Authentication module configuration
While most configuration of the authentication module is done in the instantiated store objects like AUTHENTICATORS, OIDC_OP, SAMLIDPand INTERNAL_AUTHENTICATION_ENDPOINTS, there are some configuration parameters that reside inside the module configuration object itself.
Located in boot.json, the configuration object for the authentication module can look like the following example:
{
"name": "com.phenixidentity~auth-http",
"enabled": "true",
"config": {
"root_uri": "/config",
"v2_classes": {
"TokenAuthenticator":"com.phenixidentity.authn.http.internal.headless.TokenHeadless"
}
}
}
Properties
| Name | Description | Default value | Mandatory |
|---|---|---|---|
| onlyAllowLogoutViaHttpPost | Whether or not logout endpoint should only be accessible via HTTP POST or not. | false | No |
| logoutNextTargetPreserveQueryParams | Whether or not to preserve query parameters when redirecting to next target in a logout flow | false | No |
| root_uri | Where an incoming request towards /should be redirected. If explicitly set to nullor an empty string, no redirect will be done. |
/default |
No |