Skip to main content
Version: 8.2411.x.x RR

SecToken verification

If an IdentityCreationFilter is invoked, nevisProxy receives a SecToken. For a description of the SecToken, see the chapter Nevis SecToken of the nevisAuth Reference Guide. For the verification of the SecToken, the certificates of the creator have to be configured. Because this procedure is performed by several filters, it is done in the servlet context.

The verification's first step is finding the correct certificate that is associated to the sectoken. This is done by checking the sectoken's fingerprint then comparing it with the loaded certificates' fingerprint.

SectokenVerifierCert

Type: String array
Usage constraints: optional

The certificates that will be used for the verification of a SecToken. Multiple unrelated certificates in different files are supported. If a file contains multiple certificates then each of them will be loaded.