handle-auth-failure-at-mas

handle-auth-failure-at-mas

handle-auth-failure-at-mas = {yes|no}

Description

Provides an option to override default eCSSO behavior and allow the MAS to handle login failures without redirecting the Web browser back to the requesting host.
Options

yes Enables the MAS to handle login failures directly without redirecting the Web browser back to the requesting host.
no The default eCSSO behavior in WebSEAL is left unchanged. On a login failure, the MAS will generate a vouch-for token and redirect the Web browser back to the requesting host.

Usage: Optional
Default value no
Example:
handle-auth-failure-at-mas = no

Parent topic: [e-community-sso] stanza

yes	Enables the MAS to handle login failures directly without redirecting the Web browser back to the requesting host.
no	The default eCSSO behavior in WebSEAL is left unchanged. On a login failure, the MAS will generate a vouch-for token and redirect the Web browser back to the requesting host.