Resolve Account Link
Resolving links means to lookup a link using the foreign username and the account domain it was linked with, and replacing the logged in username with the linked username.
In order to resolve a link, the action needs an account manager configured. This should be the same account manager that was used to create the link. It will attempt to find the local account using the linked foreign account username.
If no link is found, the default setting is to ignore the action and proceed. However it is possible to configure it to fail if it cannot resolve the link.
Configuration#
The following configuration options are available:
| Configuration | Mandatory | Description |
|---|---|---|
linking-account-manager | Yes | Where the links are stored |
linking-account-domain | Yes | The account domain to look for when resolving a link |
original-subject-attribute-name | No | If set, the original username will be stored in this attribute. |
original-subject-attribute-target | No | The target location for the original username attribute (subject-attributes, context-attributes, or action-attributes). Default value is subject-attributes. |
linked-domain-attribute-name | No | If set, the original account domain will be stored in this attribute. |
Back-channel support#
This action can be used in back-channel authentication.