External Authentication Handler

Owned by Rod Widdowson
Last updated: Dec 06, 2021
1 min read

Identified by type="ExternalAuth", this handler implements a loopback REST interface for creating user sessions based on external authentication logic. Complete documentation on use of the handler is available in the BackDoor topic.



This handler SHOULD NOT be exposed to any untrusted network interfaces and addresses or you will create a security exposure in your system. It allows any trusted caller to create user sessions based on arbitrary submitted information.

Attributes

Common Attributes

Specific Attributes

Name

Type

Default

Description

Name

Type

Default

Description

acl

space-delimited list of IP addresses (V4/V6) or CIDR statement

127.0.0.1
::1

A set of requesting addresses to limit access to.