Prosoft Git

NginxProxySslClientCertificateLookupFactory.java

Home / services / src / main / java / org / keycloak / services / x509 / NginxProxySslClientCertificateLookupFactory.java

29 lines | 852 B Blame History Raw Download 
package org.keycloak.services.x509;

import org.keycloak.models.KeycloakSession;

/**
 * The factory and the corresponding providers extract a client certificate
 * from a NGINX reverse proxy (TLS termination).
 *  
 * @author <a href="mailto:arnault.michel@toad-consulting.com">Arnault MICHEL</a>
 * @version $Revision: 1 $
 * @since 10/09/2018
 */

public class NginxProxySslClientCertificateLookupFactory extends AbstractClientCertificateFromHttpHeadersLookupFactory {

    private final static String PROVIDER = "nginx";

    @Override
    public X509ClientCertificateLookup create(KeycloakSession session) {
        return new NginxProxySslClientCertificateLookup(sslClientCertHttpHeader,
                sslChainHttpHeaderPrefix, certificateChainLength, session);
    }

    @Override
    public String getId() {
        return PROVIDER;
    }
}

Bonobo Git Server (6.3.0.632) © 2015 Jakub Chodounský · Official Page · Github