Skip to main content
Version: 8.2405.x.x RR

Authentication engine attributes

  • differingResourceStartover

    Default value: true

    Whether to restart the state dispatching if the resource URL accessed changes.

  • classPath

    Default value: -- (but default configuration template automatically constructs a sensible classpath)

    The class path for the AuthEngine and AuthStates.

  • classLoadStrategy

    Default value: PARENT_FIRST

    Strategy for loading classes. Valid values: PARENT_FIRST, PARENT_LAST.

  • propagateSession

    Default value: true

    Whether to propagate session values to client when successfully completing a conversation (AUTH_DONE).

  • hide

    Default value: "auto"

    List of space separated variable names that should be hidden in logs. If the option "auto" is configured, the variables -dyncert.key as well as -connection.HttpHeader.Authorization and client_secret are hidden. Furthermore, all variables named like GUI fields of type pw-text (passwords) will be hidden.

    Simple wildcarding can be used by appending a * at the end of the variable that should be hidden. That way, every variable that starts with a certain string will be hidden from the log. Example: "passw*" will hide "password" and "passwd" in all scopes.

  • inputLanguageCookie

    Default value: -- (but default configuration template sets LANG)

  • inputLanguageAttribute

    Default value: "language"

    Name of query parameter or form field that changes the language of the user.

  • useLiteralDictionary

    Default value: false (but default configuration template sets true)

    Activates or deactivates nevisAuths translation mechanism. For details, see Language support.

  • literalDictionaryLanguages

    Default value: "en,de,it,fr"

    List of known and accepted languages. Additional languages must be registered here and a corresponding LitDict file must be placed on the configuration directory.

  • addAutheLevelToSecRoles

    Default value: false (but default configuration template sets true)

    Whether to add the authLevel of the user to the list of roles. This is required if the SecurityRoleFilter of nevisProxy is used to restrict access to resources based on authLevels.