Identified by type="ExternalAuth", this handler implements a loopback REST interface for creating user sessions based on external authentication logic. Complete documentation on use of the handler is available in the BackDoor topic.
| Warning |
|---|
This handler SHOULD NOT be exposed to any untrusted network interfaces and addresses or you will create a security exposure in your system. It allows any trusted caller to create user sessions based on arbitrary submitted information. |
Attributes
Common Attributes
| Include Page | ||||
|---|---|---|---|---|
|
Specific Attributes
Name | Type | Default | Description |
|---|---|---|---|
acl | space-delimited list of IP addresses (V4/V6) or CIDR statement | 127.0.0.1 | A set of requesting addresses to limit access to. |