Authentication-action (List)#
Path: /profiles/profile{id, type}/settings/authentication-service/authentication-actions/authentication-action
An Authentication Action that can be assigned to authenticators
Parameters#
| Name | Type | Required | Default | Description |
|---|---|---|---|---|
| id | string | required | The given ID of the Authentication Action | |
| reference | string | optional | Element linked to this authentication action | |
| template-area | non-empty-string | optional | ||
| cross-site-block-enabled | boolean | optional | Enables the unsafe (e.g. POST) cross-site requests blocking mechanism. Blocks cross-site requests (those originating from a different or third-party domain) with an unsafe method from being accepted, except for endpoints the explicitly allow it. Disabling this feature can help with interoperability but does pose security risks, and should only be enabled if strictly required. |
Subsections#
| Name | Type | Description |
|---|---|---|
| action-type | OneOf | None |
| whitelist-action-attributes | Section | None |
| whitelist-context-attributes | Section | None |
| whitelist-subject-attributes | Section | None |
| request-validations | Section | None |