Skip navigation links
A B C D E F G I J K L M N O P R S T U V W X 

A

AclDAO - Class in keywhiz.service.daos
 
AclDAO.AclDAOFactory - Class in keywhiz.service.daos
 
AclDAOFactory(DSLContext, DSLContext, ClientDAO.ClientDAOFactory, GroupDAO.GroupDAOFactory, SecretContentDAO.SecretContentDAOFactory, SecretSeriesDAO.SecretSeriesDAOFactory, ClientMapper, GroupMapper, SecretSeriesMapper, SecretContentMapper) - Constructor for class keywhiz.service.daos.AclDAO.AclDAOFactory
 
AddUserCommand - Class in keywhiz.commands
 
AddUserCommand() - Constructor for class keywhiz.commands.AddUserCommand
 
alias() - Method in class keywhiz.service.config.KeyStoreConfig
 
allowAccess(Configuration, long, long) - Method in class keywhiz.service.daos.AclDAO
 
allowAccess(User, LongParam, LongParam) - Method in class keywhiz.service.resources.admin.MembershipResource
Allow a Group to access this Secret
allowAccess(AutomationClient, LongParam, LongParam) - Method in class keywhiz.service.resources.automation.AutomationSecretAccessResource
Deprecated.
Assign Secret to Group
authenticate(BasicCredentials) - Method in class keywhiz.auth.bcrypt.BcryptAuthenticator
 
authenticate(Cookie) - Method in class keywhiz.auth.cookie.CookieAuthenticator
 
authenticate(BasicCredentials) - Method in class keywhiz.auth.ldap.LdapAuthenticator
 
AuthenticatedEncryptedCookieFactory - Class in keywhiz.auth.cookie
Produces tokens and cookies based on encrypted UserCookieData records.
AuthenticatedEncryptedCookieFactory(Clock, ObjectMapper, GCMEncryptor, CookieConfig) - Constructor for class keywhiz.auth.cookie.AuthenticatedEncryptedCookieFactory
 
AuthInjectionResolver() - Constructor for class keywhiz.service.providers.AuthResolver.AuthInjectionResolver
 
AuthResolver - Class in keywhiz.service.providers
Responsible for injecting container method attributes annotated with Auth and the dependencies necessary for fulfilling those injected objects.
AuthResolver() - Constructor for class keywhiz.service.providers.AuthResolver
 
AuthResolver.AuthInjectionResolver - Class in keywhiz.service.providers
 
AuthResolver.AuthValueFactoryProvider - Class in keywhiz.service.providers
 
AuthResolver.Binder - Class in keywhiz.service.providers
 
AuthValueFactoryProvider(MultivaluedParameterExtractorProvider, ServiceLocator, ClientAuthFactory, AutomationClientAuthFactory, UserAuthFactory) - Constructor for class keywhiz.service.providers.AuthResolver.AuthValueFactoryProvider
 
AutomationClientAuthFactory - Class in keywhiz.service.providers
Authenticates AutomationClients from requests based on the principal present in a SecurityContext and by querying the database.
AutomationClientAuthFactory(ClientDAO.ClientDAOFactory) - Constructor for class keywhiz.service.providers.AutomationClientAuthFactory
 
AutomationClientResource - Class in keywhiz.service.resources.automation
Deprecated.
Will be removed in a future release. Migrate to ClientResource.
AutomationClientResource(ClientDAO.ClientDAOFactory, AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.AutomationClientResource
Deprecated.
 
AutomationEnrollClientGroupResource - Class in keywhiz.service.resources.automation
Deprecated.
Will be removed in a future release. Migrate to ClientResource.
AutomationEnrollClientGroupResource(AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.AutomationEnrollClientGroupResource
Deprecated.
 
AutomationGroupResource - Class in keywhiz.service.resources.automation
Deprecated.
Will be removed in a future release. Migrate to GroupResource.
AutomationGroupResource(GroupDAO.GroupDAOFactory, AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.AutomationGroupResource
Deprecated.
 
AutomationSecretAccessResource - Class in keywhiz.service.resources.automation
Deprecated.
Will be removed in a future release. Migrate to SecretResource.
AutomationSecretAccessResource(AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.AutomationSecretAccessResource
Deprecated.
 
AutomationSecretResource - Class in keywhiz.service.resources.automation
Deprecated.
Will be removed in a future release. Migrate to SecretResource.
AutomationSecretResource(SecretController, SecretDAO.SecretDAOFactory, AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.AutomationSecretResource
Deprecated.
 

B

backfillExpiration(AutomationClient, String, List<String>) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Backfill expiration for this secret.
backfillHmac(AutomationClient, String, List<String>) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Backfill content hmac for this secret.
BcryptAuthenticator - Class in keywhiz.auth.bcrypt
 
BcryptAuthenticator(UserDAO) - Constructor for class keywhiz.auth.bcrypt.BcryptAuthenticator
 
BcryptAuthenticatorFactory - Class in keywhiz.auth.bcrypt
Configuration parameters for using a BCrypt authenticator.
BcryptAuthenticatorFactory() - Constructor for class keywhiz.auth.bcrypt.BcryptAuthenticatorFactory
 
Binder(ClientAuthFactory, AutomationClientAuthFactory, UserAuthFactory) - Constructor for class keywhiz.service.providers.AuthResolver.Binder
 
BouncyCastle - Class in keywhiz.auth
Class used to ensure the BouncyCastle security provider is initialized.
BouncyCastle() - Constructor for class keywhiz.auth.BouncyCastle
 
build(DSLContext) - Method in class keywhiz.auth.bcrypt.BcryptAuthenticatorFactory
 
build(DSLContext) - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
build(DSLContext) - Method in interface keywhiz.auth.UserAuthenticatorFactory
Builds an authenticator from username/password credentials to a User.
build(MetricRegistry, String) - Method in class keywhiz.KeywhizConfig.TemplatedDataSourceFactory
 
builder(String, String, String, long) - Method in class keywhiz.service.daos.SecretController
 
buildSslContextFactory() - Method in class keywhiz.service.config.ResourcesHttpsConnectorFactory
 
buildSslContextFactory() - Method in class keywhiz.service.config.TemplatedHttpsConnectorFactory
 

C

CertificatePrincipal - Class in keywhiz.auth.mutualssl
 
CertificatePrincipal(String, X509Certificate[]) - Constructor for class keywhiz.auth.mutualssl.CertificatePrincipal
 
CertificateSecurityContext - Class in keywhiz.auth.mutualssl
#getUserPrincipal() returns a CertificatePrincipal to expose the client's certificate chain.
CertificateSecurityContext(String, X509Certificate[]) - Constructor for class keywhiz.auth.mutualssl.CertificateSecurityContext
 
check() - Method in class keywhiz.JooqHealthCheck
 
check() - Method in class keywhiz.ManualStatusHealthCheck
 
ClientAuthFactory - Class in keywhiz.service.providers
Authenticates Clients from requests based on the principal present in a SecurityContext and by querying the database.
ClientAuthFactory(ClientDAO.ClientDAOFactory) - Constructor for class keywhiz.service.providers.ClientAuthFactory
 
ClientCertificateFilter - Class in keywhiz.auth.mutualssl
If a client uses a certificate to authenticate itself, this class provides a resource filter to pass the client's certificate chain on for a resource.
ClientCertificateFilter() - Constructor for class keywhiz.auth.mutualssl.ClientCertificateFilter
 
ClientDAO - Class in keywhiz.service.daos
 
ClientDAO.ClientDAOFactory - Class in keywhiz.service.daos
 
ClientDAOFactory(DSLContext, DSLContext, ClientMapper) - Constructor for class keywhiz.service.daos.ClientDAO.ClientDAOFactory
 
clientDetailForGroup(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Retrieve metadata for clients in a particular group.
clientGroupsListing(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Listing of groups accessible to a client
clientInfo(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Retrieve information on a client
clientListing(AutomationClient) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Retrieve listing of client names
ClientResource - Class in keywhiz.service.resources.automation.v2
 
ClientResource(AclDAO.AclDAOFactory, ClientDAO.ClientDAOFactory, GroupDAO.GroupDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.v2.ClientResource
 
clientSecretsListing(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Listing of secrets accessible to a client
ClientsResource - Class in keywhiz.service.resources.admin
 
ClientsResource(AclDAO.AclDAOFactory, ClientDAO.ClientDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.admin.ClientsResource
 
computeHmac(byte[]) - Method in class keywhiz.service.crypto.ContentCryptographer
 
configure() - Method in class keywhiz.auth.cookie.CookieModule
 
configure(Subparser) - Method in class keywhiz.commands.GenerateAesKeyCommand
 
configure() - Method in class keywhiz.service.crypto.CryptoModule
 
configure() - Method in class keywhiz.service.providers.AuthResolver.Binder
 
configure() - Method in class keywhiz.ServiceModule
 
ConflictException - Exception in keywhiz.service.exceptions
HTTP exception indicating a conflict (code 409).
ConflictException(String) - Constructor for exception keywhiz.service.exceptions.ConflictException
 
ContentCryptographer - Class in keywhiz.service.crypto
Cryptographer which encrypts/decrypts secret content.
ContentCryptographer(SecretKey, Provider, Provider, SecureRandom) - Constructor for class keywhiz.service.crypto.ContentCryptographer
 
ContentCryptographer.Encrypter - Class in keywhiz.service.crypto
 
ContentEncodingException - Exception in keywhiz.service.crypto
An exception to be thrown when the ContentCryptographer fails
ContentEncodingException(String) - Constructor for exception keywhiz.service.crypto.ContentEncodingException
 
CookieAuthenticator - Class in keywhiz.auth.cookie
 
CookieAuthenticator(ObjectMapper, GCMEncryptor) - Constructor for class keywhiz.auth.cookie.CookieAuthenticator
 
CookieConfig - Class in keywhiz.auth.cookie
Configuration parameters for generating HTTP cookies.
CookieConfig() - Constructor for class keywhiz.auth.cookie.CookieConfig
 
cookieFor(String, ZonedDateTime) - Method in class keywhiz.auth.cookie.AuthenticatedEncryptedCookieFactory
Produces a cookie string for a given value and expiration.
CookieModule - Class in keywhiz.auth.cookie
 
CookieModule(String) - Constructor for class keywhiz.auth.cookie.CookieModule
 
CookieRenewingFilter - Class in keywhiz.service.filters
Checks for valid session cookies on requests and sets a newer cookie.
CookieRenewingFilter(CookieConfig, CookieAuthenticator, SessionLoginResource) - Constructor for class keywhiz.service.filters.CookieRenewingFilter
 
cookiesForUser(User) - Method in class keywhiz.service.resources.admin.SessionLoginResource
 
create() - Method in class keywhiz.service.daos.SecretController.SecretBuilder
Finalizes creation of a new secret.
createClient(String, String, String) - Method in class keywhiz.service.daos.ClientDAO
 
createClient(User, CreateClientRequest) - Method in class keywhiz.service.resources.admin.ClientsResource
Create Client
createClient(AutomationClient, CreateClientRequest) - Method in class keywhiz.service.resources.automation.AutomationClientResource
Deprecated.
Create Client
createClient(AutomationClient, CreateClientRequestV2) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Creates a client and assigns to given groups
createGroup(String, String, String, ImmutableMap<String, String>) - Method in class keywhiz.service.daos.GroupDAO
 
createGroup(User, CreateGroupRequest) - Method in class keywhiz.service.resources.admin.GroupsResource
Create Group
createGroup(AutomationClient, CreateGroupRequest) - Method in class keywhiz.service.resources.automation.AutomationGroupResource
Deprecated.
Create Group
createGroup(AutomationClient, CreateGroupRequestV2) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Creates a group
createOrUpdate() - Method in class keywhiz.service.daos.SecretController.SecretBuilder
 
createOrUpdateSecret(String, String, String, String, Map<String, String>, long, String, String, Map<String, String>) - Method in class keywhiz.service.daos.SecretDAO
 
createOrUpdateSecret(User, String, CreateOrUpdateSecretRequestV2) - Method in class keywhiz.service.resources.admin.SecretsResource
Create or update secret
createOrUpdateSecret(AutomationClient, String, CreateOrUpdateSecretRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Creates or updates (if it exists) a secret.
createSecret(String, String, String, String, Map<String, String>, long, String, String, Map<String, String>) - Method in class keywhiz.service.daos.SecretDAO
 
createSecret(User, CreateSecretRequest) - Method in class keywhiz.service.resources.admin.SecretsResource
Create Secret
createSecret(AutomationClient, CreateSecretRequest) - Method in class keywhiz.service.resources.automation.AutomationSecretResource
Deprecated.
Create secret
createSecret(AutomationClient, CreateSecretRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Creates a secret and assigns to given groups
createUser(String, String) - Method in class keywhiz.service.daos.UserDAO
 
createUserAt(String, String, OffsetDateTime, OffsetDateTime) - Method in class keywhiz.service.daos.UserDAO
 
createValueFactory(Parameter) - Method in class keywhiz.service.providers.AuthResolver.AuthValueFactoryProvider
 
CryptoModule - Class in keywhiz.service.crypto
Guice module for configuring cryptography objects.
CryptoModule(String, KeyStoreConfig) - Constructor for class keywhiz.service.crypto.CryptoModule
 
CryptoModule.Derivation - Annotation Type in keywhiz.service.crypto
Denotes objects used for key derivation.
CryptoModule.Encryption - Annotation Type in keywhiz.service.crypto
Denotes objects used for encryption/decryption.
customizeObjectMapper(ObjectMapper) - Static method in class keywhiz.KeywhizService
Customizes ObjectMapper for common settings.

D

DAOFactory<T> - Interface in keywhiz.service.daos
DAO factory implement this interface to provide instances using different underlying database connections.
databaseAgnostic(DataSource) - Static method in class keywhiz.utility.DSLContexts
 
db.h2.migration - package db.h2.migration
 
DbSeedCommand - Class in keywhiz.commands
Command to populate the database with development data.
DbSeedCommand() - Constructor for class keywhiz.commands.DbSeedCommand
 
decrypt(byte[]) - Method in class keywhiz.auth.cookie.GCMEncryptor
 
decrypt(String) - Method in class keywhiz.service.crypto.ContentCryptographer
Decrypts content previously encrypted by ContentCryptographer.
defaultPassword - Static variable in class keywhiz.commands.DbSeedCommand
 
defaultUser - Static variable in class keywhiz.commands.DbSeedCommand
 
deleteClient(Client) - Method in class keywhiz.service.daos.ClientDAO
 
deleteClient(User, LongParam) - Method in class keywhiz.service.resources.admin.ClientsResource
Delete Client by ID
deleteClient(AutomationClient, LongParam) - Method in class keywhiz.service.resources.automation.AutomationClientResource
Deprecated.
Deletes a client
deleteClient(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Delete a client
deleteGroup(Group) - Method in class keywhiz.service.daos.GroupDAO
 
deleteGroup(User, LongParam) - Method in class keywhiz.service.resources.admin.GroupsResource
Delete Group by ID
deleteGroup(AutomationClient, LongParam) - Method in class keywhiz.service.resources.automation.AutomationGroupResource
Deprecated.
Deletes a group
deleteGroup(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Delete a group
deleteSecret(User, LongParam) - Method in class keywhiz.service.resources.admin.SecretsResource
Delete Secret by ID
deleteSecretsByName(String) - Method in class keywhiz.service.daos.SecretDAO
Deletes the series and all associated version of the given secret series name.
deleteSecretSeries(AutomationClient, String) - Method in class keywhiz.service.resources.automation.AutomationSecretResource
Deprecated.
Deletes all versions of a secret series
deleteSecretSeries(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Delete a secret series
deleteSecretSeriesById(long) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
deleteSecretSeriesByName(String) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
destroy() - Method in class keywhiz.auth.xsrf.XsrfServletFilter
 
destroy() - Method in class keywhiz.service.filters.SecurityHeadersFilter
 
disallowAccess(User, LongParam, LongParam) - Method in class keywhiz.service.resources.admin.MembershipResource
Disallow a Group to access this Secret
disallowAccess(AutomationClient, LongParam, LongParam) - Method in class keywhiz.service.resources.automation.AutomationSecretAccessResource
Deprecated.
Remove Secret from Group
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class keywhiz.auth.xsrf.XsrfServletFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class keywhiz.service.filters.SecurityHeadersFilter
 
doImport(DSLContext) - Static method in class keywhiz.commands.DbSeedCommand
Inserts test data using dslContext.
doPost(HttpServletRequest, HttpServletResponse) - Method in class keywhiz.ManualStatusServlet
 
DSLContexts - Class in keywhiz.utility
Returns a DSLContext which works with postgres, mysql, h2, etc.

E

encrypt(byte[]) - Method in class keywhiz.auth.cookie.GCMEncryptor
 
encrypt(String) - Method in class keywhiz.service.crypto.ContentCryptographer.Encrypter
Encrypts content under a derived key.
encryptionKeyDerivedFrom(String) - Method in class keywhiz.service.crypto.ContentCryptographer
Builds an encrypter using key derived from the provided secret name.
enrollClient(Configuration, long, long) - Method in class keywhiz.service.daos.AclDAO
 
enrollClient(User, LongParam, LongParam) - Method in class keywhiz.service.resources.admin.MembershipResource
Enroll a Client into a Group
enrollClientInGroup(AutomationClient, LongParam, LongParam) - Method in class keywhiz.service.resources.automation.AutomationEnrollClientGroupResource
Deprecated.
Enroll Client in Group
evaluateExternal(String) - Static method in class keywhiz.service.config.Templates
Returns trimmed contents of a file when input string of form 'external:some/file/path' or just the original input otherwise.
evaluateHostName(String) - Static method in class keywhiz.service.config.Templates
Replaces a single occurrence of %hostname% template with the current hostname.
evaluateTemplate(String) - Static method in class keywhiz.service.config.Templates
Evaluates an optionally templated string.
evictClient(Configuration, long, long) - Method in class keywhiz.service.daos.AclDAO
 
evictClient(User, LongParam, LongParam) - Method in class keywhiz.service.resources.admin.MembershipResource
Remove a Client from a Group
evictClientFromGroup(AutomationClient, long, long) - Method in class keywhiz.service.resources.automation.AutomationEnrollClientGroupResource
Deprecated.
Remove Client from Group
ExpirationExtractor - Class in keywhiz.service.resources.automation.v2
Helper class to extract expirations from secrets contents (best effort)
expirationFromEncodedCertificateChain(byte[]) - Static method in class keywhiz.service.resources.automation.v2.ExpirationExtractor
 
expirationFromKeystore(String, String, byte[]) - Static method in class keywhiz.service.resources.automation.v2.ExpirationExtractor
 
expirationFromOpenPGP(byte[]) - Static method in class keywhiz.service.resources.automation.v2.ExpirationExtractor
 
expirationFromRawCertificate(byte[]) - Static method in class keywhiz.service.resources.automation.v2.ExpirationExtractor
 

F

filter(ContainerRequestContext) - Method in class keywhiz.auth.mutualssl.ClientCertificateFilter
 
filter(ContainerRequestContext, ContainerResponseContext) - Method in class keywhiz.service.filters.CookieRenewingFilter
If the user has a valid session token, set a new session token.
findAndAllowAccess(long, long, AuditLog, String, Map<String, String>) - Method in class keywhiz.service.daos.AclDAO
 
findAndEnrollClient(long, long, AuditLog, String, Map<String, String>) - Method in class keywhiz.service.daos.AclDAO
 
findAndEvictClient(long, long, AuditLog, String, Map<String, String>) - Method in class keywhiz.service.daos.AclDAO
 
findAndRevokeAccess(long, long, AuditLog, String, Map<String, String>) - Method in class keywhiz.service.daos.AclDAO
 
findClient(AutomationClient, Optional<String>) - Method in class keywhiz.service.resources.automation.AutomationClientResource
Deprecated.
Retrieve Client by a specified name, or all Clients if no name given
findClientById(AutomationClient, LongParam) - Method in class keywhiz.service.resources.automation.AutomationClientResource
Deprecated.
Retrieve Client by ID
findClients(User, String) - Method in class keywhiz.service.resources.admin.ClientsResource
Retrieve Client by a specified name, or all Clients if no name given
findGroups(User, String) - Method in class keywhiz.service.resources.admin.GroupsResource
Retrieve Group by a specified name, or all Groups if no name given
findSecrets(User, String, String, Integer, Integer, Boolean) - Method in class keywhiz.service.resources.admin.SecretsResource
Retrieve Secret by a specified name and version, or all Secrets if name is not given

G

GCMEncryptor - Class in keywhiz.auth.cookie
Encrypt data using an AES key, GCM mode
GCMEncryptor(byte[], SecureRandom) - Constructor for class keywhiz.auth.cookie.GCMEncryptor
Creates new encryptor.
generate(String) - Method in class keywhiz.auth.xsrf.XsrfProtection
 
GenerateAesKeyCommand - Class in keywhiz.commands
Generates an AES key in a keystore.
GenerateAesKeyCommand() - Constructor for class keywhiz.commands.GenerateAesKeyCommand
 
get() - Method in class keywhiz.service.resources.StatusResource
 
getAuthenticationScheme() - Method in class keywhiz.auth.mutualssl.CertificateSecurityContext
 
getCertificateChain() - Method in class keywhiz.auth.mutualssl.CertificatePrincipal
 
getClient(String) - Method in class keywhiz.service.daos.ClientDAO
 
getClient(User, LongParam) - Method in class keywhiz.service.resources.admin.ClientsResource
Retrieve Client by ID
getClientById(long) - Method in class keywhiz.service.daos.ClientDAO
 
getClientByName(User, String) - Method in class keywhiz.service.resources.admin.ClientsResource
 
getClients() - Method in class keywhiz.service.daos.ClientDAO
 
getClientsFor(Group) - Method in class keywhiz.service.daos.AclDAO
 
getClientsFor(Secret) - Method in class keywhiz.service.daos.AclDAO
 
getContentKeyStore() - Method in class keywhiz.KeywhizConfig
 
getCookieKey() - Method in class keywhiz.KeywhizConfig
 
getCrlPath() - Method in class keywhiz.service.config.ResourcesHttpsConnectorFactory
 
getDataSourceFactory() - Method in class keywhiz.KeywhizConfig
Customizes the database config when requested.
getDerivationProviderClass() - Method in class keywhiz.KeywhizConfig
 
getDomain() - Method in class keywhiz.auth.cookie.CookieConfig
 
getEnvironment() - Method in class keywhiz.KeywhizConfig
 
getExpiration() - Method in class keywhiz.auth.cookie.UserCookieData
 
getExpiredSessionCookie() - Method in class keywhiz.auth.cookie.AuthenticatedEncryptedCookieFactory
Produces an expired cookie string, used to update/overwrite an existing cookie.
getExpiringSanitizedSecrets(Long) - Method in class keywhiz.service.daos.SecretController
 
getGroup(String) - Method in class keywhiz.service.daos.GroupDAO
 
getGroup(User, LongParam) - Method in class keywhiz.service.resources.admin.GroupsResource
Retrieve Group by ID
getGroupById(long) - Method in class keywhiz.service.daos.GroupDAO
 
getGroupById(AutomationClient, LongParam) - Method in class keywhiz.service.resources.automation.AutomationGroupResource
Deprecated.
Retrieve Group by ID
getGroupByName(User, String) - Method in class keywhiz.service.resources.admin.GroupsResource
 
getGroupByName(AutomationClient, Optional<String>) - Method in class keywhiz.service.resources.automation.AutomationGroupResource
Deprecated.
Retrieve Group by a specified name, or all Groups if no name given
getGroups() - Method in class keywhiz.service.daos.GroupDAO
 
getGroupsFor(Secret) - Method in class keywhiz.service.daos.AclDAO
 
getGroupsFor(Client) - Method in class keywhiz.service.daos.AclDAO
 
getGroupsForSecrets(Set<Long>) - Method in class keywhiz.service.daos.AclDAO
 
getHashedPassword(String) - Method in class keywhiz.service.daos.UserDAO
 
getInformation(User) - Method in class keywhiz.service.resources.admin.SessionMeResource
Retrieve own user information
getInjector() - Method in class keywhiz.KeywhizService
 
getKeyStorePath() - Method in class keywhiz.service.config.ResourcesHttpsConnectorFactory
 
getKeyStorePath() - Method in class keywhiz.service.config.TemplatedHttpsConnectorFactory
 
getLDAPConnection() - Method in class keywhiz.auth.ldap.LdapConnectionFactory
 
getLDAPConnection(String, String) - Method in class keywhiz.auth.ldap.LdapConnectionFactory
 
getLookup() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getMessage() - Method in class keywhiz.service.resources.StatusResource.StatusResponse
 
getMigrationsDir() - Method in class keywhiz.KeywhizConfig
Customizes the migrations directory.
getName() - Method in class keywhiz.auth.cookie.CookieConfig
 
getName() - Method in class keywhiz.auth.mutualssl.CertificatePrincipal
 
getName() - Method in class keywhiz.auth.mutualssl.SimplePrincipal
 
getName() - Method in class keywhiz.auth.User
 
getName() - Method in class keywhiz.KeywhizService
 
getPassword() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getPassword() - Method in class keywhiz.KeywhizConfig.TemplatedDataSourceFactory
 
getPath() - Method in class keywhiz.auth.cookie.CookieConfig
 
getPort() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getReadonlyDataSourceFactory() - Method in class keywhiz.KeywhizConfig
Customizes the database config when requested.
getRequiredRoles() - Method in class keywhiz.auth.ldap.LdapLookupConfig
 
getResults() - Method in class keywhiz.service.resources.StatusResource.StatusResponse
 
getRoleBaseDN() - Method in class keywhiz.auth.ldap.LdapLookupConfig
 
getSanitizedSecretFor(Client, String) - Method in class keywhiz.service.daos.AclDAO
 
getSanitizedSecrets(Long, Group) - Method in class keywhiz.service.daos.SecretController
 
getSanitizedSecretsFor(Group) - Method in class keywhiz.service.daos.AclDAO
 
getSanitizedSecretsFor(Client) - Method in class keywhiz.service.daos.AclDAO
 
getSecret(String, Client) - Method in class keywhiz.service.resources.SecretDeliveryResource
Retrieve Secret by name
getSecretById(long) - Method in class keywhiz.service.daos.SecretController
 
getSecretById(long) - Method in class keywhiz.service.daos.SecretDAO
 
getSecretByName(String) - Method in class keywhiz.service.daos.SecretController
 
getSecretByName(String) - Method in class keywhiz.service.daos.SecretDAO
 
getSecrets(Long, Group) - Method in class keywhiz.service.daos.SecretDAO
 
getSecrets(Client) - Method in class keywhiz.service.resources.SecretsDeliveryResource
Retrieve Secret by name
getSecretsBatched(int, int, boolean) - Method in class keywhiz.service.daos.SecretController
 
getSecretsBatched(int, int, boolean) - Method in class keywhiz.service.daos.SecretDAO
 
getSecretSeries(Long, Group) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
getSecretSeriesBatched(int, int, boolean) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
getSecretSeriesById(long) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
getSecretSeriesByName(String) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
getSecretSeriesFor(Configuration, Group) - Method in class keywhiz.service.daos.AclDAO
 
getSecretSeriesFor(Configuration, Client, String) - Method in class keywhiz.service.daos.AclDAO
 
getSecretsNameOnly() - Method in class keywhiz.service.daos.SecretController
 
getSecretsNameOnly() - Method in class keywhiz.service.daos.SecretDAO
 
getSecretVersionsByName(String, int, int) - Method in class keywhiz.service.daos.SecretDAO
 
getServer() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getSession(User, ZonedDateTime) - Method in class keywhiz.auth.cookie.AuthenticatedEncryptedCookieFactory
Produces an authenticating token.
getSessionCookie(User, ZonedDateTime) - Method in class keywhiz.auth.cookie.AuthenticatedEncryptedCookieFactory
Shortcut method to produce an authenticated cookie string.
getSessionCookieConfig() - Method in class keywhiz.KeywhizConfig
 
getStatus() - Method in class keywhiz.service.resources.StatusResource.StatusResponse
 
getStatusCacheExpiry() - Method in class keywhiz.KeywhizConfig
 
getTrustStorePassword() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getTrustStorePath() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getTrustStorePath() - Method in class keywhiz.service.config.ResourcesHttpsConnectorFactory
 
getTrustStoreType() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getUser() - Method in class keywhiz.auth.cookie.UserCookieData
 
getUserAttribute() - Method in class keywhiz.auth.ldap.LdapLookupConfig
 
getUserAuthenticatorFactory() - Method in class keywhiz.KeywhizConfig
 
getUserBaseDN() - Method in class keywhiz.auth.ldap.LdapLookupConfig
 
getUserDN() - Method in class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
getUserPrincipal() - Method in class keywhiz.auth.mutualssl.CertificateSecurityContext
After ensuring your SecurityContext is an instance of CertificateSecurityContext, cast the Principal to a CertificatePrincipal.
getXsrfCookieConfig() - Method in class keywhiz.KeywhizConfig
 
GroupDAO - Class in keywhiz.service.daos
 
GroupDAO.GroupDAOFactory - Class in keywhiz.service.daos
 
GroupDAOFactory(DSLContext, DSLContext, GroupMapper, ObjectMapper) - Constructor for class keywhiz.service.daos.GroupDAO.GroupDAOFactory
 
groupInfo(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Retrieve information on a group
groupListing(AutomationClient) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Retrieve listing of group names
GroupResource - Class in keywhiz.service.resources.automation.v2
 
GroupResource(AclDAO.AclDAOFactory, GroupDAO.GroupDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.automation.v2.GroupResource
 
GroupsResource - Class in keywhiz.service.resources.admin
 
GroupsResource(AclDAO.AclDAOFactory, GroupDAO.GroupDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.admin.GroupsResource
 

I

init(FilterConfig) - Method in class keywhiz.auth.xsrf.XsrfServletFilter
 
init(FilterConfig) - Method in class keywhiz.service.filters.SecurityHeadersFilter
 
initialize(Bootstrap<KeywhizConfig>) - Method in class keywhiz.KeywhizService
 
isHttpOnly() - Method in class keywhiz.auth.cookie.CookieConfig
 
isSanitizedUsername(String) - Static method in class keywhiz.auth.User
 
isSecure() - Method in class keywhiz.auth.cookie.CookieConfig
 
isSecure() - Method in class keywhiz.auth.mutualssl.CertificateSecurityContext
 
isUserInRole(String) - Method in class keywhiz.auth.mutualssl.CertificateSecurityContext
 
isValid(String, String) - Static method in class keywhiz.auth.xsrf.XsrfProtection
 

J

JooqHealthCheck - Class in keywhiz
TODO: we could improve the code to use the read-write connection if only the readonly connection is down.
JooqHealthCheck(ManagedDataSource, JooqHealthCheck.OnFailure) - Constructor for class keywhiz.JooqHealthCheck
The constructor takes a ManagedDataSource instead of a DSLContext so that we can catch and handle any SQLException thrown by DSL.using.

K

KeyStoreConfig - Class in keywhiz.service.config
Configuration for accessing a keystore.
KeyStoreConfig() - Constructor for class keywhiz.service.config.KeyStoreConfig
 
keywhiz - package keywhiz
 
keywhiz.auth - package keywhiz.auth
 
keywhiz.auth.bcrypt - package keywhiz.auth.bcrypt
 
keywhiz.auth.cookie - package keywhiz.auth.cookie
 
keywhiz.auth.ldap - package keywhiz.auth.ldap
 
keywhiz.auth.mutualssl - package keywhiz.auth.mutualssl
 
keywhiz.auth.xsrf - package keywhiz.auth.xsrf
 
keywhiz.commands - package keywhiz.commands
 
keywhiz.service.config - package keywhiz.service.config
 
keywhiz.service.crypto - package keywhiz.service.crypto
 
keywhiz.service.daos - package keywhiz.service.daos
 
keywhiz.service.exceptions - package keywhiz.service.exceptions
 
keywhiz.service.filters - package keywhiz.service.filters
 
keywhiz.service.providers - package keywhiz.service.providers
 
keywhiz.service.resources - package keywhiz.service.resources
 
keywhiz.service.resources.admin - package keywhiz.service.resources.admin
 
keywhiz.service.resources.automation - package keywhiz.service.resources.automation
 
keywhiz.service.resources.automation.v2 - package keywhiz.service.resources.automation.v2
 
keywhiz.utility - package keywhiz.utility
 
KeywhizConfig - Class in keywhiz
Keywhiz app-level configuration.
KeywhizConfig() - Constructor for class keywhiz.KeywhizConfig
 
KeywhizConfig.TemplatedDataSourceFactory - Class in keywhiz
 
KeywhizService - Class in keywhiz
Starting point for Keywhiz, an implementation of the Dropwizard Service.
KeywhizService() - Constructor for class keywhiz.KeywhizService
 

L

LdapAuthenticator - Class in keywhiz.auth.ldap
 
LdapAuthenticator(LdapConnectionFactory, LdapLookupConfig) - Constructor for class keywhiz.auth.ldap.LdapAuthenticator
 
LdapAuthenticatorFactory - Class in keywhiz.auth.ldap
Configuration parameters for using an LDAP connection.
LdapAuthenticatorFactory() - Constructor for class keywhiz.auth.ldap.LdapAuthenticatorFactory
 
LdapConnectionFactory - Class in keywhiz.auth.ldap
 
LdapConnectionFactory(String, int, String, String, String, String, String) - Constructor for class keywhiz.auth.ldap.LdapConnectionFactory
 
LdapLookupConfig - Class in keywhiz.auth.ldap
 
LdapLookupConfig(String, String, Set<String>, String) - Constructor for class keywhiz.auth.ldap.LdapLookupConfig
 
LdapLookupConfig() - Constructor for class keywhiz.auth.ldap.LdapLookupConfig
 
listClients(User) - Method in class keywhiz.service.resources.admin.ClientsResource
 
listGroups(User) - Method in class keywhiz.service.resources.admin.GroupsResource
 
listSecrets(User) - Method in class keywhiz.service.resources.admin.SecretsResource
 
listSecretsBatched(User, int, int, boolean) - Method in class keywhiz.service.resources.admin.SecretsResource
 
listSecretsNameOnly(User) - Method in class keywhiz.service.resources.admin.SecretsResource
 
login(LoginRequest) - Method in class keywhiz.service.resources.admin.SessionLoginResource
Login and set a session cookie
logout(Cookie) - Method in class keywhiz.service.resources.admin.SessionLogoutResource
Logout and remove any session cookies

M

main(String[]) - Static method in class keywhiz.KeywhizService
Entry point into application.
ManualStatusHealthCheck - Class in keywhiz
Returns unhealthy when the ManualStatus servlet gets called
ManualStatusHealthCheck() - Constructor for class keywhiz.ManualStatusHealthCheck
 
ManualStatusServlet - Class in keywhiz
A Servlet added to the Admin Connector for manually making _status report unhealthy
ManualStatusServlet(ManualStatusHealthCheck) - Constructor for class keywhiz.ManualStatusServlet
 
MembershipResource - Class in keywhiz.service.resources.admin
 
MembershipResource(AclDAO.AclDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.admin.MembershipResource
 
migrate(Connection) - Method in class db.h2.migration.V3__remove_foreign_key
 
MigrateCommand - Class in keywhiz.commands
 
MigrateCommand() - Constructor for class keywhiz.commands.MigrateCommand
 
modifyClient(AutomationClient, String, ModifyClientRequestV2) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Modify a client
modifyClientGroups(AutomationClient, String, ModifyGroupsRequestV2) - Method in class keywhiz.service.resources.automation.v2.ClientResource
Modify groups a client has membership in
modifySecretGroups(AutomationClient, String, ModifyGroupsRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Modify the groups a secret is assigned to

N

name() - Method in class keywhiz.auth.mutualssl.SimplePrincipal
 
name() - Method in class keywhiz.auth.User
 
named(String) - Static method in class keywhiz.auth.User
 

O

of(String) - Static method in class keywhiz.auth.mutualssl.SimplePrincipal
 
of(String, String, String, String) - Static method in class keywhiz.service.config.KeyStoreConfig
 
openPath() - Method in class keywhiz.service.config.KeyStoreConfig
If the path does not exist on the filesystem, it is resolved as a resource.

P

partialUpdateSecret(String, String, PartialUpdateSecretRequestV2) - Method in class keywhiz.service.daos.SecretDAO
 
partialUpdateSecret(User, String, PartialUpdateSecretRequestV2) - Method in class keywhiz.service.resources.admin.SecretsResource
Update a subset of the fields of an existing secret
partialUpdateSecret(AutomationClient, String, PartialUpdateSecretRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Updates a subset of the fields of an existing secret
PreviewMigrateCommand - Class in keywhiz.commands
 
PreviewMigrateCommand() - Constructor for class keywhiz.commands.PreviewMigrateCommand
 
provide(ContainerRequest) - Method in class keywhiz.service.providers.AutomationClientAuthFactory
 
provide(ContainerRequest) - Method in class keywhiz.service.providers.ClientAuthFactory
 
provide(ContainerRequest) - Method in class keywhiz.service.providers.UserAuthFactory
 

R

Readonly - Annotation Type in keywhiz.service.config
 
readonly() - Method in class keywhiz.service.daos.AclDAO.AclDAOFactory
 
readonly() - Method in class keywhiz.service.daos.ClientDAO.ClientDAOFactory
 
readonly() - Method in interface keywhiz.service.daos.DAOFactory
Returns DAO using a read-only database connection.
readonly() - Method in class keywhiz.service.daos.GroupDAO.GroupDAOFactory
 
readonly() - Method in class keywhiz.service.daos.SecretDAO.SecretDAOFactory
 
readonly() - Method in class keywhiz.service.daos.SecretSeriesDAO.SecretSeriesDAOFactory
 
readSecretById(AutomationClient, LongParam) - Method in class keywhiz.service.resources.automation.AutomationSecretResource
Deprecated.
Retrieve secret by ID
readSecrets(AutomationClient, String) - Method in class keywhiz.service.resources.automation.AutomationSecretResource
Deprecated.
Retrieve secret by a specified name, or all secrets if no name given Note that retrieving all secrets could be an expensive query
readwrite() - Method in class keywhiz.service.daos.AclDAO.AclDAOFactory
 
readwrite() - Method in class keywhiz.service.daos.ClientDAO.ClientDAOFactory
 
readwrite() - Method in interface keywhiz.service.daos.DAOFactory
Returns DAO using a read/write database connection.
readwrite() - Method in class keywhiz.service.daos.GroupDAO.GroupDAOFactory
 
readwrite() - Method in class keywhiz.service.daos.SecretDAO.SecretDAOFactory
 
readwrite() - Method in class keywhiz.service.daos.SecretSeriesDAO.SecretSeriesDAOFactory
 
require() - Static method in class keywhiz.auth.BouncyCastle
 
requiredRoles - Variable in class keywhiz.auth.ldap.LdapLookupConfig
In addition to successful login, additional LDAP roles (group memberships) can be required.
resetSecretVersion(User, String, LongParam) - Method in class keywhiz.service.resources.admin.SecretsResource
Rollback to a previous secret version
resetSecretVersion(AutomationClient, SetSecretVersionRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Reset the current version of the given secret to the given version index.
resolvedPassword() - Method in class keywhiz.service.config.KeyStoreConfig
If the password is templated (e.g.
ResourcesHttpsConnectorFactory - Class in keywhiz.service.config
 
ResourcesHttpsConnectorFactory() - Constructor for class keywhiz.service.config.ResourcesHttpsConnectorFactory
 
retrieveSecret(User, String) - Method in class keywhiz.service.resources.admin.SecretsResource
 
retrieveSecret(User, LongParam) - Method in class keywhiz.service.resources.admin.SecretsResource
Retrieve Secret by ID
revokeAccess(Configuration, long, long) - Method in class keywhiz.service.daos.AclDAO
 
roleBaseDN - Variable in class keywhiz.auth.ldap.LdapLookupConfig
LDAP base DN to scope role search with.
run(Bootstrap<KeywhizConfig>, Namespace, KeywhizConfig) - Method in class keywhiz.commands.AddUserCommand
 
run(Bootstrap<KeywhizConfig>, Namespace, KeywhizConfig) - Method in class keywhiz.commands.DbSeedCommand
 
run(Bootstrap<?>, Namespace) - Method in class keywhiz.commands.GenerateAesKeyCommand
 
run(Bootstrap<KeywhizConfig>, Namespace, KeywhizConfig) - Method in class keywhiz.commands.MigrateCommand
 
run(Bootstrap<KeywhizConfig>, Namespace, KeywhizConfig) - Method in class keywhiz.commands.PreviewMigrateCommand
 
run(KeywhizConfig, Environment) - Method in class keywhiz.KeywhizService
 

S

sawClient(Client) - Method in class keywhiz.service.daos.ClientDAO
 
secretContents(AutomationClient, SecretContentsRequestV2) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve contents for a set of secret series.
SecretController - Class in keywhiz.service.daos
 
SecretController(SecretTransformer, ContentCryptographer, SecretDAO, AclDAO) - Constructor for class keywhiz.service.daos.SecretController
 
SecretController.SecretBuilder - Class in keywhiz.service.daos
Builder to generate new secret series or versions with.
SecretDAO - Class in keywhiz.service.daos
Primary class to interact with Secrets.
SecretDAO.SecretDAOFactory - Class in keywhiz.service.daos
 
SecretDAOFactory(DSLContext, DSLContext, SecretContentDAO.SecretContentDAOFactory, SecretSeriesDAO.SecretSeriesDAOFactory, ContentCryptographer) - Constructor for class keywhiz.service.daos.SecretDAO.SecretDAOFactory
 
SecretDeliveryResource - Class in keywhiz.service.resources
 
SecretDeliveryResource(SecretController, AclDAO.AclDAOFactory, ClientDAO.ClientDAOFactory) - Constructor for class keywhiz.service.resources.SecretDeliveryResource
 
secretDetailForGroup(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.GroupResource
Retrieve metadata for secrets in a particular group.
secretGroupsListing(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Listing of groups a secret is assigned to
secretInfo(AutomationClient, String) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve information on a secret series
secretListing(AutomationClient, Integer, Integer, boolean) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secret names.
secretListingExpiring(AutomationClient, Long) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secrets expiring soon
secretListingExpiringForGroup(AutomationClient, Long, String) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secrets expiring soon in a group
secretListingExpiringV2(AutomationClient, Long) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secrets expiring soon
secretListingExpiringV3(AutomationClient, Long) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secrets expiring soon
secretListingV2(AutomationClient, Integer, Integer, boolean) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve listing of secrets.
SecretResource - Class in keywhiz.service.resources.automation.v2
 
SecretResource(SecretController, AclDAO.AclDAOFactory, GroupDAO.GroupDAOFactory, SecretDAO.SecretDAOFactory, AuditLog, SecretSeriesDAO.SecretSeriesDAOFactory, ContentCryptographer, SecretController) - Constructor for class keywhiz.service.resources.automation.v2.SecretResource
 
SecretsDeliveryResource - Class in keywhiz.service.resources
 
SecretsDeliveryResource(AclDAO.AclDAOFactory) - Constructor for class keywhiz.service.resources.SecretsDeliveryResource
 
SecretSeriesDAO - Class in keywhiz.service.daos
Interacts with 'secrets' table and actions on SecretSeries entities.
SecretSeriesDAO.SecretSeriesDAOFactory - Class in keywhiz.service.daos
 
SecretSeriesDAOFactory(DSLContext, DSLContext, ObjectMapper, SecretSeriesMapper) - Constructor for class keywhiz.service.daos.SecretSeriesDAO.SecretSeriesDAOFactory
 
SecretsResource - Class in keywhiz.service.resources.admin
 
SecretsResource(SecretController, AclDAO.AclDAOFactory, SecretDAO.SecretDAOFactory, AuditLog) - Constructor for class keywhiz.service.resources.admin.SecretsResource
 
SecretTransformer - Class in keywhiz.service.crypto
Transforms DB content to Secret model, performing crypto when needed.
SecretTransformer(ContentCryptographer) - Constructor for class keywhiz.service.crypto.SecretTransformer
 
secretVersions(User, String, int, int) - Method in class keywhiz.service.resources.admin.SecretsResource
Retrieve the given range of versions of this secret, sorted from newest to oldest update time.
secretVersions(AutomationClient, String, int, int) - Method in class keywhiz.service.resources.automation.v2.SecretResource
Retrieve the given range of versions of this secret, sorted from newest to oldest update time.
secureCompare(byte[], byte[]) - Static method in class keywhiz.auth.Subtles
Compare two byte arrays in constant time, so as to protect against timing attacks.
secureCompare(char[], char[]) - Static method in class keywhiz.auth.Subtles
Compare two char arrays in constant time, so as to protect against timing attacks.
secureCompare(String, String) - Static method in class keywhiz.auth.Subtles
Compare two Strings in constant time, so as to protect against timing attacks.
SecurityHeadersFilter - Class in keywhiz.service.filters
Sets a variety of web security headers in every response.
SecurityHeadersFilter() - Constructor for class keywhiz.service.filters.SecurityHeadersFilter
 
ServiceModule - Class in keywhiz
 
ServiceModule(KeywhizConfig, Environment) - Constructor for class keywhiz.ServiceModule
 
SessionCookie - Annotation Type in keywhiz.auth.cookie
Annotates values related to session cookies.
SessionLoginResource - Class in keywhiz.service.resources.admin
 
SessionLoginResource(Authenticator<BasicCredentials, User>, AuthenticatedEncryptedCookieFactory, XsrfProtection) - Constructor for class keywhiz.service.resources.admin.SessionLoginResource
 
SessionLogoutResource - Class in keywhiz.service.resources.admin
 
SessionLogoutResource(CookieAuthenticator, AuthenticatedEncryptedCookieFactory) - Constructor for class keywhiz.service.resources.admin.SessionLogoutResource
 
SessionMeResource - Class in keywhiz.service.resources.admin
 
SessionMeResource() - Constructor for class keywhiz.service.resources.admin.SessionMeResource
 
setCurrentSecretVersionByName(String, long) - Method in class keywhiz.service.daos.SecretDAO
 
setCurrentVersion(long, long) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
setDomain(String) - Method in class keywhiz.auth.cookie.CookieConfig
 
setExpiration(String, Instant) - Method in class keywhiz.service.daos.SecretDAO
 
setExpiration(long, Instant) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
setHmac(long, String) - Method in class keywhiz.service.daos.SecretSeriesDAO
 
setHttpOnly(boolean) - Method in class keywhiz.auth.cookie.CookieConfig
 
setInjector(Injector) - Method in class keywhiz.KeywhizService
 
setName(String) - Method in class keywhiz.auth.cookie.CookieConfig
 
setPath(String) - Method in class keywhiz.auth.cookie.CookieConfig
 
setSecure(boolean) - Method in class keywhiz.auth.cookie.CookieConfig
 
SimplePrincipal - Class in keywhiz.auth.mutualssl
Simple principal wraps a string as a Principal object.
SimplePrincipal() - Constructor for class keywhiz.auth.mutualssl.SimplePrincipal
 
StatusResource - Class in keywhiz.service.resources
Serve status information
StatusResource(KeywhizConfig, Environment) - Constructor for class keywhiz.service.resources.StatusResource
 
StatusResource.StatusResponse - Class in keywhiz.service.resources
 
Subtles - Class in keywhiz.auth
Cryptographic utility methods that are somewhat subtle.

T

TemplatedDataSourceFactory() - Constructor for class keywhiz.KeywhizConfig.TemplatedDataSourceFactory
 
TemplatedHttpsConnectorFactory - Class in keywhiz.service.config
 
TemplatedHttpsConnectorFactory() - Constructor for class keywhiz.service.config.TemplatedHttpsConnectorFactory
 
Templates - Class in keywhiz.service.config
 
Templates() - Constructor for class keywhiz.service.config.Templates
 
toString() - Method in class keywhiz.auth.mutualssl.CertificatePrincipal
 
toString() - Method in class keywhiz.service.resources.StatusResource.StatusResponse
 
transform(SecretSeriesAndContent) - Method in class keywhiz.service.crypto.SecretTransformer
Transform DB content to a Secret model.
type() - Method in class keywhiz.service.config.KeyStoreConfig
 

U

UnprocessableEntityException - Exception in keywhiz.service.exceptions
HTTP exception indicating an unprocessable entity (code 422).
UnprocessableEntityException(String) - Constructor for exception keywhiz.service.exceptions.UnprocessableEntityException
 
User - Class in keywhiz.auth
 
User() - Constructor for class keywhiz.auth.User
 
UserAuthenticatorFactory - Interface in keywhiz.auth
 
UserAuthFactory - Class in keywhiz.service.providers
Authenticates Users from requests based on cookies and roles.
UserAuthFactory(CookieAuthenticator, CookieConfig) - Constructor for class keywhiz.service.providers.UserAuthFactory
 
UserCookieData - Class in keywhiz.auth.cookie
Object for JSON serialized cookies.
UserCookieData(User, ZonedDateTime) - Constructor for class keywhiz.auth.cookie.UserCookieData
 
UserDAO - Class in keywhiz.service.daos
 
UserDAO(DSLContext) - Constructor for class keywhiz.service.daos.UserDAO
 
USERNAME_PATTERN - Static variable in class keywhiz.auth.User
 
using(Configuration) - Method in class keywhiz.service.daos.AclDAO.AclDAOFactory
 
using(Configuration) - Method in class keywhiz.service.daos.ClientDAO.ClientDAOFactory
 
using(Configuration) - Method in interface keywhiz.service.daos.DAOFactory
Returns DAO using a supplied jOOQ configuration.
using(Configuration) - Method in class keywhiz.service.daos.GroupDAO.GroupDAOFactory
 
using(Configuration) - Method in class keywhiz.service.daos.SecretDAO.SecretDAOFactory
 
using(Configuration) - Method in class keywhiz.service.daos.SecretSeriesDAO.SecretSeriesDAOFactory
 

V

V3__remove_foreign_key - Class in db.h2.migration
 
V3__remove_foreign_key() - Constructor for class db.h2.migration.V3__remove_foreign_key
 

W

withDescription(String) - Method in class keywhiz.service.daos.SecretController.SecretBuilder
Supply an optional description of the secret.
withMetadata(Map<String, String>) - Method in class keywhiz.service.daos.SecretController.SecretBuilder
Supply optional map of metadata properties for the secret.
withType(String) - Method in class keywhiz.service.daos.SecretController.SecretBuilder
Supply a secret type, otherwise the default '' is used.

X

Xsrf - Annotation Type in keywhiz.auth.xsrf
Annotates values related to XSRF cookies.
XsrfProtection - Class in keywhiz.auth.xsrf
Cross-site request forgery (XSRF or CSRF) is an attack which lets an attacker trigger requests in your browser to a sensitive site you're already logged in to.
XsrfProtection(CookieConfig) - Constructor for class keywhiz.auth.xsrf.XsrfProtection
 
XsrfServletFilter - Class in keywhiz.auth.xsrf
 
XsrfServletFilter(CookieConfig, String) - Constructor for class keywhiz.auth.xsrf.XsrfServletFilter
 
A B C D E F G I J K L M N O P R S T U V W X 
Skip navigation links

Copyright © 2017. All rights reserved.