Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Note

Once control is transferred to the external path, the IdP has no control over what happens. While the sensitivity of this feature is much less than Just as with the authentication use case, it's still the deployer's responsibility to ensure the external code does what it's meant to do and that the container’s session cookie is not compromised so as to allow an attacker to “resume” the request flow.

General Configuration

The idp.intercept.External.externalPath property defines the flow redirection path to the resource that's used to perform the external interceptor's logic, by default a context-relative location. It must be a resource with access to the container session. Modify as needed to match the location of your external interface (see the SWF documentation on flow redirects).

...