OIDCPostUidPasswordAndOTP
Used when authenticating using username, password & OTP (SMS, Token or Mail).
Properties
Example Configuration
{
"alias": "oidcuidpwdotp",
"name": "OIDCPostUidPasswordAndOTP",
"configuration": {
"userValidationPipeID": "authPipe",
"otpValidationPipeIDidationPipeID": "otpvalidation"
}
]
}
}
Configuring consent
To use consent, two parts needs to be configured. The authenticator in use and the otp validation pipe.
Two consent parameters must be configured on the authenticator.
Secondly an additional valve, OIDCConsentDataValve, must be configured with the data the user will be asked to approve being sent. The format and available rules of the consent data can be found on the documentation page for the OIDCConsentDataValve.
Requirements
When using consent, a session must be available and the OIDCConsentDataValve must be placed before the SessionPersistValve in the pipe.
The data must be fetched prior to OIDCConsentDataValve with for example LDAPSearchValve. In the example above, the data is fetched in the authentication pipe and stored on the session.