Extract Certificate of the principal from Holder of Key SAML token.

Generate a timestamp for the request.

GetElementText of a public certificate in samltoken.

Parses TOKEN to check intrinsic SubjectConfirmation property to detect if token is of type hok or bearer.

Extracts Security Context from request.

NewJwtAuthenticationHandler factory method creating JwtAuthenticationHandler.

NewJwtVapiClaimsValidator factory method creating JwtVapiClaimsValidator.

NewOidcJwksVerificationKeyCache creates a VerificationKeyCache which uses the OIDC discovery and JWKS endpoints of a given vCenter.

NewSAMLSecurityContext creates SAML security context to sign request with provided token and private key example: connector := client.NewConnector( "", client.WithSecurityContext(NewSAMLSecurityContext( "myToken", "myKey", security.RS256))) client := NewSampleClient(connector) client.MyOperation().

ParsePrivateKey parses private key from given input string and returns RSA private key.

Append proper prefix and suffix text to a certificate.

Sets given security context to request body.

Generates signature for 'toSign' bytes using provided 'algorithm' and 'privateKey'.

UseHttps specifies https or http scheme usage.

Verify signature of sig by generating signature using public key with toVerify.

WithAcceptableAudiences specifies acceptable values for 'aud' claim in JWTs.

WithClient specifies the client used for communication to the OIDC and JWKS endpoints.

WithHost specifies the host (and possibly port) where the OIDC/JWKS endpoints reside.

WithMaxClockSkew specifies the allowed time discrepancy between the client and the server.

WithMinTimeBetweenRefreshCalls specifies minimum time between requests made by the OidcJwksVerificationKeyCache to the JWKS endpoint.

WithOidcPath specifies the OIDC discovery path (appended to the host address).

in minutes.

Enforces authentication schemes specified in authentication metadata file.

represents deserialized authentication metadata from authn.ini.

Verifies subject confirmation data of token matches bearer token.

JSONSsoSigner is used for signing Json request messages.

JSONSsoVerifier Used to verify the authenticity of the request message by verifying the digest present in the security context block.

JwtVapiClaimsValidator validator describing the vAPI specific JWT validation procedure.

OauthSecurityContext represents a security context suitable for oauth authentication.

OidcJwksVerificationKeyCache cache for JWKS keys implementation of VerificationKeyCache.

SAMLSecurityContext represents a security context for SAML tokens.

SessionSecurityContext represents the security context needed for authentication using session ID.

User Identity class represents result for Authentication Handler authenticate method.

UserPasswordSecurityContext represents a security context suitable for user/password authentication.

The AuthenticationHandler interface is used to verify the authentication data provided in the security context against an identity source.

VerificationKeyCache which caches keys and needs to be refreshed if the signing keys change.

VerificationKeyProvider provides keys used to validate the authenticity of the JWT token.

JwtVapiClaims is an implementation of the interface jwt.Claims, which provides a NOOP jwt.Claims#Valid.