OpenId authentication.
Name | Type | Default | Description |
---|---|---|---|
useClientIdentity | boolean | false | Specifies whether to use the client OpenID identity to create a user subject. If set to true, only the OpenID client identity is used. If set to false and the first element of userInfoRef is found, we use it to create a user subject. Otherwise, we use the OpenID identity to create a user subject. |
mapIdentityToRegistryUser | boolean | false | Specifies whether to map identity to registry user. The user registry is not used to create the user subject. |
sslRef | A reference to top level ssl element (string). | Specifies an ID of the SSL configuration is used to connect to the OpenID provider. | |
httpsRequired | boolean | true | Require SSL communication between the OpenID relying party and provider service. |
hashAlgorithm |
| SHA256 | Specifies the hash algorithm that is used to sign and encrypt the OpenID provider response parameters. SHA256 Secure hash algorithm SHA256 SHA1 Secure hash algorithm SHA1 |
userInfoRef | List of references to top level userInfo elements (comma-separated string). | Specifies a list of userInfo references separated by commas for the OpenID provider to include in the response. | |
authenticationMode |
| checkid_setup | Specifies the OpenID provider authentication mode either checkid_immediate or checkid_setup. checkid_setup is the default authentication mode. checkid_immediate The checkid_immediate disables the browser interact with the user. checkid_setup The checkid_setup enables the openID provider to interact with the user, to request authentication or self-registration before returning a result to the openId relying party. |
hostNameVerificationEnabled | boolean | true | Specifies whether enable host name verification or not. |
realmIdentifier | string | Specifies the attribute for the OpenID provider name. | |
providerIdentifier | string | Specifies a default OpenID provider URL where users get the Open IDs. | |
authFilterRef | A reference to top level authFilter element (string). | Specifies the authentication filter reference. |
Specifies a list of userInfo references separated by commas for the OpenID provider to include in the response.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
alias | string | Specifies an alias name. | |
uriType | string | http://axschema.org/contact/email | Specifies a URI type. |
count | int Min: 1 | 1 | Specifies how much userInfo is included in the response of the openID provider. |
required | boolean | true | Specifies whether user information is required or not. |
Specifies the authentication filter reference.
A unique configuration ID.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
name | string | Specifies the name. | |
matchType |
| contains | Specifies the match type. contains Contains notContain Not contain equals Equals |
A unique configuration ID.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
urlPattern | string | Specifies the URL pattern. | |
matchType |
| contains | Specifies the match type. contains Contains notContain Not contain equals Equals |
A unique configuration ID.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
matchType |
| contains | Specifies the match type. contains Contains notContain Not contain equals Equals lessThan Less than greaterThan Greater than |
ip | string | Specifies the IP address. |
A unique configuration ID.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
name | string | Specifies the name. | |
matchType |
| contains | Specifies the match type. contains Contains notContain Not contain equals Equals |
A unique configuration ID.
Name | Type | Default | Description |
---|---|---|---|
id | string | A unique configuration ID. | |
agent | string | Specifies the user agent | |
matchType |
| contains | Specifies the match type. contains Contains notContain Not contain equals Equals |