Skip to content

Commit

Permalink
WL#16490, OpenID Connect authentication support - documentation review.
Browse files Browse the repository at this point in the history
Change-Id: I41b0194022f3a78642f623a5b4818a7a313c02bc
  • Loading branch information
fjssilva committed Sep 19, 2024
1 parent f545ee7 commit cc462a6
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 4 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -27,9 +27,9 @@
/**
* The callback object used by the authentication plugin AuthenticationOpenidConnectClient to let the client application supply Identity Tokens to the driver.
*
* In OpenID user authentication is outsourced to an IDP. This Callback is required to allow triggering some sort of user interaction, to perform a login into
* an external system, at the time the connection is established and not prior to it. This is so because this depends on the mysql user being authenticated and
* how this user is created in the MySQL Server.
* In OpenID, user authentication is outsourced to an IdP. This Callback is required to trigger some sort of user interaction by performing a login into an
* external system at the time the connection is established but not prior to it, because the success of the authentication depends on the MySQL user being
* authenticated and how the user was created on the MySQL Server.
*/
public class OpenidConnectAuthenticationCallback implements MysqlCallback {

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -1056,7 +1056,7 @@ ConnectionProperties.allowReplicaDownConnections=By default, a replication-aware
ConnectionProperties.allowSourceDownConnections=By default, a replication-aware connection will fail to connect when configured source hosts are all unavailable at initial connection. Setting this property to "true" allows to establish the initial connection, by failing over to the replica servers, in read-only state. It won''t prevent subsequent failures when switching back to the source hosts i.e. by setting the replication connection to read/write state.
ConnectionProperties.allowUrlInLoadLocal=Should the driver allow URLs in "LOAD DATA LOCAL INFILE ..." statements?
ConnectionProperties.alwaysSendSetIsolation=Should the driver always communicate with the database when ''Connection.setTransactionIsolation()'' is called? If set to "false", the driver will only communicate with the database when the requested transaction isolation is different than the whichever is newer, the last value that was set via ''Connection.setTransactionIsolation()'', or the value that was read from the server when the connection was established. Note that "useLocalSessionState=true" will force the same behavior as "alwaysSendSetIsolation=false", regardless of how ''alwaysSendSetIsolation'' is set.
ConnectionProperties.authenticationOpenidConnectCallbackHandler=A fully-qualified class name of a class that implements the ''com.mysql.cj.callback.MysqlCallbackHandler'' interface. This class will be utilized by the OpenID Connect authentication plugin to retrieve the Identity Token, a JSON document representing the result of an authentication process, which will then be sent to the MySQL Server for further validation. For more details, refer to the documentation for ''com.mysql.cj.callback.OpenidConnectAuthenticationCallback''. A default implementation of this handler supports reading the Identity Token from a file on the file system. In such cases, the additional connection property ''idTokenFile'' must be used to specify the absolute path to the file.
ConnectionProperties.authenticationOpenidConnectCallbackHandler=A fully-qualified class name of a class that implements the ''com.mysql.cj.callback.MysqlCallbackHandler'' interface. This class will be utilized by the OpenID Connect authentication plugin to retrieve the Identity Token, a JSON document representing the result of an authentication process, which will then be sent to the MySQL Server for further validation. For more details, refer to the documentation for ''com.mysql.cj.callback.OpenidConnectAuthenticationCallback''. The default implementation of this handler supports reading the Identity Token from a file on the file system, for which the additional connection property ''idTokenFile'' must be used to specify the absolute path to the file.
ConnectionProperties.authenticationPlugins=Comma-delimited list of classes that implement the interface ''com.mysql.cj.protocol.AuthenticationPlugin''. These plugins will be loaded at connection initialization and can be used together with their sever-side counterparts for authenticating users, unless they are disabled in the connection property ''disabledAuthenticationPlugins''.
ConnectionProperties.authenticationWebAuthnCallbackHandler=A fully-qualified class name of a class that implements the ''com.mysql.cj.callback.MysqlCallbackHandler'' interface. This class will be utilized by the WebAuthn authentication plugin to retrieve the authenticator data and signature required for the WebAuthn authentication process. For more details, refer to the documentation for ''com.mysql.cj.callback.WebAuthnAuthenticationCallback'.
ConnectionProperties.autoClosePstmtStreams=Should the driver automatically call the method ''close()'' on streams/readers passed as arguments via ''set*()'' methods?
Expand Down

0 comments on commit cc462a6

Please sign in to comment.