AssignmentAgnostic
Note
Used to perform OneTouch authentication for a user defined via an expandable parameter. Often used as a step in a SequenceAuthenticator.
Properties
| Name | Description | Default value | Mandatory | OneTouch version |
|---|---|---|---|---|
| username | The username to perform the OneTouch assignment for. (EXPANDABLE) | {{item.sAMAccountName}} | Yes | |
| notify | Should user be notified using push. Note that push must be enabled if set to true | true | No | |
| ot_push_message | Message shown on the client when using push | login.assignment.client.message.ot_push_message | No | |
| quick_mode_enabled | Enables quick mode for this authenticator | false | No | v1 |
| quick_mode_category | Specify the category for the quick mode buttons. These categories can be used: category_yes_no, category_ok_cancel or category_confirm_reject. | category_ok_cancel | No | v1 |
| customReturnUrls | Custom return urls to be used, read more here. | No | ||
| allowSignTransactions | Whether or not to allow OneTouch sign transactions to be started if an incoming request contains a SignMessage. | true | No | |
| authIntent | A short string describing the intent of the authentication. Example: 'Login to SomeIDP'. Expandable with scope session and request. |
Yes, unless sign transaction | v2 only | |
| authMessage | A short message presented in the OneTouch app. Supports basic markdown. Expandable with scope session and request. |
No | v2 only | |
| authMessageB64 | A base64 encoded short message presented in the OneTouch app. Supports basic markdown. Overrides 'authMessage' config parameter. Expandable with scope session and request. |
No | v2 only | |
| biometric_auth_allowed | Whether or not biometric authentication (FaceID / Fingerprint) should be allowed instead of a pin code. | true | No | v2 only |
Example Configuration
Example 1: take the uid from the item in the current Sequence from a SequenceAuthenticator
{
"id" : "2487e92b-yyyy-qqqq-8337-ae93d5af4588",
"alias" : "assignment",
"name" : "AssignmentAgnostic",
"displayName" : "Assignment",
"configuration" : {
"username" : "{{item.uid}}"
}
}
Example 2: take the username from the request
{
"id" : "2487e92b-yyyy-qqqq-8337-ae93d5af4588",
"alias" : "assignment",
"name" : "AssignmentAgnostic",
"displayName" : "Assignment",
"configuration" : {
"username" : "{{request.username}}"
}
}
Requirements
User must have OneTouch activated. Authenticator must be part of a SequenceAuthenticator flow.