JWT SSO (jwtSso)

JWT SSO (jwtSso)

Information about configuring JWT Single Sign On.

Name Type Default Description

authFilterRef Top level authFilter element (string). Authentication filter reference.

cookieName string JWT Name of the cookie used to store the JWT token.

disableJwtCookie boolean false Do not create the JWT cookie.

includeLtpaCookie boolean false After successful authentication with a JWT token, include an LTPA cookie in addition to the JWT cookie.

jwtBuilderRef Top level jwtBuilder element (string). A reference to the JWT Builder configuration element in server.xml that describes how to build the JWT token.

setCookieSecureFlag boolean true Set the secure flag on the JWT cookie to send it only over a secured connection.

useLtpaIfJwtAbsent boolean false If the JWT cookie is missing, attempt to process an LTPA cookie if it is present.

authFilter
Authentication filter reference.
authFilter > cookie
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

name string
Required Name.

authFilter > host
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

name string
Required Name.

authFilter > remoteAddress
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

ip string Specifies the remote host TCP/IP address.

matchType

contains
equals
greaterThan
lessThan
notContain

contains Match type.

authFilter > requestHeader
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

name string
Required Name.

value string The value attribute specifies the value of the request header. If the value is not specified, then the name attribute is used for matching, for example, requestHeader id="sample" name="email" matchType="contains".

authFilter > requestUrl
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

urlPattern string
Required Specifies the URL pattern. The * character is not supported to be used as a wildcard.

authFilter > userAgent
A unique configuration ID.

Name Type Default Description

agent string
Required Specifies the browser's user agent to help identify which browser is being used.

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

authFilter > webApp
A unique configuration ID.

Name Type Default Description

id string A unique configuration ID.

matchType

contains
equals
notContain

contains Match type.

name string
Required Name.

Name	Type	Default	Description
authFilterRef	Top level authFilter element (string).		Authentication filter reference.
cookieName	string	JWT	Name of the cookie used to store the JWT token.
disableJwtCookie	boolean	false	Do not create the JWT cookie.
includeLtpaCookie	boolean	false	After successful authentication with a JWT token, include an LTPA cookie in addition to the JWT cookie.
jwtBuilderRef	Top level jwtBuilder element (string).		A reference to the JWT Builder configuration element in server.xml that describes how to build the JWT token.
setCookieSecureFlag	boolean	true	Set the secure flag on the JWT cookie to send it only over a secured connection.
useLtpaIfJwtAbsent	boolean	false	If the JWT cookie is missing, attempt to process an LTPA cookie if it is present.

Name	Type	Default	Description
id	string		A unique configuration ID.
matchType	contains equals notContain	contains	Match type.
name	string Required		Name.
value	string		The value attribute specifies the value of the request header. If the value is not specified, then the name attribute is used for matching, for example, requestHeader id="sample" name="email" matchType="contains".