Sync documentation of main branch

actions-user · actions-user · commit 296dd926c90b · 2024-12-16T01:55:05.000Z
diff --git a/_generated-doc/main/config/quarkus-all-config.adoc b/_generated-doc/main/config/quarkus-all-config.adoc
@@ -67138,8 +67138,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-token-path[`quarkus.oidc.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc."tenant".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc."tenant".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-secret[`quarkus.oidc.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
@@ -70999,8 +71025,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path[`quarkus.oidc-client.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc-client."id".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client."id".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret[`quarkus.oidc-client.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
@@ -91056,6 +91108,27 @@ endif::add-copy-button-to-env-var[]
 |string
 |
 
+a| [[quarkus-tls-registry_quarkus-tls-trust-store-certificate-expiration-policy]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-trust-store-certificate-expiration-policy[`quarkus.tls.trust-store.certificate-expiration-policy`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.tls.trust-store.certificate-expiration-policy+++[]
+endif::add-copy-button-to-config-props[]
+
+
+[.description]
+--
+Enforce certificate expiration. When enabled, the certificate expiration date is verified and the certificate (or any certificate in the chain) is rejected if it is expired.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_TLS_TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_TLS_TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++`
+endif::add-copy-button-to-env-var[]
+--
+a|tooltip:ignore[Ignore the expiration date.], tooltip:warn[Log a warning when the certificate is expired.], tooltip:reject[Reject the certificate if it is expired.]
+|tooltip:warn[Log a warning when the certificate is expired.]
+
 a| [[quarkus-tls-registry_quarkus-tls-trust-store-credentials-provider-name]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-trust-store-credentials-provider-name[`quarkus.tls.trust-store.credentials-provider.name`]##
 ifdef::add-copy-button-to-config-props[]
 config_property_copy_button:+++quarkus.tls.trust-store.credentials-provider.name+++[]
@@ -91990,6 +92063,27 @@ endif::add-copy-button-to-env-var[]
 |string
 |
 
+a| [[quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-certificate-expiration-policy]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-certificate-expiration-policy[`quarkus.tls."tls-bucket-name".trust-store.certificate-expiration-policy`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.tls."tls-bucket-name".trust-store.certificate-expiration-policy+++[]
+endif::add-copy-button-to-config-props[]
+
+
+[.description]
+--
+Enforce certificate expiration. When enabled, the certificate expiration date is verified and the certificate (or any certificate in the chain) is rejected if it is expired.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_TLS__TLS_BUCKET_NAME__TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_TLS__TLS_BUCKET_NAME__TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++`
+endif::add-copy-button-to-env-var[]
+--
+a|tooltip:ignore[Ignore the expiration date.], tooltip:warn[Log a warning when the certificate is expired.], tooltip:reject[Reject the certificate if it is expired.]
+|tooltip:warn[Log a warning when the certificate is expired.]
+
 a| [[quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-credentials-provider-name]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-credentials-provider-name[`quarkus.tls."tls-bucket-name".trust-store.credentials-provider.name`]##
 ifdef::add-copy-button-to-config-props[]
 config_property_copy_button:+++quarkus.tls."tls-bucket-name".trust-store.credentials-provider.name+++[]
diff --git a/_generated-doc/main/config/quarkus-oidc-client.adoc b/_generated-doc/main/config/quarkus-oidc-client.adoc
@@ -1058,8 +1058,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path[`quarkus.oidc-client.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc-client."id".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client."id".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret[`quarkus.oidc-client.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
diff --git a/_generated-doc/main/config/quarkus-oidc-client_quarkus.oidc-client.adoc b/_generated-doc/main/config/quarkus-oidc-client_quarkus.oidc-client.adoc
@@ -1058,8 +1058,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-token-path[`quarkus.oidc-client.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc-client."id".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc-client."id".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CLIENT_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc-client_quarkus-oidc-client-credentials-jwt-secret[`quarkus.oidc-client.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
diff --git a/_generated-doc/main/config/quarkus-oidc.adoc b/_generated-doc/main/config/quarkus-oidc.adoc
@@ -1172,8 +1172,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-token-path[`quarkus.oidc.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc."tenant".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc."tenant".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-secret[`quarkus.oidc.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
diff --git a/_generated-doc/main/config/quarkus-oidc_quarkus.oidc.adoc b/_generated-doc/main/config/quarkus-oidc_quarkus.oidc.adoc
@@ -1172,8 +1172,34 @@ ifndef::add-copy-button-to-env-var[]
 Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_SOURCE+++`
 endif::add-copy-button-to-env-var[]
 --
-a|`client`, `bearer`
-|`client`
+a|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.], tooltip:bearer[JWT bearer token is used as a client assertion\: https\://www.rfc-editor.org/rfc/rfc7523++#++section-2.2.]
+|tooltip:client[JWT token is generated by the OIDC provider client to support `client_secret_jwt` and `private_key_jwt` authentication methods.]
+
+a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-token-path]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-token-path[`quarkus.oidc.credentials.jwt.token-path`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc.credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+
+`quarkus.oidc."tenant".credentials.jwt.token-path`
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.oidc."tenant".credentials.jwt.token-path+++[]
+endif::add-copy-button-to-config-props[]
+
+[.description]
+--
+Path to a file with a JWT bearer token that should be used as a client assertion. This path can only be set when JWT source (`source()`) is set to `Source++#++BEARER`.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_OIDC_CREDENTIALS_JWT_TOKEN_PATH+++`
+endif::add-copy-button-to-env-var[]
+--
+|path
+|
 
 a| [[quarkus-oidc_quarkus-oidc-credentials-jwt-secret]] [.property-path]##link:#quarkus-oidc_quarkus-oidc-credentials-jwt-secret[`quarkus.oidc.credentials.jwt.secret`]##
 ifdef::add-copy-button-to-config-props[]
diff --git a/_generated-doc/main/config/quarkus-tls-registry.adoc b/_generated-doc/main/config/quarkus-tls-registry.adoc
@@ -571,6 +571,27 @@ endif::add-copy-button-to-env-var[]
 |string
 |
 
+a| [[quarkus-tls-registry_quarkus-tls-trust-store-certificate-expiration-policy]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-trust-store-certificate-expiration-policy[`quarkus.tls.trust-store.certificate-expiration-policy`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.tls.trust-store.certificate-expiration-policy+++[]
+endif::add-copy-button-to-config-props[]
+
+
+[.description]
+--
+Enforce certificate expiration. When enabled, the certificate expiration date is verified and the certificate (or any certificate in the chain) is rejected if it is expired.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_TLS_TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_TLS_TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++`
+endif::add-copy-button-to-env-var[]
+--
+a|tooltip:ignore[Ignore the expiration date.], tooltip:warn[Log a warning when the certificate is expired.], tooltip:reject[Reject the certificate if it is expired.]
+|tooltip:warn[Log a warning when the certificate is expired.]
+
 a| [[quarkus-tls-registry_quarkus-tls-trust-store-credentials-provider-name]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-trust-store-credentials-provider-name[`quarkus.tls.trust-store.credentials-provider.name`]##
 ifdef::add-copy-button-to-config-props[]
 config_property_copy_button:+++quarkus.tls.trust-store.credentials-provider.name+++[]
@@ -1505,6 +1526,27 @@ endif::add-copy-button-to-env-var[]
 |string
 |
 
+a| [[quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-certificate-expiration-policy]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-certificate-expiration-policy[`quarkus.tls."tls-bucket-name".trust-store.certificate-expiration-policy`]##
+ifdef::add-copy-button-to-config-props[]
+config_property_copy_button:+++quarkus.tls."tls-bucket-name".trust-store.certificate-expiration-policy+++[]
+endif::add-copy-button-to-config-props[]
+
+
+[.description]
+--
+Enforce certificate expiration. When enabled, the certificate expiration date is verified and the certificate (or any certificate in the chain) is rejected if it is expired.
+
+
+ifdef::add-copy-button-to-env-var[]
+Environment variable: env_var_with_copy_button:+++QUARKUS_TLS__TLS_BUCKET_NAME__TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++[]
+endif::add-copy-button-to-env-var[]
+ifndef::add-copy-button-to-env-var[]
+Environment variable: `+++QUARKUS_TLS__TLS_BUCKET_NAME__TRUST_STORE_CERTIFICATE_EXPIRATION_POLICY+++`
+endif::add-copy-button-to-env-var[]
+--
+a|tooltip:ignore[Ignore the expiration date.], tooltip:warn[Log a warning when the certificate is expired.], tooltip:reject[Reject the certificate if it is expired.]
+|tooltip:warn[Log a warning when the certificate is expired.]
+
 a| [[quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-credentials-provider-name]] [.property-path]##link:#quarkus-tls-registry_quarkus-tls-tls-bucket-name-trust-store-credentials-provider-name[`quarkus.tls."tls-bucket-name".trust-store.credentials-provider.name`]##
 ifdef::add-copy-button-to-config-props[]
 config_property_copy_button:+++quarkus.tls."tls-bucket-name".trust-store.credentials-provider.name+++[]
diff --git a/_generated-doc/main/config/quarkus-tls-registry_quarkus.tls.adoc b/_generated-doc/main/config/quarkus-tls-registry_quarkus.tls.adoc
diff --git a/_versions/main/guides/security-oidc-code-flow-authentication.adoc b/_versions/main/guides/security-oidc-code-flow-authentication.adoc
diff --git a/_versions/main/guides/security-openid-connect-client-reference.adoc b/_versions/main/guides/security-openid-connect-client-reference.adoc
