@Override public boolean isOidcEnabled() { return properties.isOidcEnabled(); }
@Override public KnoxService getObject() throws Exception { if (knoxService == null) { // ensure we only allow knox if login and oidc are disabled if (properties.isKnoxSsoEnabled() && (properties.isLoginIdentityProviderEnabled() || properties.isOidcEnabled())) { throw new RuntimeException("Apache Knox SSO support cannot be enabled if the Login Identity Provider or OpenId Connect is configured."); } final KnoxConfiguration configuration = new StandardKnoxConfiguration(properties); knoxService = new KnoxService(configuration); } return knoxService; }
/** * Returns true if client certificates are required for REST API. Determined * if the following conditions are all true: * <p> * - login identity provider is not populated * - Kerberos service support is not enabled * - openid connect is not enabled * - knox sso is not enabled * </p> * * @return true if client certificates are required for access to the REST API */ public boolean isClientAuthRequiredForRestApi() { return !isLoginIdentityProviderEnabled() && !isKerberosSpnegoSupportEnabled() && !isOidcEnabled() && !isKnoxSsoEnabled(); }
webUiContext.getInitParams().put("oidc-supported", String.valueOf(props.isOidcEnabled())); webUiContext.getInitParams().put("knox-supported", String.valueOf(props.isKnoxSsoEnabled())); webUiContext.getInitParams().put("whitelistedContextPaths", props.getWhitelistedContextPaths());
if (properties.isOidcEnabled()) { if (properties.isLoginIdentityProviderEnabled() || properties.isKnoxSsoEnabled()) { throw new RuntimeException("OpenId Connect support cannot be enabled if the Login Identity Provider or Apache Knox SSO is configured.");
@Override public boolean isOidcEnabled() { return properties.isOidcEnabled(); }
@Override public KnoxService getObject() throws Exception { if (knoxService == null) { // ensure we only allow knox if login and oidc are disabled if (properties.isKnoxSsoEnabled() && (properties.isLoginIdentityProviderEnabled() || properties.isOidcEnabled())) { throw new RuntimeException("Apache Knox SSO support cannot be enabled if the Login Identity Provider or OpenId Connect is configured."); } final KnoxConfiguration configuration = new StandardKnoxConfiguration(properties); knoxService = new KnoxService(configuration); } return knoxService; }
/** * Returns true if client certificates are required for REST API. Determined * if the following conditions are all true: * <p> * - login identity provider is not populated * - Kerberos service support is not enabled * - openid connect is not enabled * - knox sso is not enabled * </p> * * @return true if client certificates are required for access to the REST API */ public boolean isClientAuthRequiredForRestApi() { return !isLoginIdentityProviderEnabled() && !isKerberosSpnegoSupportEnabled() && !isOidcEnabled() && !isKnoxSsoEnabled(); }
if (properties.isOidcEnabled()) { if (properties.isLoginIdentityProviderEnabled() || properties.isKnoxSsoEnabled()) { throw new RuntimeException("OpenId Connect support cannot be enabled if the Login Identity Provider or Apache Knox SSO is configured.");