connOpts = append(connOpts, nats.RootCAs(n.CertAuthority))
	}
	if n.ClientCert != "" && n.ClientKey != "" {
		connOpts = append(connOpts, nats.ClientCert(n.ClientCert, n.ClientKey))
	}
	return nats.Connect(n.Address.String(), connOpts...)
}

// To obtain a streaming connection from args.
func (n NATSArgs) connectStan() (stan.Conn, error) {
	scheme := "nats"
	if n.Secure {
		scheme = "tls"
	}

        this.maxReadWriteSize = RdmaCapabilities.DEFAULT_MAX_READ_WRITE_SIZE;
    }

    /**
     * Establish RDMA connection
     *
     * @throws IOException if connection fails
     */
    public abstract void connect() throws IOException;

    /**
     * Send data using RDMA
     *
     * @param data data buffer to send
     * @param region registered memory region for the data
     * @throws IOException if send fails

## Introduction

MinIO provides a custom STS API that allows authentication with client X.509 / TLS certificates.

A major advantage of certificate-based authentication compared to other STS authentication methods, like OpenID Connect or LDAP/AD, is that client authentication works without any additional/external component that must be constantly available. Therefore, certificate-based authentication may provide better availability / lower operational complexity.

        if (form.ragLlmName != null && isValidRagLlmName(form.ragLlmName)) {
            fessConfig.setRagLlmName(form.ragLlmName);
        }

        // OpenID Connect
        if (form.oicClientId != null && StringUtil.isNotBlank(form.oicClientId.replace("*", " "))) {
            fessConfig.setSystemProperty("oic.client.id", form.oicClientId);
        }

    val call1Connect = server.takeRequest()
    assertThat(call1Connect.method).isEqualTo("CONNECT")
    assertThat(call1Connect.exchangeIndex).isEqualTo(0)
    val call2Connect = server.takeRequest()
    assertThat(call2Connect.method).isEqualTo("CONNECT")
    assertThat(call2Connect.exchangeIndex).isEqualTo(0)
    val call2Get = server.takeRequest()

        @Override
        public int getOpnum() {
            return 0x39;
        }

        /** The return value of the operation */
        public int retval;
        /** The NetBIOS name of the server to connect to */
        public String system_name;
        /** The desired access rights to the SAM server */
        public int access_mask;
        /** The returned handle to the SAM server */

        @Override
        public int getOpnum() {
            return 0x39;
        }

        /** The return value of the operation */
        public int retval;
        /** The NetBIOS name of the server to connect to */
        public String system_name;
        /** The desired access rights to the SAM server */
        public int access_mask;
        /** The returned handle to the SAM server */

## The key in the secret must be 'config.env'
##
extraSecret: ~

## OpenID Identity Management
## The following section documents environment variables for enabling external identity management using an OpenID Connect (OIDC)-compatible provider.
## See https://docs.min.io/community/minio-object-store/operations/external-iam/configure-openid-external-identity-management.html for a tutorial on using these variables.
oidc:
  enabled: false

    serverAddress: InetSocketAddress,
  ): Future<Handshake> {
    return executorService.submit<Handshake> {
      SocketFactory.getDefault().createSocket().use { rawSocket ->
        rawSocket.connect(serverAddress)
        val sslSocket =
          client.sslSocketFactory().createSocket(
            rawSocket,
            rawSocket.inetAddress.hostAddress,
            rawSocket.port,
            true,

 *    multiple domain names.
 *
 *  * Application Layer Protocol Negotiation (ALPN) enables the HTTPS port (443) to be used to
 *    negotiate HTTP/2.
 *
 * Unfortunately, older HTTPS servers refuse to connect when such options are presented. Rather than
 * avoiding these options entirely, this class allows a connection to be attempted with modern
 * options and then retried without them should the attempt fail.
 *