External Authentication Handler
Identified by type="ExternalAuth"
, this handler implements a loopback REST interface for creating user sessions based on external authentication logic. Complete documentation on use of the handler is available in the BackDoor topic.
This handler SHOULD NOT be exposed to any untrusted network interfaces and addresses or you will create a security exposure in your system. It allows any trusted caller to create user sessions based on arbitrary submitted information.
Attributes
Common Attributes
Specific Attributes
Name | Type | Default | Description |
---|---|---|---|
acl | space-delimited list of IP addresses (V4/V6) or CIDR statement | 127.0.0.1 | A set of requesting addresses to limit access to. |