accessManagerSsoJwt

<accessManagerSsoJwtConfiguration
<keyLoader
<keyStorePath
>
required
string
</keyStorePath>
<keyStoreType
>
optional
string
</keyStoreType>
<keyStorePassword
>
optional
string
</keyStorePassword>
>
required
</keyLoader>
<tokenCookieName
>
optional
string
</tokenCookieName>
Choice: Choose only ONE of the following
<jwtValidation
<configurationPreset
xsd:string
adamas
WTP
Medienportal
>
optional
</configurationPreset>
<verificationKeyAlias
>
required
string
</verificationKeyAlias>
<maxTokenValiditySpanInSeconds
>=1
xsd:long
>
optional
</maxTokenValiditySpanInSeconds>
<maxIssuedAtValiditySpanInSeconds
>=1
xsd:long
>
optional
</maxIssuedAtValiditySpanInSeconds>
<allowedAudiences
<audience
>
optionalmax. unbounded
string
</audience>
>
optional
</allowedAudiences>
>
optional
</jwtValidation>
<genericJwtValidation
<configurationPreset
xsd:string
adamas
WTP
Medienportal
>
optional
</configurationPreset>
<verificationKeyAlias
>
required
string
</verificationKeyAlias>
<claims
<claim
validation
required
=
xsd:string
required
optional
<shortName
>
required
string
</shortName>
<name
>
optional
string
</name>
<type
xsd:string
StringOrURI
StringList
NumericDate
JSON
>
optional
</type>
<allowedValues
<value
>
requiredmax. unbounded
string
</value>
>
optional
</allowedValues>
<requiredValues
<value
>
requiredmax. unbounded
string
</value>
>
optional
</requiredValues>
>
requiredmax. unbounded
</claim>
>
optional
</claims>
<timeSpanValidation
<timeSpan
<claim1
>
required
string
</claim1>
<claim2
>
required
string
</claim2>
<spanInSeconds
>=1
xsd:long
>
required
</spanInSeconds>
>
requiredmax. unbounded
</timeSpan>
>
optional
</timeSpanValidation>
>
optional
</genericJwtValidation>
Choice End
<groupMapping
Choice: Choose only ONE of the following
<claim
>
required
token

The token claim name where the values are read from.

</claim>
<claimPath
>
required
string

A JsonPath expression into the token content to define where the values are read from.

</claimPath>
Choice End
<staticMapping
>
optionalmax. unbounded

A simple/static mapping from fixed token claim values to corresponding Cadenza group names.

claimValue
optional
=
token
groupName
optional
=
token
</staticMapping>
<dynamicMapping
>
optional
boolean

Whether dynamic group mapping should be used. Dynamic group mapping maps each token value encountered to a Cadenza group with exactly the same name.

Default: false

</dynamicMapping>
>
optional

Configuration of the group mapping between token claims and Cadenza-defined groups.

</groupMapping>
<propertyMapping
<property
>
requiredmax. unbounded

Configuration of a single property mapping from token claim to Cadenza user property.

name
optional
=
token

The property name by which the information shall be accessible by means of user variable if it is present in the ID token.

Choice: Choose only ONE of the following
<claim
>
required
token

The token claim name where the values are read from.

</claim>
<claimPath
>
required
string

A JsonPath expression into the token content to define where the values are read from.

</claimPath>
Choice End
</property>
>
optional

Configuration of the property mapping between token claims and Cadenza user properties.

</propertyMapping>
>
required
</accessManagerSsoJwtConfiguration>