User-authentication (Section)#
Path: /profiles/profile{id, type}/settings/authorization-server/client-store/config-backed/client{id}/user-authentication
Parameters#
| Name | Type | Required | Default | Description |
|---|---|---|---|---|
| allowed-authenticators | multi-value, leafref | optional | The list of allowed authenticators for this client | |
| authenticator-filters | multi-value, leafref | optional | The list of authenticator-filters for this client | |
| required-claims | multi-value, string | optional | A list of named claims that must be required by the authenticator when authenticating the user. | |
| context-info | string | optional | “ | Information that will be displayed to the user when authenticating the client |
| force-authn | boolean | optional | Optional default setting whether user authentication is forced at all times. | |
| freshness | uint32 | optional | Optional maximum age in seconds after which re-authentication must take place. | |
| locale | non-empty-string | optional | Optional override for default locale. | |
| frontchannel-logout-uri | uri | optional | Optional uri of the client that is called upon user logout when attempting front channel logout. Requires OpenId Connect to be enabled. | |
| backchannel-logout-uri | uri | optional | Optional uri of the client that is called upon user logout when attempting back channel logout. Requires OpenId Connect to be enabled. | |
| http-client | leafref | optional | The HTTP client that will be used when delivering the logout token to the backchannel logout uri | |
| allowed-post-logout-redirect-uris | multi-value, uri | optional | The optional list of URIs that is allowed for the client to use as post logout redirect uri. Requires OpenId Connect to be enabled. | |
| template-area | non-empty-string | optional |