io.confluent.kafka.server.plugins.auth.token

Class TokenBearerValidatorCallbackHandler

java.lang.Object

io.confluent.kafka.server.plugins.auth.token.TokenBearerValidatorCallbackHandler

All Implemented Interfaces:

CallbackHandler, org.apache.kafka.common.security.auth.AuthenticateCallbackHandler

public class TokenBearerValidatorCallbackHandler
extends Object
implements org.apache.kafka.common.security.auth.AuthenticateCallbackHandler

A CallbackHandler that recognizes TokenBearerValidatorCallbackHandler for validating a Authentication Tokens issued by Confluent.

It verifies the signature of a JWT through a public key it reads from a file path, set in the JAAS config.

This class must be explicitly set via the listener.name.sasl_[plaintext|ssl].oauthbearer.sasl.server.callback.handler.class broker configuration property.

Constructor Summary

Constructors

Constructor and Description
TokenBearerValidatorCallbackHandler()

Method Summary

Modifier and Type	Method and Description
void	close()
void	configure(Map<String,?> configs, String saslMechanism, List<AppConfigurationEntry> jaasConfigEntries)
void	handle(Callback[] callbacks)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

TokenBearerValidatorCallbackHandler

public TokenBearerValidatorCallbackHandler()

Method Detail

configure

public void configure(Map<String,?> configs,
                      String saslMechanism,
                      List<AppConfigurationEntry> jaasConfigEntries)

Specified by:

configure in interface org.apache.kafka.common.security.auth.AuthenticateCallbackHandler

handle

public void handle(Callback[] callbacks)
            throws UnsupportedCallbackException

Specified by:

handle in interface CallbackHandler

Throws:

UnsupportedCallbackException

close

public void close()

Specified by:

close in interface org.apache.kafka.common.security.auth.AuthenticateCallbackHandler