Identified by type="ExternalAuth", this handler implements a loopback REST interface for creating user sessions based on external authentication logic. Complete documentation on use of the handler is available in the BackDoor topic.
This handler SHOULD NOT be exposed to any untrusted network interfaces and addresses or you will create a security exposure in your system. It allows any trusted caller to create user sessions based on arbitrary submitted information.
Attributes
Common Attributes
The following attributes are available on all handlers.
Name | Type | Default | Description |
|---|---|---|---|
type | string | Required | Plugin type name. |
Location | relative path | Required | Path used to invoke handler (when appended to the base handlerURL). |
Specific Attributes
Name | Type | Default | Description |
|---|---|---|---|
acl | space-delimited list of IP addresses (V4/V6) or CIDR statement | 127.0.0.1 | A set of requesting addresses to limit access to. |