[oauth] stanza

Use the [oauth] stanza to configure Open Authentication (OAuth) settings.

• cluster-name
  Use the cluster-name entry in the [oauth] stanza to specify the Federation Runtime cluster that hosts the OAuth service.
• continue-on-auth-failure
  Use the continue-on-auth-failure stanza entry to define Whether to continue processing the request when authentication fails.
• external-group-attribute
  Use the external-group-attribute entry to indicate which STSUU attribute in the RSTR contains the external group identities used when authenticating an external user. Remove this configuration entry if we do not want to allow authentication using an external group identity.
• external-user-identity-attribute
  Use the external-user-identity-attribute entry to indicate which STSUU attribute in the RSTR contains the external user identity that can perform OAuth authentication. Remove this configuration entry if we do not want to allow authentication using an external user identity.
• default-fed-id
  Use the default-fed-id stanza entry to specify the default federation provider that WebSEAL uses for OAuth requests.
• fed-id-param
  Use the fed-id-param stanza entry to specify the name of the request parameter whose value specifies the Provider ID for WebSEAL to include in OAuth requests.
• multivalue-scope
  Use the multivalue-scope stanza entry to specify whether OAuth multivalue scope support is enabled.
• oauth-auth
  Use the oauth-auth stanza entry to specify whether Open Authentication (OAuth) is enabled.
• pac-attribute
  Use the pac-attribute entry to indicate which STSUU attribute in the RSTR contains a PAC to be used for authentication. Remove this configuration entry if we do not want to allow authentication using a PAC.
• user-identity-attribute
  Use the user-identity-attribute stanza entry to specify the attribute containing the user identity.

Parent topic: Stanza reference