRegistrationConfiguration(NiFiProperties, SSLContext) - Constructor for class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
clientRegistrationJwtDecoder - Variable in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
ClientRegistrationProvider - Interface in org.apache.nifi.web.security.oidc.registration: Provider interface for OpenID Connect Client Registration abstracting access to metadata from a configurable location
clientRegistrationRepository - Variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
clientRegistrationRepository - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
clientRegistrationRepository - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
clientRegistrationRepository - Variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
clientRegistrationRepository - Variable in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
clientRegistrationRepository() - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration: Client Registration Repository for OpenID Connect Discovery
commandScheduler() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Command Scheduler responsible for running commands in background thread
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint: Commence exception handling with handling for OAuth2 Authentication Exceptions using Bearer Token implementation
complete(String) - Method in class org.apache.nifi.web.security.logout.LogoutRequestManager
configuredJwsAlgorithm - Variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
CONNECT_TIMEOUT - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
ContentLengthFilter - Class in org.apache.nifi.web.security.requests
ContentLengthFilter() - Constructor for class org.apache.nifi.web.security.requests.ContentLengthFilter
ContentLengthFilter.LimitedContentLengthRequest - Class in org.apache.nifi.web.security.requests
convert(HttpServletRequest) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver: Convert Request to Relying Party Registration using internal default Registration Identifier
convert(OAuth2LoginAuthenticationToken) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthenticationResultConverter: Convert OAuth2 Login Authentication Token to OAuth2 Authentication Token containing the OAuth2 Access Token
convert(Jwt) - Method in class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter: Convert JSON Web Token to NiFi Authentication Token
convert(OpenSaml5AuthenticationProvider.ResponseToken) - Method in class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter: Convert SAML 2 Response Token using default Converter and process authorities based on Group Attribute Name
convert(Saml2AuthenticatedPrincipal) - Method in class org.apache.nifi.web.security.saml2.web.authentication.identity.AttributeNameIdentityConverter: Convert Principal to identity using configured attribute name when found
cookieName - Variable in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName
createDecoder(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory: Create JSON Web Token Decoder based on Client Registration
createJWSVerifier(JWSHeader, Key) - Method in class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory: Create JSON Web Security Verifier for EdDSA using Ed25519 Public Key or PS512 using RSA Public Key
createLoginIdentityProvider(String, String) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
createLoginIdentityProviders() - Method in class org.apache.nifi.authentication.generated.ObjectFactory: Create an instance of LoginIdentityProviders
createProperty() - Method in class org.apache.nifi.authentication.generated.ObjectFactory: Create an instance of Property
createProvider() - Method in class org.apache.nifi.authentication.generated.ObjectFactory: Create an instance of Provider
createUser(String, Set<String>, Set<String>, NiFiUser, String, boolean) - Static method in class org.apache.nifi.web.security.x509.X509AuthenticationProvider: Returns a regular user populated with the provided values, or if the user should be anonymous, a well-formed instance of the anonymous user with the provided values.
credentials - Variable in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
CsrfApplicationCookieService() - Constructor for class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository.CsrfApplicationCookieService
CsrfCookieFilter - Class in org.apache.nifi.web.security.csrf: Cross-Site Request Forgery Cookie Filter based on Spring Security recommendations for Single-Page Applications
CsrfCookieFilter() - Constructor for class org.apache.nifi.web.security.csrf.CsrfCookieFilter
CsrfCookieRequestMatcher - Class in org.apache.nifi.web.security.csrf: Request Matcher checks for the existence of a cookie with the configured name
CsrfCookieRequestMatcher() - Constructor for class org.apache.nifi.web.security.csrf.CsrfCookieRequestMatcher
currentSigner - Variable in class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider
currentUserRequestMatcher - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter

D

decode(String) - Method in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder: Decode JSON Web Token using OpenID Connect Decoder for matched Issuer or default application JWT Decoder
DEFAULT_CLAIM_TYPE_CONVERTER - Static variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
DEFAULT_JWS_ALGORITHM - Static variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
DEFAULT_JWS_ALGORITHM - Static variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
DEFAULT_PATH - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
DEFAULT_SOCKET_TIMEOUT - Static variable in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
defaultConverter - Static variable in class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter
deleteExpired() - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService: Delete Expired Verification Keys is synchronized to avoid losing updates from other methods
deleteExpired() - Method in interface org.apache.nifi.web.security.jwt.key.service.VerificationKeyService: Delete Expired Keys
deleteExpired() - Method in interface org.apache.nifi.web.security.jwt.revocation.JwtRevocationService: Delete Expired Revocations
deleteExpired() - Method in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService: Delete Expired Revocations is synchronized is avoid losing updates from setRevoked()
deleteExpired() - Method in class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand
deleteExpired() - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: Delete expired Authorized Clients from the configured State Manager
deleteExpired() - Method in interface org.apache.nifi.web.security.oidc.client.web.TrackedAuthorizedClientRepository: Delete expired Authorized Clients
deprecationLogger - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
destroy() - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter
destroy() - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
determineTargetUrl(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler: Determine Redirect Target URL based on Request URL and add Session Cookie containing a Bearer Token
determineTargetUrl(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler: Determine Redirect Target URL based on Request URL and add Session Cookie containing a Bearer Token
DisabledClientRegistrationRepository - Class in org.apache.nifi.web.security.oidc.registration: Disabled implementation of Client Registration Repository when OpenID Connect is not configured
DisabledClientRegistrationRepository() - Constructor for class org.apache.nifi.web.security.oidc.registration.DisabledClientRegistrationRepository
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.csrf.CsrfCookieFilter
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.csrf.SkipReplicatedCsrfFilter: Set request attribute to disable standard CSRF Filter when request matches
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.log.AuthenticationUserFilter: Read Authentication username from Spring Security Context and set username request attribute when found
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.logout.StandardLogoutFilter: Call Logout Success Handler when request path matches
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter: Run Bearer Token Refresh check for matched HTTP Requests and avoid processing multiple requests for the same user
doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter: Read Logout Request Identifier cookies and find Logout Request then call Logout Success Handler

E

Ed25519Signer - Class in org.apache.nifi.web.security.jwt.key: Ed25519 implementation of JSON Web Security Signer using Java cryptography
Ed25519Signer(PrivateKey) - Constructor for class org.apache.nifi.web.security.jwt.key.Ed25519Signer
Ed25519Verifier - Class in org.apache.nifi.web.security.jwt.key: Ed25519 implementation of JSON Web Security Verifier using Java cryptography
Ed25519Verifier(PublicKey) - Constructor for class org.apache.nifi.web.security.jwt.key.Ed25519Verifier
encoded - Variable in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
encryption - Variable in class org.apache.nifi.authentication.generated.Property
END_SESSION_ENDPOINT - Static variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
equals(Object) - Method in class org.apache.nifi.web.security.logout.LogoutRequest
equals(Object) - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
equals(Object) - Method in class org.apache.nifi.web.security.util.CacheKey
equals(Object) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
ESCAPED_GT - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
ESCAPED_LT - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
expiration - Variable in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
expiration - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
expiration - Variable in class org.apache.nifi.web.security.token.LoginAuthenticationToken
EXPIRATION - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.4
EXPIRED_JWT - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
expiresAt - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
extensionManager - Variable in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
extensionManager - Variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
extractClientCertificate(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509CertificateExtractor: Extract the client certificate from the specified HttpServletRequest or null if none is specified.
extractPrincipal(X509Certificate) - Method in class org.apache.nifi.web.security.x509.SubjectDnX509PrincipalExtractor

F

FAILURE_RESULT - Static variable in class org.apache.nifi.web.security.jwt.revocation.JwtRevocationValidator
FALLBACK_KEY_PAIR_ALGORITHM - Static variable in class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration: Fallback Key Pair Algorithm when standard algorithm not supported in current Security Provider
FILE_URI_SCHEME - Static variable in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
findById(String) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService: Find Key using specified Key Identifier
findById(String) - Method in interface org.apache.nifi.web.security.jwt.key.service.VerificationKeyService: Find Key using specified Key Identifier
findByRegistrationId(String) - Method in class org.apache.nifi.web.security.oidc.registration.DisabledClientRegistrationRepository
findByRegistrationId(String) - Method in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
findEncoded(Authentication) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
findSerializedKey(String) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
formatSize(int) - Static method in class org.apache.nifi.web.security.requests.ContentLengthFilter: Formats a value like 1048576 to 1 MB for easier human consumption.
FORWARD_FOR_HEADER - Static variable in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
forwardedFor - Variable in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails

G

generateRandomToken() - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository
generateToken(HttpServletRequest) - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository: Generate CSRF Token or return current Token when present in HTTP Servlet Request Cookie header
get(String) - Method in class org.apache.nifi.web.security.logout.LogoutRequestManager
getAccessToken() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
getAccessToken(AuthorizedToken) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
getAccessToken(OAuth2AuthenticationToken) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getAlgorithm() - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
getAttributeValue(XMLObject) - Method in class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter
getAuthenticationSuccessHandler() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
getAuthenticationSuccessHandler() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
getAuthenticationToken(OidcAuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getAuthenticationToken(Authentication) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getAuthorities(List<Assertion>) - Method in class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter
getAuthorityProviderLookup() - Method in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderInitializationContext
getBaseUrl(HttpServletRequest) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
getBearerToken(String, Set<String>) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
getBearerToken(String, OAuth2AccessTokenResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getBearerToken(String, OAuth2AccessToken, Set<String>) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getBearerToken(LoginAuthenticationToken) - Method in interface org.apache.nifi.web.security.jwt.provider.BearerTokenProvider: Get Bearer Token
getBearerToken(LoginAuthenticationToken) - Method in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider: Get Signed JSON Web Token using Login Authentication Token
getCertificates() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
getClaim() - Method in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim
getClazz() - Method in class org.apache.nifi.authentication.generated.Provider: Gets the value of the clazz property.
getClientAddress() - Method in class org.apache.nifi.web.security.NiFiAuthenticationRequestToken
getClientAuthenticationMethod(List<ClientAuthenticationMethod>) - Method in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
getClientRegistration() - Method in interface org.apache.nifi.web.security.oidc.registration.ClientRegistrationProvider: Get Client Registration
getClientRegistration() - Method in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider: Get Client Registration using OpenID Connect Discovery URL
getClientResponse(OCSPReq) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
getConfigurationContext(Provider) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
getCookieBuilder(URI, ApplicationCookieName, String, Duration) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService: Get Response Cookie Builder with standard properties
getCookieBuilder(URI, ApplicationCookieName, String, Duration) - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository.CsrfApplicationCookieService: Get Response Cookie Builder with HttpOnly disabled allowing JavaScript to read value for subsequent requests
getCookieName() - Method in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName
getCookiePath(URI) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
getCookieValue(HttpServletRequest, ApplicationCookieName) - Method in interface org.apache.nifi.web.security.cookie.ApplicationCookieService: Get cookie value using specified name
getCookieValue(HttpServletRequest, ApplicationCookieName) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService: Get cookie value using specified name
getCredentials() - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken
getCredentials() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardOAuth2AuthenticationToken: Get Credentials returns the OAuth2 Access Token
getCredentials() - Method in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
getCredentials() - Method in class org.apache.nifi.web.security.token.LoginAuthenticationToken
getCredentials() - Method in class org.apache.nifi.web.security.token.LogoutAuthenticationToken
getCredentials() - Method in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
getCredentials() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
getCsrfToken(String) - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository
getDecoded(String) - Method in interface org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter: Get decoded OpenID Connect Authorized Client
getDecoded(String) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter: Get decoded Authorized Client from encrypted string containing JSON
getDisabledRelyingPartyRegistrationRepository() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
getEncoded() - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
getEncoded(OidcAuthorizedClient) - Method in interface org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter: Get encoded representation of Authorized Client
getEncoded(OidcAuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter: Get encoded representation serializes as JSON and returns an encrypted string
getEncryption() - Method in class org.apache.nifi.authentication.generated.Property: Gets the value of the encryption property.
getEndSessionEndpoint(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
getEndSessionTargetUrl(URI, String, String) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
getErrorMessage(HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
getExpiration() - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
getExpiration() - Method in class org.apache.nifi.web.security.token.LoginAuthenticationToken
getExpirationTime(LoginAuthenticationToken) - Method in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
getExpiresAt() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
getForwardedFor() - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails: Get Forwarded For addresses can be null when the X-Forwarded-For header is not provided
getGroups(Collection<? extends GrantedAuthority>) - Method in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
getGroups(Authentication) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
getGroups(OidcUser) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getHeader() - Method in enum class org.apache.nifi.web.security.http.SecurityHeader
getHint() - Method in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint
getHttpClient() - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
getId() - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
getIdentifier() - Method in class org.apache.nifi.authentication.generated.Provider: Gets the value of the identifier property.
getIdentifier() - Method in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
getIdentifier() - Method in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderInitializationContext
getIdentity(Authentication) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
getIdentity(OidcUser) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getIdToken() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
getIdToken() - Method in class org.apache.nifi.web.security.oidc.client.web.OidcAuthorizedClient: Get OpenID Connect ID Token
getIdToken(AuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
getInitializedSignature() - Method in class org.apache.nifi.web.security.jwt.key.Ed25519Verifier
getInputStream() - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter.LimitedContentLengthRequest
getInputStream(String) - Method in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
getIssuedAt() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
getIssuer() - Method in interface org.apache.nifi.web.security.jwt.provider.IssuerProvider: Get Issuer URI for issuer claims
getIssuer() - Method in class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider: Get Issuer URI for issuer claims
getIssuerCertificate() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
getIssuerCertificate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Gets the issuer certificate.
getJCAContext() - Method in class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory
getJwsAlgorithm() - Method in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
getJwsAlgorithm(String) - Method in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
getJwsSigner() - Method in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
getJwsSigner(PrivateKey) - Method in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
getJwsSignerContainer(Instant) - Method in interface org.apache.nifi.web.security.jwt.jws.JwsSignerProvider: Get JSON Web Signature Signer Container
getJwsSignerContainer(Instant) - Method in class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider: Get Current JWS Signer Container and update expiration
getKey() - Method in class org.apache.nifi.web.security.util.CacheKey
getKey(VerificationKey) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
getKeyAliases() - Method in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
getKeyIdentifier() - Method in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
getLocalHost() - Method in class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider
getLoginIdentityProvider(String) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
getMappedUserIdentity() - Method in class org.apache.nifi.web.security.logout.LogoutRequest
getMappings() - Method in class org.apache.nifi.web.security.NiFiAuthenticationProvider
getMaxContentLength() - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter: Returns the currently configured max content length in bytes.
getName() - Method in class org.apache.nifi.authentication.generated.Property: Gets the value of the name property.
getName() - Method in enum class org.apache.nifi.web.security.http.SecurityCookieName
getName() - Method in enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute
getName() - Method in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUser
getName() - Method in class org.apache.nifi.web.security.token.LoginAuthenticationToken
getObject() - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean: Get Login Identity Provider Object or null when not configured
getObjectType() - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
getOcspCertificate(NiFiProperties) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Loads the ocsp certificate if specified.
getOcspStatus(OcspRequest) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Gets the OCSP status for the specified subject and issuer certificates.
getOidcAuthorizedClient(OAuth2AuthorizedClient, Authentication) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
getOidcAuthorizedClient(ClientRegistration, String, HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
getOidcIdToken(Authentication) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
getOidcUser(OAuth2AuthenticationToken) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getPath() - Method in enum class org.apache.nifi.web.security.oidc.OidcUrlPath
getPath() - Method in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
getPolicy() - Method in enum class org.apache.nifi.web.security.cookie.SameSitePolicy
getPostLogoutRedirectUri(HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
getPrincipal() - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken
getPrincipal() - Method in class org.apache.nifi.web.security.token.LoginAuthenticationToken
getPrincipal() - Method in class org.apache.nifi.web.security.token.LogoutAuthenticationToken
getPrincipal() - Method in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
getPrincipal() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
getPrincipalId(Authentication) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
getPrincipalName() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
getProperties() - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
getProperties() - Method in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
getProperty() - Method in class org.apache.nifi.authentication.generated.Provider: Gets the value of the property property.
getProperty() - Method in enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty
getProperty() - Method in enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty
getProperty(String) - Method in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
getProvidedGroups(Jwt) - Method in class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter
getProvider() - Method in class org.apache.nifi.authentication.generated.LoginIdentityProviders: Gets the value of the provider property.
getProviderAuthorities() - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getProviderMetadata() - Method in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
getProxiedEntitiesChain() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
getProxiedEntityGroups() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
getRefreshToken() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
getRefreshToken(AuthorizedToken) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
getRefreshTokenResponse(OidcAuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getRefreshTokenResponse(OidcAuthorizedClient, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getRegistrationBuilder() - Method in interface org.apache.nifi.web.security.saml2.registration.RegistrationBuilderProvider: Get Relying Party Registration Builder
getRegistrationBuilder() - Method in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider: Get Registration Builder from configured location supporting local files or HTTP services
getRelyingPartyRegistration() - Method in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
getRemoteInputStream(String) - Method in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
getRequestBasedRedirectUri(String, HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver
getRequestEntity(TokenRevocationRequest, ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
getRequestIdentifier() - Method in class org.apache.nifi.web.security.logout.LogoutRequest
getResolvedAuthorizationRequest(OAuth2AuthorizationRequest, HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver
getResolvedHost(String) - Method in class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider
getResponseEntity(TokenRevocationRequest, ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
getResponseStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
getRevocationEndpoint(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
getRevocationResponse(TokenRevocationRequest) - Method in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient: Get Revocation Response as described in RFC 7009 Section 2.2 or return success when the Revocation Endpoint is not configured
getRevocationResponse(TokenRevocationRequest) - Method in interface org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient: Get Token Revocation Response based on Revocation Request
getSameSitePolicy() - Method in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName
getSessionExpiration(OAuth2AccessToken) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
getSessionExpiration(OAuth2Token) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
getSignedBearerToken(JWTClaimsSet) - Method in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
getStateMap() - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
getStateMap() - Method in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService
getStateMap() - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
getStatusCode() - Method in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponse
getSubjectCertificate() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
getSubjectCertificate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Gets the subject certificate.
getTimeout(String) - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
getToken() - Method in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationRequest
getTokenIssuer(JWT) - Method in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
getTokenTypeHint() - Method in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationRequest
getTokenValidator(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.authentication.AccessTokenDecoderFactory: Get OAuth2 Token Validator with Timestamp and Issuer Validators
getTokenValidator(ClientRegistration) - Method in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory: Get OAuth2 Token Validator based on Spring Security DefaultOidcIdTokenValidatorFactory
getTokenValue() - Method in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
getTrustedCAs(NiFiProperties) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Loads the trusted certificate authorities according to the specified properties.
getTrustedResponderCertificate(X509CertificateHolder, X509Certificate) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Gets the trusted responder certificate.
getUser(Jwt) - Method in class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter
getUserAgent() - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails: Get User Agent can be null when the User-Agent header is not provided
getUserClaimName(OidcUser) - Method in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUserService
getUserClaimNames() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
getUserGroups(String) - Method in class org.apache.nifi.web.security.NiFiAuthenticationProvider
getValidationStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
getValue() - Method in class org.apache.nifi.authentication.generated.Property: Gets the value of the value property.
getVerificationKey(String) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
getVerificationKeys(String) - Method in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector: Get Verification Keys
getVerificationKeys(String) - Method in interface org.apache.nifi.web.security.jwt.key.VerificationKeySelector: Get Verification Keys for Key Identifier
getVerificationStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
getVerifierError(String) - Method in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
getWebClientService() - Method in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
Good - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus
groupAttributeName - Variable in class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter
groupIdentityMappings - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
groupIdentityMappings - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
GROUPS - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7643 Section 4.1.2
groupsClaimName - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
GT - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils

H

handle(HttpServletRequest, HttpServletResponse, Supplier<CsrfToken>) - Method in class org.apache.nifi.web.security.csrf.StandardCsrfTokenRequestAttributeHandler: Handle Request using standard Spring Security implementation
handler - Variable in class org.apache.nifi.web.security.csrf.StandardCsrfTokenRequestAttributeHandler
hashCode() - Method in class org.apache.nifi.web.security.logout.LogoutRequest
hashCode() - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
hashCode() - Method in class org.apache.nifi.web.security.util.CacheKey
hashCode() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
header - Variable in enum class org.apache.nifi.web.security.http.SecurityHeader
hint - Variable in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint
HTTP_ONLY_DISABLED - Static variable in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository.CsrfApplicationCookieService
HTTP_ONLY_ENABLED - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
HTTP_SCHEME_PREFIX - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider

I

id - Variable in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
ID_TOKEN_HINT_PARAMETER - Static variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
identifier - Variable in class org.apache.nifi.authentication.generated.Provider
identifier - Variable in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
identifier - Variable in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderInitializationContext
identity - Variable in class org.apache.nifi.web.security.token.LoginAuthenticationToken
identityConverter - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
identityMappings - Variable in class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter
idToken - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
idToken - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcAuthorizedClient
idTokenDecoderFactory - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
idTokenDecoderFactory() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: OpenID Connect Identifier Token Decoder with configured JWS Algorithm for verification
init() - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter
init(FilterConfig) - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter
initializeJaxbContext() - Static method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean: Load the JAXBContext.
InternalError - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
InvalidAuthenticationException - Exception Class in org.apache.nifi.web.security: Thrown if the authentication of a given request is invalid.
InvalidAuthenticationException(String) - Constructor for exception class org.apache.nifi.web.security.InvalidAuthenticationException
InvalidAuthenticationException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.InvalidAuthenticationException
isBase64Encoded(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Check if a value has been encoded by Base64 encoding and therefore needs to be decoded.
isExpired(OidcAuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
isIssuerRegistered(String) - Method in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
isRefreshRequired(String, HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
isRevoked(String) - Method in interface org.apache.nifi.web.security.jwt.revocation.JwtRevocationService: Is JSON Web Token Identifier Revoked
isRevoked(String) - Method in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService: Is JSON Web Token Identifier Revoked based on State Map Status
isSecureRequest() - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken
isSingleton() - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
isSubjectToFilter(HttpServletRequest) - Method in class org.apache.nifi.web.security.requests.ContentLengthFilter: Returns true if this request is subject to the filter operation, false if not.
isSuccess() - Method in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponse
ISSUED_AT - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.6
issuedAt - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
issuer - Variable in class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider
issuer - Variable in class org.apache.nifi.web.security.x509.X509IdentityProvider
ISSUER - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.1
issuerCertificate - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
issuerProvider - Variable in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
issuerProvider() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
IssuerProvider - Interface in org.apache.nifi.web.security.jwt.provider: JSON Web Token Issuer Provider abstracts determination of local address for issuer claims
isValidChainFormat(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Check if a String is in the expected format and can be safely tokenized.
isWrappedInAngleBrackets(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Check if a string is wrapped with <angle brackets>.

J

JAXB_CONTEXT - Static variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
JAXB_GENERATED_PATH - Static variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
jcaContext - Variable in class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory
jwsAlgorithm - Variable in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
jwsAlgorithm - Variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
jwsSigner - Variable in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
JwsSignerContainer - Class in org.apache.nifi.web.security.jwt.jws: JSON Web Signature Signer Container
JwsSignerContainer(String, JWSAlgorithm, JWSSigner) - Constructor for class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
jwsSignerProvider - Variable in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
jwsSignerProvider() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: JSON Web Signature Signer Provider responsible for managing Bearer Token signing key pairs
JwsSignerProvider - Interface in org.apache.nifi.web.security.jwt.jws: JSON Web Signature Signer Provider supports accessing signer and identifier properties
JWT_ID - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.7
jwtAuthenticationConverter() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: JSON Web Token Authentication Converter provides application User objects
jwtAuthenticationProvider() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: JSON Web Token Authentication Provider responsible for decoding and verifying Bearer Tokens from HTTP Requests
JwtAuthenticationSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: JSON Web Token Configuration for Authentication Security
JwtAuthenticationSecurityConfiguration(NiFiProperties, Authorizer, JwtDecoder, JwtRevocationService, StandardVerificationKeySelector, VerificationKeyService) - Constructor for class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
jwtDecoder - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
jwtDecoder - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
jwtDecoder - Variable in class org.apache.nifi.web.security.jwt.revocation.StandardJwtLogoutListener: JWT Decoder
jwtDecoder - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
jwtDecoder() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: JWT Decoder responsible for parsing and verifying Bearer Tokens from application or OIDC Identity Provider
JwtDecoderConfiguration - Class in org.apache.nifi.web.security.configuration: JSON Web Token Decoder Configuration with component supporting Bearer Token parsing and verification
JwtDecoderConfiguration(NiFiProperties, ClientRegistrationRepository, RestOperations, StateManagerProvider) - Constructor for class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
jwtDecoders - Variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
jwtKeyPairGenerator() - Method in class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration: JSON Web Token Key Pair Generator defaults to Ed25519 and falls back to RSA when current Security Providers do not support Ed25519.
jwtLogoutListener() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: JSON Web Token Logout Listener responsible for revoking application Bearer Tokens after logout completion
JwtLogoutListener - Interface in org.apache.nifi.web.security.jwt.revocation: JSON Web Token Logout Listener
jwtProcessor() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: JSON Web Token Processor supporting application Bearer Token Decoder with configured Signing Key Selector
jwtRevocationService - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
jwtRevocationService - Variable in class org.apache.nifi.web.security.jwt.revocation.command.RevocationExpirationCommand
jwtRevocationService - Variable in class org.apache.nifi.web.security.jwt.revocation.JwtRevocationValidator
jwtRevocationService - Variable in class org.apache.nifi.web.security.jwt.revocation.StandardJwtLogoutListener: JWT Revocation Service
jwtRevocationService() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: JWT Revocation Service with backing local State Manager for tracking revoked application Bearer Tokens
JwtRevocationService - Interface in org.apache.nifi.web.security.jwt.revocation: JSON Web Token Revocation Service
JwtRevocationValidator - Class in org.apache.nifi.web.security.jwt.revocation: JSON Web Token Validator checks the JWT Identifier against a Revocation Service
JwtRevocationValidator(JwtRevocationService) - Constructor for class org.apache.nifi.web.security.jwt.revocation.JwtRevocationValidator
jwtTokenValidator() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: Token Validator responsible for validating JWT claims after parsing and verification based on matching Issuer

K

key - Variable in class org.apache.nifi.web.security.util.CacheKey
keyExpirationCommand() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Key Expiration Command responsible for removing expired signing key pairs
KeyExpirationCommand - Class in org.apache.nifi.web.security.jwt.key.command: Key Expiration Command removes expired Verification Keys
KeyExpirationCommand(VerificationKeyService) - Constructor for class org.apache.nifi.web.security.jwt.key.command.KeyExpirationCommand
keyGenerationCommand(KeyPairGenerator) - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Key Generation Command responsible for rotating JSON Web Signature key pairs based on configuration
KeyGenerationCommand - Class in org.apache.nifi.web.security.jwt.key.command: Key Generation Command produces new RSA Key Pairs and configures a JWS Signer
KeyGenerationCommand(SignerListener, VerificationKeyListener, KeyPairGenerator) - Constructor for class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
keyIdentifier - Variable in class org.apache.nifi.web.security.jwt.jws.JwsSignerContainer
keyManager - Variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
keyManager - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
keyManager - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
keyPairGenerator - Variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
KeyPairGeneratorConfiguration - Class in org.apache.nifi.web.security.configuration
KeyPairGeneratorConfiguration() - Constructor for class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration
keyRotationPeriod - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
keyRotationPeriod - Variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
keyRotationPeriod - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
keyRotationPeriod - Variable in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector

L

LimitedContentLengthRequest(HttpServletRequest, int) - Constructor for class org.apache.nifi.web.security.requests.ContentLengthFilter.LimitedContentLengthRequest
loadAuthenticationRequest(HttpServletRequest) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository: Load Authentication Request based on SAML Request Identifier cookies
loadAuthorizationRequest(HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository: Load Authorization Request using Request Identifier Cookie to lookup cached requests
loadAuthorizedClient(HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
loadAuthorizedClient(String, Authentication, HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: Load Authorized Client from State Manager
loadLoginIdentityProvidersConfiguration() - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
loadLogoutRequest(HttpServletRequest) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository: Load Logout Request
loadProviderProperties(LoginIdentityProviders) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
loadToken(HttpServletRequest) - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository: Load CSRF Token from HTTP Servlet Request Cookie header
loadUser(OidcUserRequest) - Method in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUserService: Load User with user identity based on first available Token Claim found
LOCAL_LOGOUT_REQUEST - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
log - Static variable in class org.apache.nifi.web.security.NiFiAuthenticationFilter
logger - Static variable in class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration
logger - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
logger - Static variable in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
logger - Static variable in class org.apache.nifi.web.security.log.AuthenticationUserFilter
logger - Static variable in class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand
logger - Static variable in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
logger - Static variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
logger - Static variable in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository
logger - Static variable in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
logger - Static variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
logger - Static variable in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
logger - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
logger - Static variable in class org.apache.nifi.web.security.requests.ContentLengthFilter
logger - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
logger - Static variable in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
logger - Static variable in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository
logger - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler
logger - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
logger - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutHandler
logger - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository
logger - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
logger - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
logger - Variable in class org.apache.nifi.web.security.x509.X509CertificateExtractor
logger - Static variable in class org.apache.nifi.web.security.x509.X509IdentityProvider
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.key.command.KeyExpirationCommand
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.resolver.StandardBearerTokenResolver
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.revocation.command.RevocationExpirationCommand
LOGGER - Static variable in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService
LOGGER - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
LOGIN_IDENTITY_PROVIDERS_XSD - Static variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
LOGIN_RESPONSE - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
LOGIN_RESPONSE_LOCATION - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
LOGIN_RESPONSE_REGISTRATION_ID - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
LoginAuthenticationToken - Class in org.apache.nifi.web.security.token: Login Authentication Token containing mapped Identity and Expiration Time to exchange for Application Bearer Token
LoginAuthenticationToken(String, Instant, Collection<? extends GrantedAuthority>) - Constructor for class org.apache.nifi.web.security.token.LoginAuthenticationToken: Creates a representation of the authentication token for a user.
loginIdentityProvider - Variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
loginIdentityProvider() - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
loginIdentityProviderFactoryBean() - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
LoginIdentityProviderFactoryBean - Class in org.apache.nifi.web.security.spring: Spring Factory Bean implementation requires a generic Object return type to handle a null Provider configuration
LoginIdentityProviderFactoryBean() - Constructor for class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
loginIdentityProviders - Variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
LoginIdentityProviders - Class in org.apache.nifi.authentication.generated: Java class for anonymous complex type
LoginIdentityProviders() - Constructor for class org.apache.nifi.authentication.generated.LoginIdentityProviders
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutHandler
logout(String) - Method in interface org.apache.nifi.web.security.jwt.revocation.JwtLogoutListener: Logout Bearer Token
logout(String) - Method in class org.apache.nifi.web.security.jwt.revocation.StandardJwtLogoutListener: Logout Bearer Token sets revoked status using the JSON Web Token Identifier
LOGOUT - Enum constant in enum class org.apache.nifi.web.security.oidc.OidcUrlPath
LOGOUT_COMPLETE_PATH - Static variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
LOGOUT_COMPLETE_PATH - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler
LOGOUT_REQUEST_IDENTIFIER - Enum constant in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: Logout Requests can interact with external identity providers requiring no Same Site restrictions
LogoutAuthenticationToken - Class in org.apache.nifi.web.security.token: Logout Authentication Token for processing Logout Requests using Spring Security handlers
LogoutAuthenticationToken(String) - Constructor for class org.apache.nifi.web.security.token.LogoutAuthenticationToken
LogoutException - Exception Class in org.apache.nifi.web.security: Thrown if the authentication of a given request is invalid.
LogoutException(String) - Constructor for exception class org.apache.nifi.web.security.LogoutException
LogoutException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.LogoutException
LogoutRequest - Class in org.apache.nifi.web.security.logout
LogoutRequest(String, String) - Constructor for class org.apache.nifi.web.security.logout.LogoutRequest
logoutRequestManager - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
logoutRequestManager - Variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
logoutRequestManager - Variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
logoutRequestManager - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler
logoutRequestManager - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
logoutRequestManager() - Method in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
LogoutRequestManager - Class in org.apache.nifi.web.security.logout
LogoutRequestManager() - Constructor for class org.apache.nifi.web.security.logout.LogoutRequestManager
LogoutRequestManager(int, TimeUnit) - Constructor for class org.apache.nifi.web.security.logout.LogoutRequestManager
logoutSuccessHandler - Variable in class org.apache.nifi.web.security.logout.StandardLogoutFilter
logoutSuccessHandler - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
logProxyChain(NiFiUser) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
lookup - Variable in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderInitializationContext
LT - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils

M

MalformedRequest - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
mapIdentity(String) - Method in class org.apache.nifi.web.security.NiFiAuthenticationProvider
mappedUserIdentity - Variable in class org.apache.nifi.web.security.logout.LogoutRequest
mappings - Variable in class org.apache.nifi.web.security.NiFiAuthenticationProvider
matches(HttpServletRequest) - Method in class org.apache.nifi.web.security.csrf.CsrfCookieRequestMatcher: Matches request based on the presence of a cookie found using the configured name
MAX_AGE_REMOVE - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
MAX_AGE_SESSION - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
MAX_AGE_STANDARD - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
MAX_LENGTH_DEFAULT - Static variable in class org.apache.nifi.web.security.requests.ContentLengthFilter
MAX_LENGTH_INIT_PARAM - Static variable in class org.apache.nifi.web.security.requests.ContentLengthFilter
maxContentLength - Variable in class org.apache.nifi.web.security.requests.ContentLengthFilter
MAXIMUM_EXPIRATION - Static variable in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
maxRequestLength - Variable in class org.apache.nifi.web.security.requests.ContentLengthFilter.LimitedContentLengthRequest
METADATA - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
MINIMUM_EXPIRATION - Static variable in class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
MISSING_SIGNATURE_VERIFIER_ERROR_CODE - Static variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory

N

name - Variable in class org.apache.nifi.authentication.generated.Property
name - Variable in enum class org.apache.nifi.web.security.http.SecurityCookieName
name - Variable in enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute
name - Variable in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUser
name - Variable in class org.apache.nifi.web.security.token.LogoutAuthenticationToken
NIFI_TRUST_STORE_STRATEGY - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
NIFI_TRUSTSTORE_STRATEGY - Static variable in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
NiFiAnonymousAuthenticationFilter - Class in org.apache.nifi.web.security.anonymous: Extracts an anonymous authentication request from a specified servlet request.
NiFiAnonymousAuthenticationFilter() - Constructor for class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationFilter
NiFiAnonymousAuthenticationProvider - Class in org.apache.nifi.web.security.anonymous
NiFiAnonymousAuthenticationProvider(NiFiProperties, Authorizer) - Constructor for class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationProvider
NiFiAnonymousAuthenticationRequestToken - Class in org.apache.nifi.web.security.anonymous: This is an authentication request for an anonymous user.
NiFiAnonymousAuthenticationRequestToken(boolean, String, Object) - Constructor for class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken: Creates a representation of the anonymous authentication request for a user.
NiFiAuthenticationFilter - Class in org.apache.nifi.web.security: The NiFiAuthenticationFilter abstract class defines the base methods for NiFi's various existing and future authentication mechanisms.
NiFiAuthenticationFilter() - Constructor for class org.apache.nifi.web.security.NiFiAuthenticationFilter
NiFiAuthenticationProvider - Class in org.apache.nifi.web.security: Base AuthenticationProvider that provides common functionality to mapping identities.
NiFiAuthenticationProvider(NiFiProperties, Authorizer) - Constructor for class org.apache.nifi.web.security.NiFiAuthenticationProvider
NiFiAuthenticationRequestToken - Class in org.apache.nifi.web.security: Base class for authentication request tokens in NiFI.
NiFiAuthenticationRequestToken(String, Object) - Constructor for class org.apache.nifi.web.security.NiFiAuthenticationRequestToken
NiFiAuthenticationToken - Class in org.apache.nifi.web.security.token: An authentication token that represents an Authenticated and Authorized user of the NiFi Apis.
NiFiAuthenticationToken(UserDetails) - Constructor for class org.apache.nifi.web.security.token.NiFiAuthenticationToken: Token constructor with User Details and without additional credentials
NiFiAuthenticationToken(UserDetails, Object, Object) - Constructor for class org.apache.nifi.web.security.token.NiFiAuthenticationToken: Token constructor with User Details and optional credentials from authentication processing
niFiProperties - Variable in class org.apache.nifi.web.security.configuration.AuthenticationSecurityConfiguration
niFiProperties - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
niFiProperties - Variable in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
nifiUserDetails - Variable in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
NiFiWebAuthenticationDetails - Class in org.apache.nifi.web.security: Standard Web Authentication Details with additional headers including User-Agent and X-Forwarded-For
NiFiWebAuthenticationDetails(HttpServletRequest) - Constructor for class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
NiFiWebAuthenticationDetailsSource - Class in org.apache.nifi.web.security: AuthenticationDetailsSource implementation for NiFi Web.
NiFiWebAuthenticationDetailsSource() - Constructor for class org.apache.nifi.web.security.NiFiWebAuthenticationDetailsSource
NONE - Enum constant in enum class org.apache.nifi.web.security.cookie.SameSitePolicy: Instructs browsers to send cookies for both first-party and cross-site requests
NOT_BEFORE - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.5
nullRequestCache - Static variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration

O

oAuth2AuthorizationCodeGrantFilter(AuthenticationManager) - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Authorization Code Grant Filter handles Authorization Server responses and updates the Authorized Client Repository with ID Token and optional Refresh Token information
oAuth2AuthorizationRequestRedirectFilter() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Authorization Request Redirect Filter handles initial OpenID Connect authentication and redirects to the Authorization Server using default filter path from Spring Security
oAuth2LoginAuthenticationFilter(AuthenticationManager, StandardAuthenticationEntryPoint) - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Login Authentication Filter handles Authentication Responses from the Authorization Server
OBJECT_MAPPER - Static variable in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
OBJECT_MAPPER - Static variable in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
ObjectFactory - Class in org.apache.nifi.authentication.generated: This object contains factory methods for each Java content interface and Java element interface generated in the org.apache.nifi.authentication.generated package.
ObjectFactory() - Constructor for class org.apache.nifi.authentication.generated.ObjectFactory: Create a new ObjectFactory that can be used to create new instances of schema derived classes for package: org.apache.nifi.authentication.generated
OCSP_REQUEST_CONTENT_TYPE - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
ocspCache - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
OcspCertificateValidator - Class in org.apache.nifi.web.security.x509.ocsp
OcspCertificateValidator(NiFiProperties) - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
OcspRequest - Class in org.apache.nifi.web.security.x509.ocsp: A request to verify/validate the specified subject certificate via OCSP.
OcspRequest(X509Certificate, X509Certificate) - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspRequest
OcspStatus - Class in org.apache.nifi.web.security.x509.ocsp
OcspStatus() - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspStatus
OcspStatus.ResponseStatus - Enum Class in org.apache.nifi.web.security.x509.ocsp
OcspStatus.ValidationStatus - Enum Class in org.apache.nifi.web.security.x509.ocsp
OcspStatus.VerificationStatus - Enum Class in org.apache.nifi.web.security.x509.ocsp
ocspValidator - Variable in class org.apache.nifi.web.security.x509.X509CertificateValidator
ocspValidator() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
OIDC_REQUEST_IDENTIFIER - Enum constant in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: OpenID Connect Requests use external identity providers requiring no Same Site restrictions
OidcAuthenticationSuccessHandler - Class in org.apache.nifi.web.security.oidc.web.authentication: OpenID Connect Authentication Success Handler redirects to the user interface and sets a Session Cookie with a Bearer Token
OidcAuthenticationSuccessHandler(BearerTokenProvider, List<IdentityMapping>, List<IdentityMapping>, List<String>, String) - Constructor for class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler: OpenID Connect Authentication Success Handler requires Bearer Token Provider and expiration for generated tokens
oidcAuthorizationCodeAuthenticationProvider() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Authorization Code Grant Authentication Provider wired to Spring Security Authentication Manager
OidcAuthorizedClient - Class in org.apache.nifi.web.security.oidc.client.web: OpenID Connect Authorized Client with ID Token
OidcAuthorizedClient(ClientRegistration, String, OAuth2AccessToken, OAuth2RefreshToken, OidcIdToken) - Constructor for class org.apache.nifi.web.security.oidc.client.web.OidcAuthorizedClient
oidcBearerTokenRefreshFilter() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: OpenID Connect Bearer Token Refresh Filter exchanges OAuth2 Refresh Tokens with the Authorization Server and generates new application Bearer Tokens on successful responses
OidcBearerTokenRefreshFilter - Class in org.apache.nifi.web.security.oidc.client.web: OpenID Connect Filter for evaluating the application Bearer Token and returning an updated Bearer Token after successful OAuth2 Refresh Token processing
OidcBearerTokenRefreshFilter(Duration, BearerTokenProvider, BearerTokenResolver, JwtDecoder, OAuth2AuthorizedClientRepository, OAuth2AccessTokenResponseClient<OAuth2RefreshTokenGrantRequest>) - Constructor for class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
oidcClientHttpRequestFactory() - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration: OpenID Connect Client HTTP Request Factory for communication with Authorization Servers
oidcCommandScheduler() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Command Scheduled for OpenID Connect operations
OidcConfigurationException - Exception Class in org.apache.nifi.web.security.oidc: OpenID Connect Configuration Exception
OidcConfigurationException(String) - Constructor for exception class org.apache.nifi.web.security.oidc.OidcConfigurationException
OidcConfigurationException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.oidc.OidcConfigurationException
oidcLogoutFilter() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Logout Filter for completing logout processing using RP-Initiated Logout 1.0 when supported
OidcLogoutFilter - Class in org.apache.nifi.web.security.oidc.logout: OpenID Connect Logout Filter completes application Logout Requests
OidcLogoutFilter(LogoutSuccessHandler) - Constructor for class org.apache.nifi.web.security.oidc.logout.OidcLogoutFilter
oidcLogoutSuccessHandler() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Logout Success Handler redirects to the Authorization Server when supported
OidcLogoutSuccessHandler - Class in org.apache.nifi.web.security.oidc.logout: OpenID Connect Logout Success Handler supports RP-Initiated Logout and completes Logout Requests with conditional redirect to Authorization Server
OidcLogoutSuccessHandler(LogoutRequestManager, ClientRegistrationRepository, OAuth2AuthorizedClientRepository, TokenRevocationResponseClient) - Constructor for class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler: OpenID Connect Logout Success Handler with RP-Initiated Logout 1.0 and RFC 7009 Token Revocation
OidcRegistrationProperty - Enum Class in org.apache.nifi.web.security.oidc.client.web: OpenID Connect configuration property for Registration information
OidcRegistrationProperty(String) - Constructor for enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty
oidcRestClient - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
oidcRestClient() - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration: OpenID Connect REST Client for communication with Authorization Servers
oidcRestOperations - Variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
oidcRestOperations - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
oidcRestOperations() - Method in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration: OpenID Connect REST Operations for communication with Authorization Servers
OidcSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: OpenID Connect Configuration for Spring Security
OidcSecurityConfiguration(NiFiProperties, StateManagerProvider, PropertyEncryptor, BearerTokenProvider, BearerTokenResolver, ClientRegistrationRepository, JwtDecoder, JwtDecoderFactory<ClientRegistration>, RestOperations, RestClient, LogoutRequestManager) - Constructor for class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
OidcUrlPath - Enum Class in org.apache.nifi.web.security.oidc: Shared configuration for OpenID Connect URL Paths
OidcUrlPath(String) - Constructor for enum class org.apache.nifi.web.security.oidc.OidcUrlPath
oidcUserService() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: OpenID Connect User Service wired to Authentication Provider for retrieving User Information
onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler: On Logout Success complete Logout Request based on Logout Request Identifier found in cookies
onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler: On Logout Success complete Logout Request based on Logout Request Identifier found in cookies
onSignerUpdated(JwsSignerContainer) - Method in interface org.apache.nifi.web.security.jwt.jws.SignerListener: On Signer Updated
onSignerUpdated(JwsSignerContainer) - Method in class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider: On Signer Updated changes the current JWS Signer
onSigningKeyUsed(String, Instant) - Method in interface org.apache.nifi.web.security.jwt.jws.SigningKeyListener: On Signing Key Used
onSigningKeyUsed(String, Instant) - Method in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector: On Signing Key Used set new expiration
onVerificationKeyGenerated(String, Key) - Method in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector: On Verification Key Generated persist encoded Key with expiration
onVerificationKeyGenerated(String, Key) - Method in interface org.apache.nifi.web.security.jwt.key.VerificationKeyListener: On Verification Key Generated
openSamlAuthenticationProvider() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security OpenSAML Authentication Provider for processing SAML 2 login responses
org.apache.nifi.authentication.generated - package org.apache.nifi.authentication.generated
org.apache.nifi.web.security - package org.apache.nifi.web.security
org.apache.nifi.web.security.anonymous - package org.apache.nifi.web.security.anonymous
org.apache.nifi.web.security.configuration - package org.apache.nifi.web.security.configuration
org.apache.nifi.web.security.cookie - package org.apache.nifi.web.security.cookie
org.apache.nifi.web.security.csrf - package org.apache.nifi.web.security.csrf
org.apache.nifi.web.security.http - package org.apache.nifi.web.security.http
org.apache.nifi.web.security.jwt.converter - package org.apache.nifi.web.security.jwt.converter
org.apache.nifi.web.security.jwt.jws - package org.apache.nifi.web.security.jwt.jws
org.apache.nifi.web.security.jwt.key - package org.apache.nifi.web.security.jwt.key
org.apache.nifi.web.security.jwt.key.command - package org.apache.nifi.web.security.jwt.key.command
org.apache.nifi.web.security.jwt.key.service - package org.apache.nifi.web.security.jwt.key.service
org.apache.nifi.web.security.jwt.provider - package org.apache.nifi.web.security.jwt.provider
org.apache.nifi.web.security.jwt.resolver - package org.apache.nifi.web.security.jwt.resolver
org.apache.nifi.web.security.jwt.revocation - package org.apache.nifi.web.security.jwt.revocation
org.apache.nifi.web.security.jwt.revocation.command - package org.apache.nifi.web.security.jwt.revocation.command
org.apache.nifi.web.security.log - package org.apache.nifi.web.security.log
org.apache.nifi.web.security.logout - package org.apache.nifi.web.security.logout
org.apache.nifi.web.security.oidc - package org.apache.nifi.web.security.oidc
org.apache.nifi.web.security.oidc.authentication - package org.apache.nifi.web.security.oidc.authentication
org.apache.nifi.web.security.oidc.client.web - package org.apache.nifi.web.security.oidc.client.web
org.apache.nifi.web.security.oidc.client.web.converter - package org.apache.nifi.web.security.oidc.client.web.converter
org.apache.nifi.web.security.oidc.logout - package org.apache.nifi.web.security.oidc.logout
org.apache.nifi.web.security.oidc.registration - package org.apache.nifi.web.security.oidc.registration
org.apache.nifi.web.security.oidc.revocation - package org.apache.nifi.web.security.oidc.revocation
org.apache.nifi.web.security.oidc.userinfo - package org.apache.nifi.web.security.oidc.userinfo
org.apache.nifi.web.security.oidc.web.authentication - package org.apache.nifi.web.security.oidc.web.authentication
org.apache.nifi.web.security.requests - package org.apache.nifi.web.security.requests
org.apache.nifi.web.security.saml2 - package org.apache.nifi.web.security.saml2
org.apache.nifi.web.security.saml2.registration - package org.apache.nifi.web.security.saml2.registration
org.apache.nifi.web.security.saml2.service.authentication - package org.apache.nifi.web.security.saml2.service.authentication
org.apache.nifi.web.security.saml2.service.web - package org.apache.nifi.web.security.saml2.service.web
org.apache.nifi.web.security.saml2.web.authentication - package org.apache.nifi.web.security.saml2.web.authentication
org.apache.nifi.web.security.saml2.web.authentication.identity - package org.apache.nifi.web.security.saml2.web.authentication.identity
org.apache.nifi.web.security.saml2.web.authentication.logout - package org.apache.nifi.web.security.saml2.web.authentication.logout
org.apache.nifi.web.security.spring - package org.apache.nifi.web.security.spring
org.apache.nifi.web.security.token - package org.apache.nifi.web.security.token
org.apache.nifi.web.security.util - package org.apache.nifi.web.security.util
org.apache.nifi.web.security.x509 - package org.apache.nifi.web.security.x509
org.apache.nifi.web.security.x509.ocsp - package org.apache.nifi.web.security.x509.ocsp

P

parse(String) - Method in class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder
path - Variable in enum class org.apache.nifi.web.security.oidc.OidcUrlPath
path - Variable in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
performFieldInjection(LoginIdentityProvider, Class<?>) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
performMethodInjection(LoginIdentityProvider, Class<?>) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
policy - Variable in enum class org.apache.nifi.web.security.cookie.SameSitePolicy
POST_LOGOUT_REDIRECT_URI_PARAMETER - Static variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
PREFERRED_USERNAME - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: Preferred Username defined in OpenID Connect Core 1.0 Standard Claims
principalExtractor - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
principalExtractor - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
principalExtractor - Variable in class org.apache.nifi.web.security.x509.X509IdentityProvider
principalExtractor() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
principalName - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
privateKey - Variable in class org.apache.nifi.web.security.jwt.key.Ed25519Signer
processAccessTokenRevocation(OidcAuthorizedClient, String) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
processAuthentication(HttpServletResponse, Authentication, URI) - Method in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
processAuthentication(HttpServletResponse, Authentication, URI) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
processLogoutRequest(HttpServletRequest, HttpServletResponse, String, String) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
processRefreshTokenRevocation(OidcAuthorizedClient, String) - Method in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
processRequest(String, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
properties - Variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationProvider
properties - Variable in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
properties - Variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
properties - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
properties - Variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
properties - Variable in class org.apache.nifi.web.security.NiFiAuthenticationFilter
properties - Variable in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
properties - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
properties - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
properties - Variable in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
properties - Variable in class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
properties - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
property - Variable in class org.apache.nifi.authentication.generated.Provider
property - Variable in enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty
property - Variable in enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty
Property - Class in org.apache.nifi.authentication.generated: Java class for Property complex type
Property() - Constructor for class org.apache.nifi.authentication.generated.Property
propertyEncryptor - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
propertyEncryptor - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
provider - Variable in class org.apache.nifi.authentication.generated.LoginIdentityProviders
Provider - Class in org.apache.nifi.authentication.generated: Java class for Provider complex type
Provider() - Constructor for class org.apache.nifi.authentication.generated.Provider
proxiedEntitiesChain - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
ProxiedEntitiesUtils - Class in org.apache.nifi.web.security
ProxiedEntitiesUtils() - Constructor for class org.apache.nifi.web.security.ProxiedEntitiesUtils
proxiedEntityEncoder - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
proxiedEntityGroups - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
PROXY_AUTHORIZABLE - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationProvider
PROXY_ENTITIES_ACCEPTED - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
PROXY_ENTITIES_CHAIN - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
PROXY_ENTITIES_DETAILS - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
PROXY_ENTITY_GROUPS - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
PROXY_ENTITY_GROUPS_EMPTY - Static variable in class org.apache.nifi.web.security.ProxiedEntitiesUtils
publicKey - Variable in class org.apache.nifi.web.security.jwt.key.Ed25519Verifier

R

READ_TIMEOUT - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
readAuthorizedClient(AuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
REFRESH_TOKEN - Enum constant in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint
refreshRequests - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
refreshToken - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClient
refreshTokenResponseClient - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
refreshWindow - Variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
REGISTRATION_ID - Enum constant in enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty: Registration Identifier for URL path matching
REGISTRATION_ID - Enum constant in enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty: Registration Identifier to maintain compatibility with initial SAML 2 implementation
REGISTRATION_ID_KEY - Static variable in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
REGISTRATION_REDIRECT_URI - Static variable in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
RegistrationBuilderProvider - Interface in org.apache.nifi.web.security.saml2.registration: Provider interface for Relying Party Registration Builder abstracting access to metadata from a configurable location
relyingPartyRegistration - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
relyingPartyRegistrationRepository() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Relying Party Registration Repository generated using NiFi Properties
relyingPartyRegistrationResolver() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Relying Party Registration Resolver for SAML 2 initial login processing
removeAuthenticationRequest(HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository: Remove Authentication Request from cache and remove cookies
removeAuthorizationBearerCookie(HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
removeAuthorizationRequest(HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository: Remove Authorization Request from cache and remove HTTP cookie with Request Identifier
removeAuthorizedClient(String, Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: Remove Authorized Client from State Manager
removeAuthorizedClient(Authentication) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
removeCookie(URI, HttpServletResponse, ApplicationCookieName) - Method in interface org.apache.nifi.web.security.cookie.ApplicationCookieService: Generate cookie with an empty value instructing the client to remove the cookie
removeCookie(URI, HttpServletResponse, ApplicationCookieName) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService: Generate cookie with an empty value instructing the client to remove the cookie with a maximum age of 60 seconds
removeLogoutRequest(HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository: Remove Logout Request
REPLICATED_REQUEST_HEADER - Static variable in class org.apache.nifi.web.security.csrf.SkipReplicatedCsrfFilter: Replication HTTP Header applied to replicated cluster requests
repository - Variable in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
REQUEST_EXPIRATION - Static variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
REQUEST_EXPIRATION - Static variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
REQUEST_MATCHER - Static variable in class org.apache.nifi.web.security.csrf.SkipReplicatedCsrfFilter: Requests containing replicated header and not containing authorization cookies will be skipped
REQUEST_MAXIMUM_CACHE_SIZE - Static variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
REQUEST_PARAMETER - Static variable in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository
REQUEST_TOKEN - Enum constant in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: Cross-Site Request Forgery mitigation token requires Strict Same Site handling
REQUEST_TOKEN - Enum constant in enum class org.apache.nifi.web.security.http.SecurityCookieName: See IETF Cookie Prefixes Draft Section 3.1 related to Secure prefix handling
REQUEST_TOKEN - Enum constant in enum class org.apache.nifi.web.security.http.SecurityHeader: Custom Request Token Header for CSRF mitigation
requestIdentifier - Variable in class org.apache.nifi.web.security.logout.LogoutRequest
requestLookup - Variable in class org.apache.nifi.web.security.logout.LogoutRequestManager
requestMatcher - Variable in class org.apache.nifi.web.security.logout.StandardLogoutFilter
requestMatcher - Variable in class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
REQUIRED_CLAIMS - Static variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
requiresAuthentication() - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
resolve(HttpServletRequest) - Method in class org.apache.nifi.web.security.jwt.resolver.StandardBearerTokenResolver: Resolve Bearer Token from HTTP Request checking Authorization Header then Authorization Cookie when found
resolve(HttpServletRequest) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver: Resolve Authorization Request delegating to default resolver
resolve(HttpServletRequest, String) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver: Resolve Authorization Request delegating to default resolver
resolve(HttpServletRequest, String) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver: Resolve Registration from Repository and resolve template locations based on allowed proxy headers
resolveCsrfTokenValue(HttpServletRequest, CsrfToken) - Method in class org.apache.nifi.web.security.csrf.StandardCsrfTokenRequestAttributeHandler: Resolve CSRF Token Value from HTTP Request Header
resolver - Variable in class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver
resolveUrl(String, String, RelyingPartyRegistration) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver
resourceLoader - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
ResponseAuthenticationConverter - Class in org.apache.nifi.web.security.saml2.service.authentication: Converter from SAML 2 Response Token to SAML 2 Authentication for Spring Security
ResponseAuthenticationConverter(String) - Constructor for class org.apache.nifi.web.security.saml2.service.authentication.ResponseAuthenticationConverter: Response Authentication Converter with optional Group Attribute Name
responseStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
ResponseStatus() - Constructor for enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
restClient - Variable in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
restOperations - Variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
restOperations - Variable in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
REVOCATION_ENDPOINT - Static variable in class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
revocationExpirationCommand() - Method in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration: Revocation Expiration Command responsible for removing expired application Bearer Token revocation records
RevocationExpirationCommand - Class in org.apache.nifi.web.security.jwt.revocation.command: Revocation Expiration Command removes expired Revocations
RevocationExpirationCommand(JwtRevocationService) - Constructor for class org.apache.nifi.web.security.jwt.revocation.command.RevocationExpirationCommand
Revoked - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus
REVOKED_ERROR - Static variable in class org.apache.nifi.web.security.jwt.revocation.JwtRevocationValidator
ROOT_PATH - Static variable in class org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter
ROOT_PATH - Static variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
ROOT_PATH - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
ROOT_PATH - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
RSA_JWS_ALGORITHM - Static variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
RSA_KEY_ALGORITHM - Static variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
RSA_PUBLIC_KEY_ALGORITHM - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
run() - Method in class org.apache.nifi.web.security.jwt.key.command.KeyExpirationCommand: Run deletes expired Verification Keys
run() - Method in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand: Run generates a new Key Pair and notifies configured listeners
run() - Method in class org.apache.nifi.web.security.jwt.revocation.command.RevocationExpirationCommand: Run deletes expired Revocations
run() - Method in class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand: Run expiration command and send Token Revocation Requests for Refresh Tokens of expired Authorized Clients

S

sameSitePolicy - Variable in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName
SameSitePolicy - Enum Class in org.apache.nifi.web.security.cookie: Cookie SameSite attribute policy
SameSitePolicy(String) - Constructor for enum class org.apache.nifi.web.security.cookie.SameSitePolicy
SAML_REQUEST_IDENTIFIER - Enum constant in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: SAML Requests use external identity providers requiring no Same Site restrictions
saml2AuthenticationRequestRepository() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security Saml 2 Authentication Request Repository for tracking SAML 2 across multiple HTTP requests
saml2AuthenticationRequestResolver() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Authentication Request Resolver uses OpenSAML 4
Saml2AuthenticationSuccessHandler - Class in org.apache.nifi.web.security.saml2.web.authentication: SAML 2 Authentication Success Handler redirects to the user interface and sets a Session Cookie with a Bearer Token
Saml2AuthenticationSuccessHandler(BearerTokenProvider, List<IdentityMapping>, List<IdentityMapping>, Duration) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler: SAML 2 Authentication Success Handler requires Bearer Token Provider and expiration for generated tokens
saml2LocalLogoutFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: SAML 2 Local Logout Filter for clearing application caches on Logout requests
Saml2LocalLogoutFilter - Class in org.apache.nifi.web.security.saml2.web.authentication.logout: SAML 2 Logout Filter completes application Logout Requests
Saml2LocalLogoutFilter(LogoutSuccessHandler) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LocalLogoutFilter
saml2LogoutRequestFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Single Logout Request Filter processing from an IDP
saml2LogoutRequestRepository() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: SAML 2 Logout Request Repository for tracking Single Logout requests
saml2LogoutRequestResolver() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Logout Request Resolver uses OpenSAML 4
saml2LogoutRequestValidator() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Logout Request Validator
saml2LogoutResponseFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Single Logout Response Filter processing from an IDP
saml2LogoutResponseResolver() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Logout Response Resolver uses OpenSAML 4
saml2LogoutResponseValidator() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Logout Response Validator
saml2LogoutSuccessHandler() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Standard SAML 2 Logout Success Handler for Logout processing after Single or Local Logout success
Saml2LogoutSuccessHandler - Class in org.apache.nifi.web.security.saml2.web.authentication.logout: SAML 2 Logout Success Handler implementation for completing application Logout Requests
Saml2LogoutSuccessHandler(LogoutRequestManager) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2LogoutSuccessHandler
saml2MetadataFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Metadata Filter returns SAML 2 Metadata XML
saml2MetadataResolver() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Metadata Resolver
Saml2RegistrationProperty - Enum Class in org.apache.nifi.web.security.saml2.registration: SAML 2 configuration for Registration information
Saml2RegistrationProperty(String) - Constructor for enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty
saml2SingleLogoutFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security Single Logout Filter for initiating Single Logout Requests sending to an IDP
Saml2SingleLogoutFilter - Class in org.apache.nifi.web.security.saml2.web.authentication.logout: SAML 2 Single Local Filter processes Single Logout Requests
Saml2SingleLogoutFilter(LogoutRequestManager, LogoutSuccessHandler) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutFilter
saml2SingleLogoutHandler() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Standard SAML 2 Single Logout Handler
Saml2SingleLogoutHandler - Class in org.apache.nifi.web.security.saml2.web.authentication.logout: Standard SAML 2 Single Logout Handler for tracking Logout Requests with Spring Saml2LogoutRequestFilter
Saml2SingleLogoutHandler() - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.logout.Saml2SingleLogoutHandler
saml2SingleLogoutSuccessHandler() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: SAML 2 Logout Success Handler for Single Logout processing
saml2WebSsoAuthenticationFilter(AuthenticationManager, AuthenticationDetailsSource<HttpServletRequest, NiFiWebAuthenticationDetails>) - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Web SSO Authentication Filter for SAML 2 login response processing from an IDP
saml2WebSsoAuthenticationRequestFilter() - Method in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration: Spring Security SAML 2 Web SSO Authentication Request Filter for SAML 2 initial login sending to an IDP
SamlAuthenticationSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: SAML Configuration for Authentication Security
SamlAuthenticationSecurityConfiguration(NiFiProperties, BearerTokenProvider, LogoutRequestManager, X509ExtendedKeyManager, X509ExtendedTrustManager) - Constructor for class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
SamlConfigurationException - Exception Class in org.apache.nifi.web.security.saml2: SAML Configuration Exception
SamlConfigurationException(String) - Constructor for exception class org.apache.nifi.web.security.saml2.SamlConfigurationException
SamlConfigurationException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.saml2.SamlConfigurationException
SamlUrlPath - Enum Class in org.apache.nifi.web.security.saml2: Shared configuration for SAML URL Paths
SamlUrlPath(String) - Constructor for enum class org.apache.nifi.web.security.saml2.SamlUrlPath
save(String, Key, Instant) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService: Save Verification Key
save(String, Key, Instant) - Method in interface org.apache.nifi.web.security.jwt.key.service.VerificationKeyService: Save Key with associated expiration
saveAuthenticationRequest(AbstractSaml2AuthenticationRequest, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository: Save Authentication Request in cache and add cookies to HTTP responses
saveAuthorizationRequest(OAuth2AuthorizationRequest, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository: Save Authorization Request in cache and set HTTP Request Identifier cookie for tracking
saveAuthorizedClient(OAuth2AuthorizedClient, Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: Save Authorized Client in State Manager
saveLogoutRequest(Saml2LogoutRequest, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository: Save Logout Request in cache and set cookies
saveToken(CsrfToken, HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository: Save CSRF Token in HTTP Servlet Response using defaults that allow JavaScript read for session cookies
SCOPE - Static variable in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
SCOPE - Static variable in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService
SCOPE - Static variable in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
SECRET_KEY_ALGORITHMS - Static variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
SECURE_ENABLED - Static variable in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
secureRequest - Variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken
SecurityCookieName - Enum Class in org.apache.nifi.web.security.http: Enumeration of HTTP Cookie Names for Security
SecurityCookieName(String) - Constructor for enum class org.apache.nifi.web.security.http.SecurityCookieName
securityFilterChain(HttpSecurity, NiFiProperties, StandardAuthenticationEntryPoint, X509AuthenticationFilter, BearerTokenAuthenticationFilter, NiFiAnonymousAuthenticationFilter, OAuth2LoginAuthenticationFilter, OAuth2AuthorizationCodeGrantFilter, OAuth2AuthorizationRequestRedirectFilter, OidcBearerTokenRefreshFilter, OidcLogoutFilter, Saml2WebSsoAuthenticationFilter, Saml2WebSsoAuthenticationRequestFilter, Saml2MetadataFilter, Saml2LogoutRequestFilter, Saml2LogoutResponseFilter, Saml2SingleLogoutFilter, Saml2LocalLogoutFilter) - Method in class org.apache.nifi.web.security.configuration.WebSecurityConfiguration
SecurityHeader - Enum Class in org.apache.nifi.web.security.http: Enumeration of HTTP Headers for Security
SecurityHeader(String) - Constructor for enum class org.apache.nifi.web.security.http.SecurityHeader
selectJWSKeys(JWSHeader, C) - Method in class org.apache.nifi.web.security.jwt.jws.StandardJWSKeySelector: Select JSON Web Signature Key using Key Identifier from JWS Header
sendErrorMessage(HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
serializeVerificationKey(VerificationKey) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
SESSION_EXPIRED - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
setAlgorithm(String) - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
setAuthenticated(boolean) - Method in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, NiFiWebAuthenticationDetails>) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
setAuthenticationManager(AuthenticationManager) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
setCertificateExtractor(X509CertificateExtractor) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
setCertificateValidator(X509CertificateValidator) - Method in class org.apache.nifi.web.security.x509.X509IdentityProvider
setClazz(String) - Method in class org.apache.nifi.authentication.generated.Provider: Sets the value of the clazz property.
setEncoded(byte[]) - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
setEncryption(String) - Method in class org.apache.nifi.authentication.generated.Property: Sets the value of the encryption property.
setExpiration(String, Instant) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService: Set Expiration of Verification Key when found
setExpiration(String, Instant) - Method in interface org.apache.nifi.web.security.jwt.key.service.VerificationKeyService: Set Expiration for specified Key Identifier
setExpiration(Instant) - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
setExtensionManager(ExtensionManager) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
setId(String) - Method in class org.apache.nifi.web.security.jwt.key.service.VerificationKey
setIdentifier(String) - Method in class org.apache.nifi.authentication.generated.Provider: Sets the value of the identifier property.
setIdentityConverter(Converter<Saml2AuthenticatedPrincipal, String>) - Method in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler: Set Identity Converter for customized mapping of SAML 2 Authenticated Principal to user identity
setName(String) - Method in class org.apache.nifi.authentication.generated.Property: Sets the value of the name property.
setOcspValidator(OcspCertificateValidator) - Method in class org.apache.nifi.web.security.x509.X509CertificateValidator
setPrincipalExtractor(X509PrincipalExtractor) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter
setPrincipalExtractor(X509PrincipalExtractor) - Method in class org.apache.nifi.web.security.x509.X509IdentityProvider
setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter
setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
setResponseCookie(HttpServletResponse, ResponseCookie) - Method in class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
setResponseStatus(OcspStatus.ResponseStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
setRevoked(String, Instant) - Method in interface org.apache.nifi.web.security.jwt.revocation.JwtRevocationService: Set Revoked Status using JSON Web Token Identifier
setRevoked(String, Instant) - Method in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService: Set Revoked Status is synchronized to avoid competing changes to the State Map
setStateMap(Map<String, String>) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
setValidationStatus(OcspStatus.ValidationStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
setValue(String) - Method in class org.apache.nifi.authentication.generated.Property: Sets the value of the value property.
setVerificationKey(VerificationKey) - Method in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService: Set Verification Key is synchronized to avoid competing updates to the State Map
setVerificationStatus(OcspStatus.VerificationStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
sign(JWSHeader, byte[]) - Method in class org.apache.nifi.web.security.jwt.key.Ed25519Signer: Sign bytes for EdDSA algorithm using configured Ed25519 Private Key
SignatureRequired - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
signerListener - Variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
SignerListener - Interface in org.apache.nifi.web.security.jwt.jws: Listener handling JWS Signer events
SIGNING_ALGORITHM - Static variable in class org.apache.nifi.web.security.jwt.key.Ed25519Signer
SIGNING_ALGORITHM - Static variable in class org.apache.nifi.web.security.jwt.key.Ed25519Verifier
signingKeyListener - Variable in class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider
SigningKeyListener - Interface in org.apache.nifi.web.security.jwt.jws: Listener handling Signing Key events
SINGLE_LOGOUT_REQUEST - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
SINGLE_LOGOUT_RESPONSE - Enum constant in enum class org.apache.nifi.web.security.saml2.SamlUrlPath
SINGLE_LOGOUT_RESPONSE_SERVICE_LOCATION - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
SkipReplicatedCsrfFilter - Class in org.apache.nifi.web.security.csrf: Skip Replicated Cross-Site Request Forgery Filter disables subsequent filtering for matched requests
SkipReplicatedCsrfFilter() - Constructor for class org.apache.nifi.web.security.csrf.SkipReplicatedCsrfFilter
sslContext - Variable in class org.apache.nifi.web.security.configuration.ClientRegistrationConfiguration
STANDARD_KEY_PAIR_ALGORITHM - Static variable in class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration: Standard Key Pair Algorithm for signing JSON Web Tokens
STANDARD_KEY_PAIR_ALGORITHM_FILTER - Static variable in class org.apache.nifi.web.security.configuration.KeyPairGeneratorConfiguration
STANDARD_SCOPES - Static variable in class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
StandardApplicationCookieService - Class in org.apache.nifi.web.security.cookie: Standard implementation of Application Cookie Service using Spring Framework utilities
StandardApplicationCookieService() - Constructor for class org.apache.nifi.web.security.cookie.StandardApplicationCookieService
StandardAuthenticationEntryPoint - Class in org.apache.nifi.web.security: Standard Authentication Entry Point delegates to Bearer Authentication Entry Point and performs additional processing
StandardAuthenticationEntryPoint(BearerTokenAuthenticationEntryPoint) - Constructor for class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
StandardAuthorizationRequestRepository - Class in org.apache.nifi.web.security.oidc.client.web: OAuth2 Authorization Request Repository with Spring Cache storage and Request Identifier tracked using HTTP cookies
StandardAuthorizationRequestRepository(Cache) - Constructor for class org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository: Standard Authorization Request Repository Constructor
StandardAuthorizedClientConverter - Class in org.apache.nifi.web.security.oidc.client.web.converter: Standard Authorized Client Converter with JSON serialization and encryption
StandardAuthorizedClientConverter(PropertyEncryptor, ClientRegistrationRepository) - Constructor for class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter
StandardBearerTokenProvider - Class in org.apache.nifi.web.security.jwt.provider: Standard Bearer Token Provider supports returning serialized and signed JSON Web Tokens
StandardBearerTokenProvider(JwsSignerProvider, IssuerProvider) - Constructor for class org.apache.nifi.web.security.jwt.provider.StandardBearerTokenProvider
StandardBearerTokenResolver - Class in org.apache.nifi.web.security.jwt.resolver: Bearer Token Resolver prefers the HTTP Authorization Header and then evaluates the Authorization Cookie when found
StandardBearerTokenResolver() - Constructor for class org.apache.nifi.web.security.jwt.resolver.StandardBearerTokenResolver
StandardClientRegistrationProvider - Class in org.apache.nifi.web.security.oidc.registration: Standard implementation of Client Registration Provider using Application Properties
StandardClientRegistrationProvider(NiFiProperties, RestClient) - Constructor for class org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider
StandardCookieCsrfTokenRepository - Class in org.apache.nifi.web.security.csrf: Standard implementation of CSRF Token Repository using stateless Spring Security double-submit cookie strategy
StandardCookieCsrfTokenRepository() - Constructor for class org.apache.nifi.web.security.csrf.StandardCookieCsrfTokenRepository
StandardCookieCsrfTokenRepository.CsrfApplicationCookieService - Class in org.apache.nifi.web.security.csrf
StandardCsrfTokenRequestAttributeHandler - Class in org.apache.nifi.web.security.csrf: Cross-Site Request Forgery Mitigation Token Handler implementation supporting resolution using Request Header
StandardCsrfTokenRequestAttributeHandler() - Constructor for class org.apache.nifi.web.security.csrf.StandardCsrfTokenRequestAttributeHandler
StandardIssuerJwtDecoder - Class in org.apache.nifi.web.security.jwt.converter: JSON Web Token Decoder capable of delegating to specific Decoder based on Issuer claims for OpenID Connect Clients
StandardIssuerJwtDecoder(JwtDecoder, JwtDecoderFactory<ClientRegistration>, ClientRegistrationRepository) - Constructor for class org.apache.nifi.web.security.jwt.converter.StandardIssuerJwtDecoder: Standard constructor with default application JWT Decoder and factory providing OpenID Connect JWT Decoder
StandardIssuerProvider - Class in org.apache.nifi.web.security.jwt.provider: Standard Issuer Provider with configurable host and port for HTTPS URI construction
StandardIssuerProvider(String, int) - Constructor for class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider: Standard Issuer Provider constructor with optional host and required port properties
StandardJWSKeySelector<C> - Class in org.apache.nifi.web.security.jwt.jws: Standard JSON Web Signature Key Selector for selecting keys using Key Identifier
StandardJWSKeySelector(VerificationKeySelector) - Constructor for class org.apache.nifi.web.security.jwt.jws.StandardJWSKeySelector: Standard JSON Web Signature Key Selector constructor requires a Verification Key Selector
StandardJwsSignerProvider - Class in org.apache.nifi.web.security.jwt.jws: Standard JSON Web Signature Signer Provider
StandardJwsSignerProvider(SigningKeyListener) - Constructor for class org.apache.nifi.web.security.jwt.jws.StandardJwsSignerProvider
StandardJWSVerifierFactory - Class in org.apache.nifi.web.security.jwt.key: Standard implementation of JSON Web Signature Verifier Factory
StandardJWSVerifierFactory() - Constructor for class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory
StandardJwtAuthenticationConverter - Class in org.apache.nifi.web.security.jwt.converter: Standard Converter from JSON Web Token to NiFi Authentication Token
StandardJwtAuthenticationConverter(Authorizer, NiFiProperties) - Constructor for class org.apache.nifi.web.security.jwt.converter.StandardJwtAuthenticationConverter
StandardJwtLogoutListener - Class in org.apache.nifi.web.security.jwt.revocation: Standard JSON Web Token Logout Listener handles parsing and revocation
StandardJwtLogoutListener(JwtDecoder, JwtRevocationService) - Constructor for class org.apache.nifi.web.security.jwt.revocation.StandardJwtLogoutListener
StandardJwtRevocationService - Class in org.apache.nifi.web.security.jwt.revocation: Standard JSON Web Token Revocation Service using State Manager
StandardJwtRevocationService(StateManager) - Constructor for class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService
StandardLoginIdentityProviderConfigurationContext - Class in org.apache.nifi.web.security.spring
StandardLoginIdentityProviderConfigurationContext(String, Map<String, String>) - Constructor for class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderConfigurationContext
StandardLoginIdentityProviderInitializationContext - Class in org.apache.nifi.web.security.spring
StandardLoginIdentityProviderInitializationContext(String, LoginIdentityProviderLookup) - Constructor for class org.apache.nifi.web.security.spring.StandardLoginIdentityProviderInitializationContext
StandardLogoutFilter - Class in org.apache.nifi.web.security.logout: Standard Logout Filter completes application Logout Requests
StandardLogoutFilter(AntPathRequestMatcher, LogoutSuccessHandler) - Constructor for class org.apache.nifi.web.security.logout.StandardLogoutFilter
StandardOAuth2AuthenticationToken - Class in org.apache.nifi.web.security.oidc.client.web.converter: OAuth2 Authentication Token extended to include the OAuth2 Access Token
StandardOAuth2AuthenticationToken(OAuth2User, Collection<? extends GrantedAuthority>, String, OAuth2AccessToken) - Constructor for class org.apache.nifi.web.security.oidc.client.web.converter.StandardOAuth2AuthenticationToken
StandardOAuth2AuthorizationRequestResolver - Class in org.apache.nifi.web.security.oidc.client.web: Authorization Request Resolver supports handling of headers from reverse proxy servers
StandardOAuth2AuthorizationRequestResolver(ClientRegistrationRepository) - Constructor for class org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver: Resolver constructor delegates to the Spring Security Default Resolver and uses the default Request Base URI
StandardOidcAuthorizedClientRepository - Class in org.apache.nifi.web.security.oidc.client.web: OpenID Connect implementation of Authorized Client Repository for storing OAuth2 Tokens
StandardOidcAuthorizedClientRepository(StateManager, AuthorizedClientConverter) - Constructor for class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: Standard OpenID Connect Authorized Client Repository Constructor
StandardOidcIdTokenDecoderFactory - Class in org.apache.nifi.web.security.oidc.authentication: OpenID Connect ID Token Decoder Factory with configurable REST Operations for retrieval of JSON Web Keys
StandardOidcIdTokenDecoderFactory(String, RestOperations) - Constructor for class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory: Standard constructor with optional JWS Algorithm and required REST Operations for retrieving JSON Web Keys
StandardOidcUser - Class in org.apache.nifi.web.security.oidc.userinfo: Standard extension of Spring Security OIDC User supporting customized name configuration
StandardOidcUser(Collection<? extends GrantedAuthority>, OidcIdToken, OidcUserInfo, String, String) - Constructor for class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUser: Standard OIDC User constructor with required parameters and customized name value for identification
StandardOidcUserService - Class in org.apache.nifi.web.security.oidc.userinfo: Standard extension of Spring Security OIDC User Service supporting customized identity claim mapping
StandardOidcUserService(List<String>, List<IdentityMapping>) - Constructor for class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUserService: Standard OIDC User Service constructor with arguments derived from application properties for mapping usernames
StandardRegistrationBuilderProvider - Class in org.apache.nifi.web.security.saml2.registration: Standard Registration Builder Provider implementation based on NiFi Application Properties
StandardRegistrationBuilderProvider(NiFiProperties, X509KeyManager, X509TrustManager) - Constructor for class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
StandardRelyingPartyRegistrationRepository - Class in org.apache.nifi.web.security.saml2.registration: Standard implementation of Relying Party Registration Repository based on NiFi Properties
StandardRelyingPartyRegistrationRepository(NiFiProperties, X509ExtendedKeyManager, X509ExtendedTrustManager) - Constructor for class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository: Standard implementation builds a Registration based on NiFi Properties and returns the same instance for all queries
StandardRelyingPartyRegistrationResolver - Class in org.apache.nifi.web.security.saml2.service.web: Standard Relying Party Registration Resolver with support for proxy headers
StandardRelyingPartyRegistrationResolver(RelyingPartyRegistrationRepository) - Constructor for class org.apache.nifi.web.security.saml2.service.web.StandardRelyingPartyRegistrationResolver: Standard Resolver with Registration Repository and Allowed Context Paths from application properties
StandardSaml2AuthenticationRequestRepository - Class in org.apache.nifi.web.security.saml2.service.web: Standard implementation of SAML 2 Authentication Request Repository using cookies
StandardSaml2AuthenticationRequestRepository(Cache) - Constructor for class org.apache.nifi.web.security.saml2.service.web.StandardSaml2AuthenticationRequestRepository: Standard SAML 2 Authentication Request Repository with Spring Cache abstraction
StandardSaml2LogoutRequestRepository - Class in org.apache.nifi.web.security.saml2.web.authentication.logout: Standard implementation of SAML 2 Logout Request Repository using cookies
StandardSaml2LogoutRequestRepository(Cache) - Constructor for class org.apache.nifi.web.security.saml2.web.authentication.logout.StandardSaml2LogoutRequestRepository
StandardTokenRevocationResponseClient - Class in org.apache.nifi.web.security.oidc.revocation: Standard implementation for handling Token Revocation Requests using Spring REST Operations
StandardTokenRevocationResponseClient(RestOperations, ClientRegistrationRepository) - Constructor for class org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient
StandardVerificationKeySelector - Class in org.apache.nifi.web.security.jwt.key: Standard Verification Key Selector implements listener interfaces for updating Key status
StandardVerificationKeySelector(VerificationKeyService, Duration) - Constructor for class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector
StandardVerificationKeyService - Class in org.apache.nifi.web.security.jwt.key.service: Standard Verification Key Service implemented using State Manager
StandardVerificationKeyService(StateManager) - Constructor for class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
start(LogoutRequest) - Method in class org.apache.nifi.web.security.logout.LogoutRequestManager
stateManager - Variable in class org.apache.nifi.web.security.jwt.key.service.StandardVerificationKeyService
stateManager - Variable in class org.apache.nifi.web.security.jwt.revocation.StandardJwtRevocationService
stateManager - Variable in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
stateManagerProvider - Variable in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration
stateManagerProvider - Variable in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration
statusCode - Variable in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponse
STRICT - Enum constant in enum class org.apache.nifi.web.security.cookie.SameSitePolicy: Instructs browsers to limit sending cookies to first-party-initiated requests
SUBJECT - Enum constant in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: RFC 7519 Section 4.1.2
subjectCertificate - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
SubjectDnX509PrincipalExtractor - Class in org.apache.nifi.web.security.x509: Principal extractor for extracting a DN.
SubjectDnX509PrincipalExtractor() - Constructor for class org.apache.nifi.web.security.x509.SubjectDnX509PrincipalExtractor
success - Variable in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponse
Successful - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
successfulAuthentication(HttpServletRequest, HttpServletResponse) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: If a successfully authenticated request was made via a proxy, relevant proxy headers will be added to the response.
successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter: If authentication was successful, apply the successful authentication result to the security context and add proxy headers to the response if the request was made via a proxy.
SUPPORTED_ALGORITHMS - Static variable in class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory: Supported Algorithms aligned with supported Signers
SupportedClaim - Enum Class in org.apache.nifi.web.security.jwt.provider: Supported Claim for JSON Web Tokens
SupportedClaim(String) - Constructor for enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim
supportedJWSAlgorithms() - Method in class org.apache.nifi.web.security.jwt.key.StandardJWSVerifierFactory
supports(Class<?>) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationProvider
supports(Class<?>) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationProvider

T

TLS_PROTOCOL - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
token - Variable in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationRequest
tokenizeProxiedEntitiesChain(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Tokenizes the specified proxy chain.
tokenizeProxiedEntityGroups(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Tokenizes the specified proxied entity groups which are formatted the same as a proxy chain.
TokenRevocationRequest - Class in org.apache.nifi.web.security.oidc.revocation: OAuth2 Token Revocation Request as described in RFC 7009 Section 2.1
TokenRevocationRequest(String, String) - Constructor for class org.apache.nifi.web.security.oidc.revocation.TokenRevocationRequest
TokenRevocationResponse - Class in org.apache.nifi.web.security.oidc.revocation: OAuth2 Token Revocation Request as described in RFC 7009 Section 2.1
TokenRevocationResponse(boolean, int) - Constructor for class org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponse
tokenRevocationResponseClient - Variable in class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand
tokenRevocationResponseClient - Variable in class org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler
tokenRevocationResponseClient() - Method in class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: Token Revocation Response Client responsible for transmitting Refresh Token revocation requests to the Provider
TokenRevocationResponseClient - Interface in org.apache.nifi.web.security.oidc.revocation: Abstraction for processing Token Revocation requests according to RFC 7009
tokenTypeHint - Variable in class org.apache.nifi.web.security.oidc.revocation.TokenRevocationRequest
TokenTypeHint - Enum Class in org.apache.nifi.web.security.oidc.revocation: Token Type Hint values as defined in RFC 7009 Section 2.1
TokenTypeHint(String) - Constructor for enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint
tokenValue - Variable in class org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedToken
toString() - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousAuthenticationRequestToken
toString() - Method in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
toString() - Method in class org.apache.nifi.web.security.token.LoginAuthenticationToken
toString() - Method in class org.apache.nifi.web.security.token.NiFiAuthenticationToken
toString() - Method in class org.apache.nifi.web.security.util.CacheKey
toString() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest
toString() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
toString() - Method in class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken
trackedAuthorizedClientRepository - Variable in class org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand
TrackedAuthorizedClientRepository - Interface in org.apache.nifi.web.security.oidc.client.web: Tracked abstraction for Authorized Client Repository supporting deletion of expired clients
trustedCAs - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
trustManager - Variable in class org.apache.nifi.web.security.configuration.SamlAuthenticationSecurityConfiguration
trustManager - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRegistrationBuilderProvider
trustManager - Variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
TryLater - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus

U

UI_PATH - Static variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
UI_PATH - Static variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
Unauthorized - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
UNAUTHORIZED - Static variable in class org.apache.nifi.web.security.StandardAuthenticationEntryPoint
UNFILTERED_ISSUERS - Static variable in class org.apache.nifi.web.security.saml2.registration.StandardRelyingPartyRegistrationRepository
UNFILTERED_PATHS - Static variable in class org.apache.nifi.web.security.configuration.WebSecurityConfiguration
UNFILTERED_PATHS_REQUEST_MATCHER - Static variable in class org.apache.nifi.web.security.configuration.WebSecurityConfiguration
Unknown - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus
Unknown - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus
Unknown - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus
unsanitizeDn(String) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: Reconstitutes the original DN from the sanitized version passed in the proxy chain.
UNSPECIFIED_ERROR_URI - Static variable in class org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory
unsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.NiFiAuthenticationFilter: If authentication was unsuccessful, update the response with the appropriate status and give the reason for why the user was not able to be authenticated.
unsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Static method in class org.apache.nifi.web.security.ProxiedEntitiesUtils: If an unauthenticated request was made via a proxy, add proxy headers to explain why authentication failed.
UntrustedProxyException - Exception Class in org.apache.nifi.web.security
UntrustedProxyException(String) - Constructor for exception class org.apache.nifi.web.security.UntrustedProxyException
UntrustedProxyException(String, Throwable) - Constructor for exception class org.apache.nifi.web.security.UntrustedProxyException
Unverified - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus
updateState(String, Consumer<Map<String, String>>) - Method in class org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository
URI_FORMAT - Static variable in class org.apache.nifi.web.security.jwt.provider.StandardIssuerProvider
userAgent - Variable in class org.apache.nifi.web.security.NiFiWebAuthenticationDetails
userClaimNames - Variable in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUserService
userClaimNames - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
userIdentityMappings - Variable in class org.apache.nifi.web.security.oidc.userinfo.StandardOidcUserService
userIdentityMappings - Variable in class org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler
userIdentityMappings - Variable in class org.apache.nifi.web.security.saml2.web.authentication.Saml2AuthenticationSuccessHandler
USERNAME - Enum constant in enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute

V

validate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator: Validates the specified certificate using OCSP if configured.
validate(Jwt) - Method in class org.apache.nifi.web.security.jwt.revocation.JwtRevocationValidator: Validate checks JSON Web Token Identifier against Revocation Service
validateClientCertificate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.X509CertificateValidator: Extract the client certificate from the specified HttpServletRequest or null if none is specified.
validationAuthorityURI - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator
validationStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
ValidationStatus() - Constructor for enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus
value - Variable in class org.apache.nifi.authentication.generated.Property
valueOf(String) - Static method in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.cookie.SameSitePolicy: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.http.SecurityCookieName: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.http.SecurityHeader: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.oidc.OidcUrlPath: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.saml2.SamlUrlPath: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus: Returns the enum constant of this class with the specified name.
values() - Static method in enum class org.apache.nifi.web.security.cookie.ApplicationCookieName: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.cookie.SameSitePolicy: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.http.SecurityCookieName: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.http.SecurityHeader: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.jwt.provider.SupportedClaim: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.log.AuthenticationUserAttribute: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.oidc.client.web.OidcRegistrationProperty: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.oidc.OidcUrlPath: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.oidc.revocation.TokenTypeHint: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.saml2.registration.Saml2RegistrationProperty: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.saml2.SamlUrlPath: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus: Returns an array containing the constants of this enum class, in the order they are declared.
VerificationKey - Class in org.apache.nifi.web.security.jwt.key.service: Verification Key used for storing serialized instances
VerificationKey() - Constructor for class org.apache.nifi.web.security.jwt.key.service.VerificationKey
verificationKeyListener - Variable in class org.apache.nifi.web.security.jwt.key.command.KeyGenerationCommand
VerificationKeyListener - Interface in org.apache.nifi.web.security.jwt.key: Listener handling Verification Key events
verificationKeySelector - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
verificationKeySelector - Variable in class org.apache.nifi.web.security.jwt.jws.StandardJWSKeySelector
verificationKeySelector() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: Verification Key Selector with configured key rotation period
VerificationKeySelector - Interface in org.apache.nifi.web.security.jwt.key: Verification Key Selector returns a List of java.security.Key objects for signature verification
verificationKeyService - Variable in class org.apache.nifi.web.security.configuration.JwtAuthenticationSecurityConfiguration
verificationKeyService - Variable in class org.apache.nifi.web.security.jwt.key.command.KeyExpirationCommand
verificationKeyService - Variable in class org.apache.nifi.web.security.jwt.key.StandardVerificationKeySelector
verificationKeyService() - Method in class org.apache.nifi.web.security.configuration.JwtDecoderConfiguration: Verification Key Service using local State Manager for storing public keys
VerificationKeyService - Interface in org.apache.nifi.web.security.jwt.key.service: Verification Key Service for storing and retrieving keys
verificationStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus
VerificationStatus() - Constructor for enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus
Verified - Enum constant in enum class org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus
verify(JWSHeader, byte[], Base64URL) - Method in class org.apache.nifi.web.security.jwt.key.Ed25519Verifier: Verify input bytes for EdDSA using configured Ed25519 Public Key

W

WebSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: Application Security Configuration using Spring Security
WebSecurityConfiguration() - Constructor for class org.apache.nifi.web.security.configuration.WebSecurityConfiguration
withNarLoader(LoginIdentityProvider) - Method in class org.apache.nifi.web.security.spring.LoginIdentityProviderFactoryBean
writeAuthorizedClient(OidcAuthorizedClient) - Method in class org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter

X

x509AuthenticationFilter(AuthenticationManager, AuthenticationDetailsSource<HttpServletRequest, NiFiWebAuthenticationDetails>) - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
X509AuthenticationFilter - Class in org.apache.nifi.web.security.x509: Custom X509 filter that will inspect the HTTP headers for a proxied user before extracting the user details from the client certificate.
X509AuthenticationFilter() - Constructor for class org.apache.nifi.web.security.x509.X509AuthenticationFilter
x509AuthenticationProvider() - Method in class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
X509AuthenticationProvider - Class in org.apache.nifi.web.security.x509
X509AuthenticationProvider(X509IdentityProvider, Authorizer, NiFiProperties) - Constructor for class org.apache.nifi.web.security.x509.X509AuthenticationProvider
X509AuthenticationRequestToken - Class in org.apache.nifi.web.security.x509: This is an authentication request with a given JWT token.
X509AuthenticationRequestToken(String, String, X509PrincipalExtractor, X509Certificate[], String, Object) - Constructor for class org.apache.nifi.web.security.x509.X509AuthenticationRequestToken: Creates a representation of the jwt authentication request for a user.
X509AuthenticationSecurityConfiguration - Class in org.apache.nifi.web.security.configuration: X.509 Configuration for Authentication Security
X509AuthenticationSecurityConfiguration(NiFiProperties, Authorizer) - Constructor for class org.apache.nifi.web.security.configuration.X509AuthenticationSecurityConfiguration
X509CertificateExtractor - Class in org.apache.nifi.web.security.x509: Extracts client certificates from Http requests.
X509CertificateExtractor() - Constructor for class org.apache.nifi.web.security.x509.X509CertificateExtractor
X509CertificateValidator - Class in org.apache.nifi.web.security.x509: Extracts client certificates from Http requests.
X509CertificateValidator() - Constructor for class org.apache.nifi.web.security.x509.X509CertificateValidator
X509IdentityProvider - Class in org.apache.nifi.web.security.x509: Identity provider for extract the authenticating a ServletRequest with a X509Certificate.
X509IdentityProvider() - Constructor for class org.apache.nifi.web.security.x509.X509IdentityProvider

A B C D E F G H I J K L M N O P R S T U V W X
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form