OAuthBearerValidatorCallbackHandler (ce-broker-plugins 7.4.4-ce API)

java.lang.Object
- io.confluent.kafka.server.plugins.auth.oauth.OAuthBearerValidatorCallbackHandler

All Implemented Interfaces:

CallbackHandler, org.apache.kafka.common.security.auth.AuthenticateCallbackHandler
```
public class OAuthBearerValidatorCallbackHandler
extends Object
implements org.apache.kafka.common.security.auth.AuthenticateCallbackHandler
```
A CallbackHandler that recognizes OAuthBearerValidatorCallback and OAuthBearerExtensionsValidatorCallback for validating a secured OAuth 2 bearer token issued by Confluent and SASL extensions specifying the logical cluster this token is meant for.
It verifies the signature of the JWTToken through a public key it reads from a file path, set in the JAAS config
This class must be explicitly set via the listener.name.sasl_[plaintext|ssl].oauthbearer.sasl.server.callback.handler.class broker configuration property.

Constructor Summary

Constructors
Constructor and Description

OAuthBearerValidatorCallbackHandler()

Constructors
Constructor and Description
`OAuthBearerValidatorCallbackHandler()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`close()`
`void`	`configure(Map<String,?> configs, String saslMechanism, List<AppConfigurationEntry> jaasConfigEntries)`
`void`	`handle(Callback[] callbacks)`
`protected boolean`	`isSniHostNameMatched(org.apache.kafka.common.security.oauthbearer.OAuthBearerExtensionsValidatorCallback callback, String logicalClusterId, String sniHostName, SniValidationMode sniValidationMode)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- OAuthBearerValidatorCallbackHandler
```
public OAuthBearerValidatorCallbackHandler()
```

Method Detail

configure

public void configure(Map<String,?> configs,
                      String saslMechanism,
                      List<AppConfigurationEntry> jaasConfigEntries)

Specified by:: configure in interface org.apache.kafka.common.security.auth.AuthenticateCallbackHandler

handle

public void handle(Callback[] callbacks)
            throws UnsupportedCallbackException

Specified by:: handle in interface CallbackHandler
Throws:: UnsupportedCallbackException

close
```
public void close()
```
Specified by:

close in interface org.apache.kafka.common.security.auth.AuthenticateCallbackHandler

isSniHostNameMatched

protected boolean isSniHostNameMatched(org.apache.kafka.common.security.oauthbearer.OAuthBearerExtensionsValidatorCallback callback,
                                       String logicalClusterId,
                                       String sniHostName,
                                       SniValidationMode sniValidationMode)

Class OAuthBearerValidatorCallbackHandler

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

OAuthBearerValidatorCallbackHandler

Method Detail

configure

handle

close

isSniHostNameMatched