Security Connectors

Security Connectors are a collection of Jakarta EE Security adapters that implements industry-standard security protocols, specifications and integrates with third-party security artifacts & components.

The available connectors on Maven central are:

OpenId Connect Client

Implements OpenId Connect standard protocol by implementing Jakarta EE Security HTTP Authentication Mechanism and Identity Store for authentication & authorization using @OpenIdAuthenticationDefinition annotation and also provides access to the user’s profile info, Identity token, Access token, & Refresh token using CDI based injection.

OAuth 2.0 Client:

Implements OAuth 2.0 standard protocol by implementing Jakarta EE Security HTTP Authentication Mechanism and Identity Store for authorization using @OAuth2AuthenticationDefinition annotation and provides access to the Identity token and Access token using CDI based injection.

Payara Platform Enterprise also provides the built-in link:https://docs.payara.fish/enterprise/docs//Technical Documentation/Payara Server Documentation/Public API/yubikey.html[Yubikey Authentication Mechanism]. This allows authentication through a hardware device. This type of authentication removes some need of using credentials and requires authenticating using a physical token in a very secure way.