public class org.apache.nifi.web.security.configuration.OidcSecurityConfiguration extends java.lang.Object
{
private static final java.time.Duration REQUEST_EXPIRATION;
private static final long AUTHORIZATION_REQUEST_CACHE_SIZE;
private static final java.time.Duration DEFAULT_SOCKET_TIMEOUT;
private static final java.lang.String NIFI_TRUSTSTORE_STRATEGY;
private static final org.springframework.security.web.savedrequest.RequestCache nullRequestCache;
private final java.time.Duration keyRotationPeriod;
private final org.apache.nifi.util.NiFiProperties properties;
private final org.apache.nifi.components.state.StateManagerProvider stateManagerProvider;
private final org.apache.nifi.encrypt.PropertyEncryptor propertyEncryptor;
private final org.apache.nifi.web.security.jwt.provider.BearerTokenProvider bearerTokenProvider;
private final org.springframework.security.oauth.server.resource.web.BearerTokenResolver bearerTokenResolver;
private final org.apache.nifi.admin.service.IdpUserGroupService idpUserGroupService;
private final org.springframework.security.oauth.jwt.JwtDecoder jwtDecoder;
private final org.apache.nifi.web.security.logout.LogoutRequestManager logoutRequestManager;
public void <init>(org.apache.nifi.util.NiFiProperties, org.apache.nifi.components.state.StateManagerProvider, org.apache.nifi.encrypt.PropertyEncryptor, org.apache.nifi.web.security.jwt.provider.BearerTokenProvider, org.springframework.security.oauth.server.resource.web.BearerTokenResolver, org.apache.nifi.admin.service.IdpUserGroupService, org.springframework.security.oauth.jwt.JwtDecoder, org.apache.nifi.web.security.logout.LogoutRequestManager)
{
org.apache.nifi.encrypt.PropertyEncryptor v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.jwt.provider.BearerTokenProvider v;
java.time.Duration v;
org.apache.nifi.web.security.logout.LogoutRequestManager v;
org.apache.nifi.admin.service.IdpUserGroupService v;
org.springframework.security.oauth.server.resource.web.BearerTokenResolver v;
org.apache.nifi.components.state.StateManagerProvider v;
org.springframework.security.oauth.jwt.JwtDecoder v;
org.apache.nifi.util.NiFiProperties v;
java.lang.Object v, v, v, v, v, v, v, v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v := @parameter: org.apache.nifi.util.NiFiProperties;
v := @parameter: org.apache.nifi.components.state.StateManagerProvider;
v := @parameter: org.apache.nifi.encrypt.PropertyEncryptor;
v := @parameter: org.apache.nifi.web.security.jwt.provider.BearerTokenProvider;
v := @parameter: org.springframework.security.oauth.server.resource.web.BearerTokenResolver;
v := @parameter: org.apache.nifi.admin.service.IdpUserGroupService;
v := @parameter: org.springframework.security.oauth.jwt.JwtDecoder;
v := @parameter: org.apache.nifi.web.security.logout.LogoutRequestManager;
specialinvoke v.<java.lang.Object: void <init>()>();
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "Properties required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "State Manager Provider required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.components.state.StateManagerProvider stateManagerProvider> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "Property Encryptor required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.encrypt.PropertyEncryptor propertyEncryptor> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "Bearer Token Provider required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.jwt.provider.BearerTokenProvider bearerTokenProvider> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "Bearer Token Resolver required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.server.resource.web.BearerTokenResolver bearerTokenResolver> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "User Group Service required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.admin.service.IdpUserGroupService idpUserGroupService> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "JWT Decoder required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.jwt.JwtDecoder jwtDecoder> = v;
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "Logout Request Manager required");
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.logout.LogoutRequestManager logoutRequestManager> = v;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.time.Duration getSecurityUserJwsKeyRotationPeriod()>();
v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration keyRotationPeriod> = v;
return;
}
public org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter oAuth2AuthorizationCodeGrantFilter(org.springframework.security.authentication.AuthenticationManager)
{
org.springframework.security.web.savedrequest.RequestCache v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter v;
org.springframework.security.authentication.AuthenticationManager v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
org.springframework.security.oauth.client.web.AuthorizationRequestRepository v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v := @parameter: org.springframework.security.authentication.AuthenticationManager;
v = new org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()>();
specialinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter: void <init>(org.springframework.security.oauth.client.registration.ClientRegistrationRepository,org.springframework.security.oauth.client.web.OAuth2AuthorizedClientRepository,org.springframework.security.authentication.AuthenticationManager)>(v, v, v);
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.web.AuthorizationRequestRepository authorizationRequestRepository()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter: void setAuthorizationRequestRepository(org.springframework.security.oauth.client.web.AuthorizationRequestRepository)>(v);
v = <org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.web.savedrequest.RequestCache nullRequestCache>;
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationCodeGrantFilter: void setRequestCache(org.springframework.security.web.savedrequest.RequestCache)>(v);
return v;
}
public org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter oAuth2AuthorizationRequestRedirectFilter()
{
org.springframework.security.web.savedrequest.RequestCache v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter v;
org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver v;
org.springframework.security.oauth.client.web.AuthorizationRequestRepository v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.StandardOAuth2AuthorizationRequestResolver: void <init>(org.springframework.security.oauth.client.registration.ClientRegistrationRepository)>(v);
v = new org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter;
specialinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter: void <init>(org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestResolver)>(v);
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.web.AuthorizationRequestRepository authorizationRequestRepository()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter: void setAuthorizationRequestRepository(org.springframework.security.oauth.client.web.AuthorizationRequestRepository)>(v);
v = <org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.web.savedrequest.RequestCache nullRequestCache>;
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2AuthorizationRequestRedirectFilter: void setRequestCache(org.springframework.security.web.savedrequest.RequestCache)>(v);
return v;
}
public org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter oAuth2LoginAuthenticationFilter(org.springframework.security.authentication.AuthenticationManager, org.apache.nifi.web.security.StandardAuthenticationEntryPoint)
{
org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.authentication.AuthenticationManager v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy v;
org.apache.nifi.web.security.oidc.OidcUrlPath v;
org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler v;
org.springframework.security.web.authentication.AuthenticationEntryPointFailureHandler v;
org.apache.nifi.web.security.oidc.client.web.converter.AuthenticationResultConverter v;
java.lang.String v;
org.springframework.security.oauth.client.web.AuthorizationRequestRepository v;
org.apache.nifi.web.security.StandardAuthenticationEntryPoint v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v := @parameter: org.springframework.security.authentication.AuthenticationManager;
v := @parameter: org.apache.nifi.web.security.StandardAuthenticationEntryPoint;
v = new org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()>();
v = <org.apache.nifi.web.security.oidc.OidcUrlPath: org.apache.nifi.web.security.oidc.OidcUrlPath CALLBACK>;
v = virtualinvoke v.<org.apache.nifi.web.security.oidc.OidcUrlPath: java.lang.String getPath()>();
specialinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void <init>(org.springframework.security.oauth.client.registration.ClientRegistrationRepository,org.springframework.security.oauth.client.web.OAuth2AuthorizedClientRepository,java.lang.String)>(v, v, v);
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAuthenticationManager(org.springframework.security.authentication.AuthenticationManager)>(v);
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.web.AuthorizationRequestRepository authorizationRequestRepository()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAuthorizationRequestRepository(org.springframework.security.oauth.client.web.AuthorizationRequestRepository)>(v);
v = specialinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler getAuthenticationSuccessHandler()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAuthenticationSuccessHandler(org.springframework.security.web.authentication.AuthenticationSuccessHandler)>(v);
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAllowSessionCreation(boolean)>(0);
v = new org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy;
specialinvoke v.<org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy: void <init>()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setSessionAuthenticationStrategy(org.springframework.security.web.authentication.session.SessionAuthenticationStrategy)>(v);
v = new org.apache.nifi.web.security.oidc.client.web.converter.AuthenticationResultConverter;
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.converter.AuthenticationResultConverter: void <init>()>();
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAuthenticationResultConverter(org.springframework.core.convert.converter.Converter)>(v);
v = new org.springframework.security.web.authentication.AuthenticationEntryPointFailureHandler;
specialinvoke v.<org.springframework.security.web.authentication.AuthenticationEntryPointFailureHandler: void <init>(org.springframework.security.web.AuthenticationEntryPoint)>(v);
virtualinvoke v.<org.springframework.security.oauth.client.web.OAuth2LoginAuthenticationFilter: void setAuthenticationFailureHandler(org.springframework.security.web.authentication.AuthenticationFailureHandler)>(v);
return v;
}
public org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter oidcBearerTokenRefreshFilter()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.server.resource.web.BearerTokenResolver v;
org.apache.nifi.web.security.jwt.provider.BearerTokenProvider v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
long v;
org.springframework.security.oauth.client.endpoint.DefaultRefreshTokenTokenResponseClient v;
org.springframework.web.client.RestOperations v;
java.util.concurrent.TimeUnit v;
org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter v;
org.springframework.security.oauth.jwt.JwtDecoder v;
org.apache.nifi.util.NiFiProperties v;
java.time.Duration v;
java.lang.String v;
double v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.security.oauth.client.endpoint.DefaultRefreshTokenTokenResponseClient;
specialinvoke v.<org.springframework.security.oauth.client.endpoint.DefaultRefreshTokenTokenResponseClient: void <init>()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
virtualinvoke v.<org.springframework.security.oauth.client.endpoint.DefaultRefreshTokenTokenResponseClient: void setRestOperations(org.springframework.web.client.RestOperations)>(v);
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcTokenRefreshWindow()>();
v = <java.util.concurrent.TimeUnit: java.util.concurrent.TimeUnit SECONDS>;
v = staticinvoke <org.apache.nifi.util.FormatUtils: double getPreciseTimeDuration(java.lang.String,java.util.concurrent.TimeUnit)>(v, v);
v = staticinvoke <java.lang.Math: long round(double)>(v);
v = staticinvoke <java.time.Duration: java.time.Duration ofSeconds(long)>(v);
v = new org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.jwt.provider.BearerTokenProvider bearerTokenProvider>;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.server.resource.web.BearerTokenResolver bearerTokenResolver>;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.jwt.JwtDecoder jwtDecoder>;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.OidcBearerTokenRefreshFilter: void <init>(java.time.Duration,org.apache.nifi.web.security.jwt.provider.BearerTokenProvider,org.springframework.security.oauth.server.resource.web.BearerTokenResolver,org.springframework.security.oauth.jwt.JwtDecoder,org.springframework.security.oauth.client.web.OAuth2AuthorizedClientRepository,org.springframework.security.oauth.client.endpoint.OAuth2AccessTokenResponseClient)>(v, v, v, v, v, v);
return v;
}
public org.apache.nifi.web.security.oidc.logout.OidcLogoutFilter oidcLogoutFilter()
{
org.apache.nifi.web.security.oidc.logout.OidcLogoutFilter v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.web.authentication.logout.LogoutSuccessHandler v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.logout.OidcLogoutFilter;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.web.authentication.logout.LogoutSuccessHandler oidcLogoutSuccessHandler()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.logout.OidcLogoutFilter: void <init>(org.springframework.security.web.authentication.logout.LogoutSuccessHandler)>(v);
return v;
}
public org.springframework.security.web.authentication.logout.LogoutSuccessHandler oidcLogoutSuccessHandler()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient v;
org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler v;
org.apache.nifi.web.security.logout.LogoutRequestManager v;
org.apache.nifi.admin.service.IdpUserGroupService v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.logout.LogoutRequestManager logoutRequestManager>;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.admin.service.IdpUserGroupService idpUserGroupService>;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient tokenRevocationResponseClient()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.logout.OidcLogoutSuccessHandler: void <init>(org.apache.nifi.web.security.logout.LogoutRequestManager,org.apache.nifi.admin.service.IdpUserGroupService,org.springframework.security.oauth.client.registration.ClientRegistrationRepository,org.springframework.security.oauth.client.web.OAuth2AuthorizedClientRepository,org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient)>(v, v, v, v, v);
return v;
}
public org.springframework.security.oauth.client.oidc.authentication.OidcAuthorizationCodeAuthenticationProvider oidcAuthorizationCodeAuthenticationProvider()
{
org.springframework.security.oauth.client.endpoint.OAuth2AccessTokenResponseClient v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.oidc.userinfo.OidcUserService v;
org.springframework.security.oauth.client.oidc.authentication.OidcAuthorizationCodeAuthenticationProvider v;
org.springframework.security.oauth.jwt.JwtDecoderFactory v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.security.oauth.client.oidc.authentication.OidcAuthorizationCodeAuthenticationProvider;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.endpoint.OAuth2AccessTokenResponseClient accessTokenResponseClient()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.oidc.userinfo.OidcUserService oidcUserService()>();
specialinvoke v.<org.springframework.security.oauth.client.oidc.authentication.OidcAuthorizationCodeAuthenticationProvider: void <init>(org.springframework.security.oauth.client.endpoint.OAuth2AccessTokenResponseClient,org.springframework.security.oauth.client.userinfo.OAuth2UserService)>(v, v);
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.jwt.JwtDecoderFactory idTokenDecoderFactory()>();
virtualinvoke v.<org.springframework.security.oauth.client.oidc.authentication.OidcAuthorizationCodeAuthenticationProvider: void setJwtDecoderFactory(org.springframework.security.oauth.jwt.JwtDecoderFactory)>(v);
return v;
}
public org.springframework.security.oauth.client.endpoint.OAuth2AccessTokenResponseClient accessTokenResponseClient()
{
org.springframework.web.client.RestOperations v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.endpoint.DefaultAuthorizationCodeTokenResponseClient v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.security.oauth.client.endpoint.DefaultAuthorizationCodeTokenResponseClient;
specialinvoke v.<org.springframework.security.oauth.client.endpoint.DefaultAuthorizationCodeTokenResponseClient: void <init>()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
virtualinvoke v.<org.springframework.security.oauth.client.endpoint.DefaultAuthorizationCodeTokenResponseClient: void setRestOperations(org.springframework.web.client.RestOperations)>(v);
return v;
}
public org.springframework.security.oauth.client.oidc.userinfo.OidcUserService oidcUserService()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.oidc.userinfo.OidcUserService v;
org.springframework.security.oauth.client.userinfo.DefaultOAuth2UserService v;
org.springframework.web.client.RestOperations v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.security.oauth.client.oidc.userinfo.OidcUserService;
specialinvoke v.<org.springframework.security.oauth.client.oidc.userinfo.OidcUserService: void <init>()>();
v = new org.springframework.security.oauth.client.userinfo.DefaultOAuth2UserService;
specialinvoke v.<org.springframework.security.oauth.client.userinfo.DefaultOAuth2UserService: void <init>()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
virtualinvoke v.<org.springframework.security.oauth.client.userinfo.DefaultOAuth2UserService: void setRestOperations(org.springframework.web.client.RestOperations)>(v);
virtualinvoke v.<org.springframework.security.oauth.client.oidc.userinfo.OidcUserService: void setOauth2UserService(org.springframework.security.oauth.client.userinfo.OAuth2UserService)>(v);
return v;
}
public org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()
{
org.apache.nifi.components.state.StateManagerProvider v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.components.state.StateManager v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
java.lang.Class v;
java.lang.String v;
org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.components.state.StateManagerProvider stateManagerProvider>;
v = class "Lorg/apache/nifi/web/security/oidc/client/web/StandardOidcAuthorizedClientRepository;";
v = virtualinvoke v.<java.lang.Class: java.lang.String getName()>();
v = interfaceinvoke v.<org.apache.nifi.components.state.StateManagerProvider: org.apache.nifi.components.state.StateManager getStateManager(java.lang.String)>(v);
v = new org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter authorizedClientConverter()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository: void <init>(org.apache.nifi.components.state.StateManager,org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter)>(v, v);
return v;
}
public org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand authorizedClientExpirationCommand()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand v;
org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient v;
java.time.Duration v;
org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository v;
org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.client.web.StandardOidcAuthorizedClientRepository authorizedClientRepository()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient tokenRevocationResponseClient()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.AuthorizedClientExpirationCommand: void <init>(org.apache.nifi.web.security.oidc.client.web.TrackedAuthorizedClientRepository,org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient)>(v, v);
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler oidcCommandScheduler()>();
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration keyRotationPeriod>;
virtualinvoke v.<org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler: java.util.concurrent.ScheduledFuture scheduleAtFixedRate(java.lang.Runnable,java.time.Duration)>(v, v);
return v;
}
public org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler oidcCommandScheduler()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
java.lang.Class v;
java.lang.String v;
org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler;
specialinvoke v.<org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler: void <init>()>();
v = class "Lorg/apache/nifi/web/security/configuration/OidcSecurityConfiguration;";
v = virtualinvoke v.<java.lang.Class: java.lang.String getSimpleName()>();
virtualinvoke v.<org.springframework.scheduling.concurrent.ThreadPoolTaskScheduler: void setThreadNamePrefix(java.lang.String)>(v);
return v;
}
public org.apache.nifi.web.security.oidc.client.web.converter.AuthorizedClientConverter authorizedClientConverter()
{
org.apache.nifi.encrypt.PropertyEncryptor v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.encrypt.PropertyEncryptor propertyEncryptor>;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.converter.StandardAuthorizedClientConverter: void <init>(org.apache.nifi.encrypt.PropertyEncryptor,org.springframework.security.oauth.client.registration.ClientRegistrationRepository)>(v, v);
return v;
}
public org.springframework.security.oauth.client.web.AuthorizationRequestRepository authorizationRequestRepository()
{
com.github.benmanes.caffeine.cache.Caffeine v, v, v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
com.github.benmanes.caffeine.cache.Cache v;
java.time.Duration v;
org.springframework.cache.caffeine.CaffeineCache v;
java.lang.Class v;
java.lang.String v;
org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = staticinvoke <com.github.benmanes.caffeine.cache.Caffeine: com.github.benmanes.caffeine.cache.Caffeine newBuilder()>();
v = virtualinvoke v.<com.github.benmanes.caffeine.cache.Caffeine: com.github.benmanes.caffeine.cache.Caffeine maximumSize(long)>(1000L);
v = <org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration REQUEST_EXPIRATION>;
v = virtualinvoke v.<com.github.benmanes.caffeine.cache.Caffeine: com.github.benmanes.caffeine.cache.Caffeine expireAfterWrite(java.time.Duration)>(v);
v = virtualinvoke v.<com.github.benmanes.caffeine.cache.Caffeine: com.github.benmanes.caffeine.cache.Cache build()>();
v = new org.springframework.cache.caffeine.CaffeineCache;
v = class "Lorg/apache/nifi/web/security/oidc/client/web/StandardAuthorizationRequestRepository;";
v = virtualinvoke v.<java.lang.Class: java.lang.String getSimpleName()>();
specialinvoke v.<org.springframework.cache.caffeine.CaffeineCache: void <init>(java.lang.String,com.github.benmanes.caffeine.cache.Cache)>(v, v);
v = new org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository;
specialinvoke v.<org.apache.nifi.web.security.oidc.client.web.StandardAuthorizationRequestRepository: void <init>(org.springframework.cache.Cache)>(v);
return v;
}
public org.springframework.security.oauth.jwt.JwtDecoderFactory idTokenDecoderFactory()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.util.NiFiProperties v;
org.springframework.web.client.RestOperations v;
java.lang.String v;
org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcPreferredJwsAlgorithm()>();
v = new org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.authentication.StandardOidcIdTokenDecoderFactory: void <init>(java.lang.String,org.springframework.web.client.RestOperations)>(v, v);
return v;
}
public org.apache.nifi.web.security.oidc.revocation.TokenRevocationResponseClient tokenRevocationResponseClient()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient v;
org.springframework.web.client.RestOperations v;
org.springframework.security.oauth.client.registration.ClientRegistrationRepository v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.revocation.StandardTokenRevocationResponseClient: void <init>(org.springframework.web.client.RestOperations,org.springframework.security.oauth.client.registration.ClientRegistrationRepository)>(v, v);
return v;
}
public org.springframework.security.oauth.client.registration.ClientRegistrationRepository clientRegistrationRepository()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.web.client.RestOperations v;
org.apache.nifi.web.security.oidc.registration.DisabledClientRegistrationRepository v;
org.springframework.security.oauth.client.registration.ClientRegistration v;
org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider v;
org.apache.nifi.util.NiFiProperties v, v;
java.lang.Object v;
org.springframework.security.oauth.client.registration.InMemoryClientRegistrationRepository v;
org.springframework.security.oauth.client.registration.ClientRegistration[] v;
boolean v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: boolean isOidcEnabled()>();
if v == 0 goto label;
v = new org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.web.client.RestOperations oidcRestOperations()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.registration.StandardClientRegistrationProvider: void <init>(org.apache.nifi.util.NiFiProperties,org.springframework.web.client.RestOperations)>(v, v);
v = interfaceinvoke v.<org.apache.nifi.web.security.oidc.registration.ClientRegistrationProvider: org.springframework.security.oauth.client.registration.ClientRegistration getClientRegistration()>();
v = new org.springframework.security.oauth.client.registration.InMemoryClientRegistrationRepository;
v = newarray (org.springframework.security.oauth.client.registration.ClientRegistration)[1];
v[0] = v;
specialinvoke v.<org.springframework.security.oauth.client.registration.InMemoryClientRegistrationRepository: void <init>(org.springframework.security.oauth.client.registration.ClientRegistration[])>(v);
v = v;
goto label;
label:
v = new org.apache.nifi.web.security.oidc.registration.DisabledClientRegistrationRepository;
specialinvoke v.<org.apache.nifi.web.security.oidc.registration.DisabledClientRegistrationRepository: void <init>()>();
v = v;
label:
return v;
}
public org.springframework.web.client.RestOperations oidcRestOperations()
{
java.lang.Object[] v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.springframework.security.oauth.client.http.OAuth2ErrorResponseErrorHandler v;
org.springframework.http.client.ClientHttpRequestFactory v;
org.springframework.http.converter.StringHttpMessageConverter v;
org.springframework.http.converter.FormHttpMessageConverter v;
java.util.List v;
org.springframework.http.converter.json.MappingJackson2HttpMessageConverter v;
org.springframework.security.oauth.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter v;
org.springframework.web.client.RestTemplate v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new org.springframework.web.client.RestTemplate;
v = virtualinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.http.client.ClientHttpRequestFactory oidcClientHttpRequestFactory()>();
specialinvoke v.<org.springframework.web.client.RestTemplate: void <init>(org.springframework.http.client.ClientHttpRequestFactory)>(v);
v = new org.springframework.security.oauth.client.http.OAuth2ErrorResponseErrorHandler;
specialinvoke v.<org.springframework.security.oauth.client.http.OAuth2ErrorResponseErrorHandler: void <init>()>();
virtualinvoke v.<org.springframework.web.client.RestTemplate: void setErrorHandler(org.springframework.web.client.ResponseErrorHandler)>(v);
v = newarray (org.springframework.http.converter.HttpMessageConverter)[4];
v = new org.springframework.http.converter.FormHttpMessageConverter;
specialinvoke v.<org.springframework.http.converter.FormHttpMessageConverter: void <init>()>();
v[0] = v;
v = new org.springframework.security.oauth.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter;
specialinvoke v.<org.springframework.security.oauth.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter: void <init>()>();
v[1] = v;
v = new org.springframework.http.converter.StringHttpMessageConverter;
specialinvoke v.<org.springframework.http.converter.StringHttpMessageConverter: void <init>()>();
v[2] = v;
v = new org.springframework.http.converter.json.MappingJackson2HttpMessageConverter;
specialinvoke v.<org.springframework.http.converter.json.MappingJackson2HttpMessageConverter: void <init>()>();
v[3] = v;
v = staticinvoke <java.util.Arrays: java.util.List asList(java.lang.Object[])>(v);
virtualinvoke v.<org.springframework.web.client.RestTemplate: void setMessageConverters(java.util.List)>(v);
return v;
}
public org.springframework.http.client.ClientHttpRequestFactory oidcClientHttpRequestFactory()
{
org.springframework.http.client.OkHttp3ClientHttpRequestFactory v;
okhttp.OkHttpClient v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = specialinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: okhttp.OkHttpClient getHttpClient()>();
v = new org.springframework.http.client.OkHttp3ClientHttpRequestFactory;
specialinvoke v.<org.springframework.http.client.OkHttp3ClientHttpRequestFactory: void <init>(okhttp.OkHttpClient)>(v);
return v;
}
private okhttp.OkHttpClient getHttpClient()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
okhttp.OkHttpClient v;
org.apache.nifi.util.NiFiProperties v, v, v;
java.time.Duration v, v;
java.lang.String v, v, v, v;
okhttp.OkHttpClient$Builder v, v, v;
boolean v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcConnectTimeout()>();
v = specialinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration getTimeout(java.lang.String)>(v);
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcReadTimeout()>();
v = specialinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration getTimeout(java.lang.String)>(v);
v = new okhttp.OkHttpClient$Builder;
specialinvoke v.<okhttp.OkHttpClient$Builder: void <init>()>();
v = virtualinvoke v.<okhttp.OkHttpClient$Builder: okhttp.OkHttpClient$Builder connectTimeout(java.time.Duration)>(v);
v = virtualinvoke v.<okhttp.OkHttpClient$Builder: okhttp.OkHttpClient$Builder readTimeout(java.time.Duration)>(v);
v = "NIFI";
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcClientTruststoreStrategy()>();
v = virtualinvoke v.<java.lang.String: boolean equals(java.lang.Object)>(v);
if v == 0 goto label;
specialinvoke v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: void setSslSocketFactory(okhttp.OkHttpClient$Builder)>(v);
label:
v = virtualinvoke v.<okhttp.OkHttpClient$Builder: okhttp.OkHttpClient build()>();
return v;
}
private java.time.Duration getTimeout(java.lang.String)
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
long v;
java.lang.RuntimeException v;
java.util.concurrent.TimeUnit v;
java.time.Duration v, v;
java.lang.String v;
double v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v := @parameter: java.lang.String;
label:
v = <java.util.concurrent.TimeUnit: java.util.concurrent.TimeUnit MILLISECONDS>;
v = staticinvoke <org.apache.nifi.util.FormatUtils: double getPreciseTimeDuration(java.lang.String,java.util.concurrent.TimeUnit)>(v, v);
v = staticinvoke <java.lang.Math: long round(double)>(v);
v = staticinvoke <java.time.Duration: java.time.Duration ofMillis(long)>(v);
label:
return v;
label:
v := @caughtexception;
v = <org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration DEFAULT_SOCKET_TIMEOUT>;
return v;
catch java.lang.RuntimeException from label to label with label;
}
private void setSslSocketFactory(okhttp.OkHttpClient$Builder)
{
java.lang.Throwable v;
javax.net.ssl.SSLContext v;
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.security.util.TlsConfiguration v;
javax.net.ssl.SSLSocketFactory v;
org.apache.nifi.web.security.oidc.OidcConfigurationException v;
org.apache.nifi.util.NiFiProperties v;
javax.net.ssl.TrustManager[] v;
javax.net.ssl.X509TrustManager v;
java.lang.Object v, v;
okhttp.OkHttpClient$Builder v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v := @parameter: okhttp.OkHttpClient$Builder;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = staticinvoke <org.apache.nifi.security.util.StandardTlsConfiguration: org.apache.nifi.security.util.TlsConfiguration fromNiFiProperties(org.apache.nifi.util.NiFiProperties)>(v);
label:
v = staticinvoke <org.apache.nifi.security.util.SslContextFactory: javax.net.ssl.X509TrustManager getX509TrustManager(org.apache.nifi.security.util.TlsConfiguration)>(v);
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "TrustManager required");
v = newarray (javax.net.ssl.TrustManager)[1];
v[0] = v;
v = staticinvoke <org.apache.nifi.security.util.SslContextFactory: javax.net.ssl.SSLContext createSslContext(org.apache.nifi.security.util.TlsConfiguration,javax.net.ssl.TrustManager[])>(v, v);
v = staticinvoke <java.util.Objects: java.lang.Object requireNonNull(java.lang.Object,java.lang.String)>(v, "SSLContext required");
v = virtualinvoke v.<javax.net.ssl.SSLContext: javax.net.ssl.SSLSocketFactory getSocketFactory()>();
virtualinvoke v.<okhttp.OkHttpClient$Builder: okhttp.OkHttpClient$Builder sslSocketFactory(javax.net.ssl.SSLSocketFactory,javax.net.ssl.X509TrustManager)>(v, v);
label:
goto label;
label:
v := @caughtexception;
v = new org.apache.nifi.web.security.oidc.OidcConfigurationException;
specialinvoke v.<org.apache.nifi.web.security.oidc.OidcConfigurationException: void <init>(java.lang.String,java.lang.Throwable)>("OpenID Connect HTTP TLS configuration failed", v);
throw v;
label:
return;
catch org.apache.nifi.security.util.TlsException from label to label with label;
}
private org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler getAuthenticationSuccessHandler()
{
org.apache.nifi.web.security.configuration.OidcSecurityConfiguration v;
org.apache.nifi.web.security.jwt.provider.BearerTokenProvider v;
java.util.ArrayList v;
java.util.List v, v, v;
org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler v;
org.apache.nifi.util.NiFiProperties v, v, v, v, v;
org.apache.nifi.admin.service.IdpUserGroupService v;
java.lang.String v, v;
v := @this: org.apache.nifi.web.security.configuration.OidcSecurityConfiguration;
v = new java.util.ArrayList;
specialinvoke v.<java.util.ArrayList: void <init>()>();
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcClaimIdentifyingUser()>();
interfaceinvoke v.<java.util.List: boolean add(java.lang.Object)>(v);
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.util.List getOidcFallbackClaimsIdentifyingUser()>();
interfaceinvoke v.<java.util.List: boolean addAll(java.util.Collection)>(v);
v = new org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.web.security.jwt.provider.BearerTokenProvider bearerTokenProvider>;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.admin.service.IdpUserGroupService idpUserGroupService>;
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = staticinvoke <org.apache.nifi.authorization.util.IdentityMappingUtil: java.util.List getIdentityMappings(org.apache.nifi.util.NiFiProperties)>(v);
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = staticinvoke <org.apache.nifi.authorization.util.IdentityMappingUtil: java.util.List getGroupMappings(org.apache.nifi.util.NiFiProperties)>(v);
v = v.<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.apache.nifi.util.NiFiProperties properties>;
v = virtualinvoke v.<org.apache.nifi.util.NiFiProperties: java.lang.String getOidcClaimGroups()>();
specialinvoke v.<org.apache.nifi.web.security.oidc.web.authentication.OidcAuthenticationSuccessHandler: void <init>(org.apache.nifi.web.security.jwt.provider.BearerTokenProvider,org.apache.nifi.admin.service.IdpUserGroupService,java.util.List,java.util.List,java.util.List,java.lang.String)>(v, v, v, v, v, v);
return v;
}
static void <clinit>()
{
org.springframework.security.web.savedrequest.NullRequestCache v;
java.time.Duration v, v;
v = staticinvoke <java.time.Duration: java.time.Duration ofSeconds(long)>(60L);
<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration REQUEST_EXPIRATION> = v;
v = staticinvoke <java.time.Duration: java.time.Duration ofSeconds(long)>(5L);
<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: java.time.Duration DEFAULT_SOCKET_TIMEOUT> = v;
v = new org.springframework.security.web.savedrequest.NullRequestCache;
specialinvoke v.<org.springframework.security.web.savedrequest.NullRequestCache: void <init>()>();
<org.apache.nifi.web.security.configuration.OidcSecurityConfiguration: org.springframework.security.web.savedrequest.RequestCache nullRequestCache> = v;
return;
}
}