Security Connectors

Security Connectors are a collection of Jakarta EE Security adapters that implements industry-standard security protocols, specifications and integrates with third-party security artifacts & components.

In version 5.2021.1, the available connectors on maven central are:

OpenId Connect Client:

Implements OpenId Connect standard protocol by implementing Jakarta EE Security HTTP Authentication Mechanism and Identity Store for authentication & authorization using @OpenIdAuthenticationDefinition annotation and also provides access to the user’s profile info, Identity token, Access token, & Refresh token using CDI based injection.

OAuth 2.0 Client:

Implements OAuth 2.0 standard protocol by implementing Jakarta EE Security HTTP Authentication Mechanism and Identity Store for authorization using @OAuth2AuthenticationDefinition annotation and provides access to the Identity token and Access token using CDI based injection.

Payara Platform Enterprise also provides the built-in Yubikey Authentication Mechanism. This allows authentication through a hardware device. This type of authentication removes some need of using credentials and requires authenticating using a physical token in a very secure way.