Skip to main content
Skip table of contents

OAuth2

Definition

OAuth2 configuration allows to define some global parameters that will apply to all OAuth2/OpenID Connect federations of the tenant.

Configuration

You can access the OAuth2 configuration :

  • by clicking on "Access" → “OAuth2

  • by clicking on "System" → "Configurations" → "Access Service" and perform an import/export.

Properties

Property name

Type

Mandatory

Description

Values (default value in bold)

tokens

TokenConfiguration

Configuration of OAuth2/OIDC tokens

-

Tokens properties

Property name

Type

Mandatory

Description

Values (default value in bold)

accessToken

AccessTokenConfiguration

NO

Configuration related to access token

-

refreshToken

RefreshTokenConfiguration

NO

Configuration related to refresh token

-

authorizationCode

AuthorizationCodeConfiguration

NO

Configuration related to authorization code

-

idToken

IdTokenConfiguration

NO

Configuration related to id token

-

assertionSignatureCertificateIds

List <String>

NO

List of certificates identifier used to sign JWT tokens (access token and id token)

-

accessToken properties

Property name

Type

Mandatory

Description

Values (default value in bold)

type

Enum

NO

Defines the access token format.

JWT, OPAQUE

validity

String

NO

Defines the access token validity period.

1 hour

refreshToken properties

Property name

Type

Mandatory

Description

Values (default value in bold)

validity

String

NO

Defines refresh token validity period.

7 days

enabled

Boolean

YES

Allows to enable or disable the delivery of the refresh token with the access token.

true,false

authorizationCode properties

Property name

Type

Mandatory

Description

Values (default value in bold)

validity

String

NO

Defines authorization code validity period.

2 minutes

idToken properties

Property name

Type

Mandatory

Description

Values (default value in bold)

validity

String

NO

Defines ID Token validity period.

1 hour

assertionSignatureCertificateIds properties

Property name

Type

Mandatory

Description

Values (default value in bold)

assertionSignatureCertificateId

String

NO except when using JWT access token or id token.

Allows to determine the certificate id used to sign the JWT tokens.

-

Example

XML 
<maiaamcp:OAuth2Configuration>
	<tokens>
		<accessToken>
			<validity>PT55M</validity>
			<type>OPAQUE</type>
        </accessToken>
		<refreshToken enabled="true">
			<validity>PT17H</validity>
		</refreshToken>
		<authorizationCode>
			<validity>PT55M</validity>
		</authorizationCode>
		<idToken>
			<validity>PT17H</validity>
		</idToken>
		<assertionSignatureCertificateIds>memority_saml_idp</assertionSignatureCertificateIds>
	</tokens>
</maiaamcp:OAuth2Configuration>

Read Next

Access Attributes — Access Attributes Definitions define attributes that can be used for authentication and in application’s federations.
OAuth2 — OAuth2 configuration allows to define some global parameters that will apply to all OAuth2/OpenID Connect federations of the tenant.
Session — Allows to configure user session parameters.
Attribute Functions — Attribute Functions allow you to evaluate and manipulate attributes to be sent to applications through a Federation.
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close