Created
January 23, 2020 16:41
-
-
Save Tanver-Hasan/a83e1ff329f25c39aa5667c718184742 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| tenant: | |
| device_flow: | |
| mask: '***-***-***-***' | |
| charset: digits | |
| flags: | |
| enable_dynamic_client_registration: false | |
| enable_custom_domain_in_emails: false | |
| allow_legacy_delegation_grant_types: false | |
| allow_legacy_ro_grant_types: false | |
| allow_other_legacy_grant_types: false | |
| universal_login: false | |
| new_universal_login_experience_enabled: false | |
| disable_clickjack_protection_headers: false | |
| enable_public_signup_user_exists_error: true | |
| friendly_name: Auth0 Test | |
| picture_url: >- | |
| https://eu-lon09.marketo.com/rs/triumphmotorcycles/images/Black-Logo-small.jpg | |
| support_email: '' | |
| support_url: '' | |
| session_lifetime: 168 | |
| default_audience: '' | |
| default_directory: Username-Password-Authentication | |
| idle_session_lifetime: 72 | |
| universal_login: | |
| colors: | |
| primary: '#ea5323' | |
| page_background: '#000000' | |
| enabled_locales: | |
| - en | |
| rules: | |
| - enabled: false | |
| script: ./rules/Multifactor-Google-Authenticator-Do-Not-Rename.js | |
| name: Multifactor-Google-Authenticator-Do-Not-Rename | |
| order: 1 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Link Accounts with Same Email Address while Merging Metadata.js | |
| name: Link Accounts with Same Email Address while Merging Metadata | |
| order: 2 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/secure custom social connection.js | |
| name: secure custom social connection | |
| order: 3 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Assing scope in Rule.js | |
| name: Assing scope in Rule | |
| order: 4 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Add Roles to user.js | |
| name: Add Roles to user | |
| order: 5 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/test.js | |
| name: test | |
| order: 6 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Force email verification.js | |
| name: Force email verification | |
| order: 7 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Add default role to user.js | |
| name: Add default role to user | |
| order: 8 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Add github groups as claim.js | |
| name: Add github groups as claim | |
| order: 9 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/auth0-authorization-extension.js | |
| name: auth0-authorization-extension | |
| order: 10 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Debug role.js | |
| name: Debug role | |
| order: 13 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/empty rule.js | |
| name: empty rule | |
| order: 11 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/consume global object.js | |
| name: consume global object | |
| order: 14 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Multifactor Authentication.js | |
| name: Multifactor Authentication | |
| order: 12 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Force Password reset.js | |
| name: Force Password reset | |
| order: 15 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/JTI.js | |
| name: JTI | |
| order: 16 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Update metadata.js | |
| name: Update metadata | |
| order: 17 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/add geo data.js | |
| name: add geo data | |
| order: 18 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/MFA for admin.js | |
| name: MFA for admin | |
| order: 19 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Delete user if user already exist with same email address.js | |
| name: Delete user if user already exist with same email address | |
| order: 20 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Delegated Administation extension.js | |
| name: Delegated Administation extension | |
| order: 21 | |
| stage: login_success | |
| - enabled: false | |
| script: ./rules/Demo rule.js | |
| name: Demo rule | |
| order: 22 | |
| stage: login_success | |
| pages: | |
| - name: login | |
| enabled: false | |
| html: ./pages/login.html | |
| - enabled: true | |
| html: ./pages/guardian_multifactor.html | |
| name: guardian_multifactor | |
| - enabled: true | |
| html: ./pages/password_reset.html | |
| name: password_reset | |
| resourceServers: | |
| - name: API | |
| identifier: 'https://localhost:5001' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| scopes: | |
| - value: 'read:messages' | |
| description: Reading Messages | |
| enforce_policies: true | |
| token_dialect: access_token_authz | |
| - name: API2 | |
| identifier: 'https://myapiserver.com' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| - name: Nest API | |
| identifier: 'http://localhost:3000' | |
| allow_offline_access: true | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| scopes: | |
| - value: 'read:data' | |
| description: Read api data | |
| - value: 'wite:data' | |
| description: . | |
| - value: 'read.list:data' | |
| description: Read data list | |
| enforce_policies: true | |
| token_dialect: access_token_authz | |
| - name: lock api | |
| identifier: 'http://localhost:5000' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| - name: Timesheet | |
| identifier: 'https://api.timesheet.com/' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: false | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| scopes: | |
| - value: 'read:timesheets' | |
| description: Read | |
| - value: 'create:timesheets' | |
| description: Create | |
| - value: 'approve:timesheets' | |
| description: Approve | |
| - value: 'batch:upload' | |
| description: 'Batch ' | |
| enforce_policies: false | |
| token_dialect: access_token | |
| - name: testclick | |
| identifier: 'https://api.com' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| - name: auth0-authorization-extension-api | |
| identifier: 'urn:auth0-authz-api' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: false | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| scopes: | |
| - value: 'read:users' | |
| - value: 'read:applications' | |
| - value: 'read:connections' | |
| - value: 'read:configuration' | |
| - value: 'update:configuration' | |
| - value: 'read:groups' | |
| - value: 'create:groups' | |
| - value: 'update:groups' | |
| - value: 'delete:groups' | |
| - value: 'read:roles' | |
| - value: 'create:roles' | |
| - value: 'update:roles' | |
| - value: 'delete:roles' | |
| - value: 'read:permissions' | |
| - value: 'create:permissions' | |
| - value: 'update:permissions' | |
| - value: 'delete:permissions' | |
| - value: 'read:resource-server' | |
| - value: 'create:resource-server' | |
| - value: 'update:resource-server' | |
| - value: 'delete:resource-server' | |
| - name: jarvis | |
| identifier: jarvis | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| - name: API1 | |
| identifier: 'https://localhost:5002' | |
| allow_offline_access: false | |
| skip_consent_for_verifiable_first_party_clients: true | |
| token_lifetime: 86400 | |
| token_lifetime_for_web: 7200 | |
| signing_alg: RS256 | |
| scopes: | |
| - value: 'read:messages' | |
| description: Reading Messages | |
| enforce_policies: false | |
| token_dialect: access_token | |
| clients: | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: My Dynamic Application | |
| callbacks: | |
| - 'http://localhost:4200' | |
| oidc_conformant: true | |
| is_first_party: false | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Third party app test | |
| callbacks: | |
| - 'http://localhost:4200' | |
| - 'http://localhost:4200/hlp' | |
| oidc_conformant: true | |
| is_first_party: false | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| web_origins: | |
| - 'http://localhost:4200' | |
| custom_login_page_on: true | |
| - name: Default App | |
| callbacks: [] | |
| allowed_clients: [] | |
| allowed_logout_urls: [] | |
| is_first_party: true | |
| oidc_conformant: true | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - implicit | |
| - authorization_code | |
| - client_credentials | |
| - refresh_token | |
| custom_login_page_on: false | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Tanver Blog | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:5000' | |
| - 'https://jwt.io' | |
| - 'http://localhost:3001/' | |
| - 'https://login.tanverhasan.com/login/callback' | |
| - 'https://tanverhasan.com/home' | |
| - 'https://tanver-custom.eu.webtask.io/auth0-authentication-api-debugger' | |
| - 'http://localhost:3000/callback_popup.html' | |
| - 'http://localhost:3001' | |
| - 'http://localhost:4200/hlp' | |
| - 'http://localhost:4200/email-link' | |
| - 'http://localhost:5000/custom-email-code' | |
| - 'http://localhost:5000/custom-email-code.html' | |
| - 'http://localhost:3000/callback' | |
| - 'http://localhost:4200/callback' | |
| - 'http://localhost:3000' | |
| allowed_logout_urls: | |
| - 'http://localhost:4200/hlp' | |
| - 'http://localhost:4200/hlp?data=test&example=foo%20bar' | |
| - 'http://localhost:4200/hlp?data%3Dtest%26example%3Dfoo%20bar' | |
| - 'http://localhost:4200/?postLogout=true' | |
| - 'http://localhost:3000' | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'https://tanverhasan.com' | |
| - 'https://login.tanverhasan.com' | |
| - 'http://localhost:5000' | |
| - 'http://localhost:3001' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - 'http://auth0.com/oauth/grant-type/mfa-oob' | |
| - 'http://auth0.com/oauth/grant-type/mfa-otp' | |
| - 'http://auth0.com/oauth/grant-type/mfa-recovery-code' | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| web_origins: | |
| - 'https://tanverhasan.com' | |
| - 'https://login.tanverhasan.com' | |
| - 'http://localhost:5000' | |
| - 'http://localhost:3001' | |
| - 'http://localhost:4200' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Console | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:4200' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: API2 (Test Application) | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: API (Test Application) | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: React Native4 | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - >- | |
| auth0.samples.Auth0Sample://login.tanverhasan.com/ios/auth0.samples.Auth0Sample/callback | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: API Explorer Application | |
| description: Test Application for API Explorer. | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| allowed_clients: [] | |
| callbacks: [] | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| - password | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Android-Test | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'demo://login.tanverhasan.com/android/com.auth0.samples/callback' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: IOS-lOCK | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - >- | |
| auth0.samples.Auth0Sample://login.tanverhasan.com/ios/auth0.samples.Auth0Sample/callback | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: My App | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - 'http://localhost:3000/signin-auth0' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: SAML-CON1-app | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:3000' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:3000' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:3000' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: SAML-CON-CD-APP | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - 'http://localhost:4200' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:4200' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Playgoround | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:4200/' | |
| - 'http://localhost:5000' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:4200' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:4200' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: SSO test- APP1 | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:5000' | |
| allowed_logout_urls: | |
| - 'http://localhost:5000' | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:5000' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:5000' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: SSO test- APP2 | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - 'http://localhost:5000' | |
| allowed_logout_urls: | |
| - 'http://localhost:5000' | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:5000' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:5000' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Nest API (Test Application) | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Passwordless SMS | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:5000' | |
| allowed_logout_urls: | |
| - 'http://localhost:5000' | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:5000' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-deploy-cli-extension | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Wordpress | |
| is_first_party: true | |
| oidc_conformant: false | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:8000/index.php?auth0=1' | |
| allowed_logout_urls: | |
| - 'http://localhost:8000' | |
| allowed_clients: [] | |
| allowed_origins: | |
| - 'http://localhost:8000' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - client_credentials | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:8000' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-bitbucket-deploy | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: lock api (Test Application) | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: java spring | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: false | |
| callbacks: | |
| - 'http://localhost:3000/callback' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - client_credentials | |
| - 'http://auth0.com/oauth/grant-type/mfa-oob' | |
| - 'http://auth0.com/oauth/grant-type/mfa-otp' | |
| - 'http://auth0.com/oauth/grant-type/mfa-recovery-code' | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-authz | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Timesheet (Test Application) | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - client_credentials | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: MFA API | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - client_credentials | |
| - 'http://auth0.com/oauth/grant-type/mfa-oob' | |
| - 'http://auth0.com/oauth/grant-type/mfa-otp' | |
| - 'http://auth0.com/oauth/grant-type/mfa-recovery-code' | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| - implicit | |
| - password | |
| - refresh_token | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Okta | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: | |
| - 'http://localhost:4200/hlp' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: React Native2 | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: | |
| - >- | |
| auth0.samples.Auth0Sample://login.tanverhasan.com/ios/auth0.samples.Auth0Sample/callback | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-logs-to-mixpanel | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-visualstudio-deploy | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Office 365 | |
| callbacks: [] | |
| addons: | |
| office365: | |
| domain: your-office365-domain.com | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: office365 | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Salesforce | |
| callbacks: | |
| - 'https://login.salesforce.com' | |
| addons: | |
| salesforce: | |
| salesforce_domain: yourdomain.my.salesforce.com | |
| entity_id: 'https://whatever.com' | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: salesforce | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: zendesk | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Zendesk | |
| callbacks: [] | |
| addons: | |
| zendesk: | |
| accountName: 'https://{accountname}.zendesk.com' | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: zendesk | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: testclick (Test Application) | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Slack | |
| callbacks: | |
| - 'https://tema-a.slack.com/sso/saml' | |
| addons: | |
| slack: | |
| team: tema-a | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| sso: true | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: slack | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Auth0 Lock | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: [] | |
| allowed_origins: | |
| - 'http://localhost:3001' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: spa | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| web_origins: | |
| - 'http://localhost:3001' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: RWA | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: | |
| - 'http://localhost:3000/callback' | |
| - 'http://localhost:4200/hlp' | |
| allowed_logout_urls: | |
| - 'http://localhost:3000' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: OmniAuth | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| allowed_logout_urls: | |
| - 'http://localhost:3000' | |
| callbacks: | |
| - 'http://localhost:3000/auth/auth0/callback' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: client_secret_post | |
| app_type: regular_web | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: Device Flow Test | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: | |
| - 'http://localhost:3001/' | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - 'urn:ietf:params:oauth:grant-type:device_code' | |
| web_origins: | |
| - 'http://localhost:3001' | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: jarvis (Test Application) | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: React Native1 | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| description: '' | |
| logo_uri: '' | |
| sso: true | |
| callbacks: | |
| - >- | |
| com.auth0sample://##AUTH0_TENANT_NAME##/android/com.auth0sample/callback | |
| - 'com.auth0sample://login.tanverhasan.com/android/com.auth0sample/callback' | |
| - 'com.auth0sample://undefined/android/com.auth0sample/callback' | |
| allowed_logout_urls: [] | |
| allowed_clients: [] | |
| allowed_origins: [] | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - password | |
| - 'http://auth0.com/oauth/grant-type/password-realm' | |
| web_origins: [] | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: API1 (Test Application) | |
| is_first_party: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| oidc_conformant: false | |
| jwt_configuration: | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| app_type: non_interactive | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: auth0-management-api-webhooks | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| - client_credentials | |
| custom_login_page_on: true | |
| - is_token_endpoint_ip_header_trusted: false | |
| name: 'React Native3 ' | |
| is_first_party: true | |
| oidc_conformant: true | |
| sso_disabled: false | |
| cross_origin_auth: false | |
| allowed_clients: [] | |
| callbacks: | |
| - >- | |
| org.reactjs.native.example.awesomeproject://##AUTH0_TENANT_NAME##/ios/org.reactjs.native.example.awesomeproject/callback | |
| - >- | |
| com.awesomeproject://##AUTH0_TENANT_NAME##/android/com.awesomeproject/callback | |
| jwt_configuration: | |
| alg: RS256 | |
| lifetime_in_seconds: 36000 | |
| secret_encoded: false | |
| client_aliases: [] | |
| token_endpoint_auth_method: none | |
| app_type: native | |
| grant_types: | |
| - authorization_code | |
| - implicit | |
| - refresh_token | |
| custom_login_page_on: true | |
| databases: | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_complexity_options: | |
| min_length: 1 | |
| configuration: {} | |
| enabledDatabaseCustomization: false | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_history: | |
| enable: false | |
| size: 5 | |
| passwordPolicy: excellent | |
| requires_username: true | |
| validation: | |
| username: | |
| min: 1 | |
| max: 15 | |
| strategy: auth0 | |
| name: Username-Password-Authentication | |
| is_domain_connection: false | |
| realms: | |
| - Username-Password-Authentication | |
| enabled_clients: | |
| - Salesforce | |
| - My App | |
| - Timesheet (Test Application) | |
| - Playgoround | |
| - zendesk | |
| - java spring | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - Default App | |
| - Console | |
| - auth0-authz | |
| - Nest API (Test Application) | |
| - auth0-logs-to-mixpanel | |
| - Android-Test | |
| - Tanver Blog | |
| - lock api (Test Application) | |
| - API Explorer Application | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - OmniAuth | |
| - Zendesk | |
| - Auth0 Lock | |
| - Slack | |
| - Office 365 | |
| - SAML-CON-CD-APP | |
| - IOS-lOCK | |
| - auth0-management-api-webhooks | |
| - RWA | |
| - API (Test Application) | |
| - Device Flow Test | |
| - auth0-deploy-cli-extension | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| enabledDatabaseCustomization: true | |
| customScripts: | |
| login: ./databases/TEST/login.js | |
| create: ./databases/TEST/create.js | |
| verify: ./databases/TEST/verify.js | |
| get_user: ./databases/TEST/get_user.js | |
| configuration: {} | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: TEST | |
| is_domain_connection: false | |
| realms: | |
| - TEST | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| disable_signup: false | |
| requires_username: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| password_complexity_options: | |
| min_length: 1 | |
| configuration: {} | |
| enabledDatabaseCustomization: false | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| validation: | |
| username: | |
| min: 1 | |
| max: 15 | |
| passwordPolicy: null | |
| strategy: auth0 | |
| name: DB-Wordpress | |
| is_domain_connection: false | |
| realms: | |
| - DB-Wordpress | |
| enabled_clients: | |
| - Salesforce | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - auth0-authz | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Wordpress | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: pq | |
| is_domain_connection: false | |
| realms: | |
| - pq | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| configuration: {} | |
| customScripts: | |
| get_user: ./databases/MongoAtlas/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: MongoAtlas | |
| is_domain_connection: false | |
| realms: | |
| - MongoAtlas | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| configuration: {} | |
| customScripts: | |
| get_user: ./databases/mongodb-local/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: mongodb-local | |
| is_domain_connection: false | |
| realms: | |
| - mongodb-local | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| configuration: {} | |
| customScripts: | |
| get_user: ./databases/pg/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: false | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: pg | |
| is_domain_connection: false | |
| realms: | |
| - pg | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| configuration: {} | |
| customScripts: | |
| login: ./databases/MongodbAtlas/login.js | |
| get_user: ./databases/MongodbAtlas/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: MongodbAtlas | |
| is_domain_connection: false | |
| realms: | |
| - MongodbAtlas | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| customScripts: | |
| login: ./databases/testapirequest/login.js | |
| get_user: ./databases/testapirequest/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| configuration: {} | |
| strategy: auth0 | |
| name: testapirequest | |
| is_domain_connection: false | |
| realms: | |
| - testapirequest | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| customScripts: | |
| login: ./databases/testapirequest1/login.js | |
| get_user: ./databases/testapirequest1/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| configuration: {} | |
| strategy: auth0 | |
| name: testapirequest1 | |
| is_domain_connection: false | |
| realms: | |
| - testapirequest1 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| customScripts: | |
| login: ./databases/test1/login.js | |
| get_user: ./databases/test1/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: test1 | |
| is_domain_connection: false | |
| realms: | |
| - test1 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| customScripts: | |
| login: ./databases/testapi1/login.js | |
| get_user: ./databases/testapi1/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: testapi1 | |
| is_domain_connection: false | |
| realms: | |
| - testapi1 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| configuration: {} | |
| customScripts: | |
| login: ./databases/TEST2/login.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| password_no_personal_info: | |
| enable: false | |
| password_dictionary: | |
| enable: false | |
| dictionary: [] | |
| password_history: | |
| enable: false | |
| size: 5 | |
| password_complexity_options: | |
| min_length: 8 | |
| strategy: auth0 | |
| name: TEST2 | |
| is_domain_connection: false | |
| realms: | |
| - TEST2 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| customScripts: | |
| login: ./databases/testapi2/login.js | |
| get_user: ./databases/testapi2/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: testapi2 | |
| is_domain_connection: false | |
| realms: | |
| - testapi2 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| customScripts: | |
| login: ./databases/testapi3/login.js | |
| get_user: ./databases/testapi3/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: testapi3 | |
| is_domain_connection: false | |
| realms: | |
| - testapi3 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| customScripts: | |
| login: ./databases/testapi4/login.js | |
| get_user: ./databases/testapi4/get_user.js | |
| enabledDatabaseCustomization: true | |
| import_mode: true | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: testapi4 | |
| is_domain_connection: false | |
| realms: | |
| - testapi4 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| validation: | |
| username: | |
| min: 1 | |
| max: 15 | |
| brute_force_protection: true | |
| strategy_version: 2 | |
| strategy: auth0 | |
| name: restapi | |
| is_domain_connection: false | |
| realms: | |
| - restapi | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| validation: | |
| username: | |
| min: 1 | |
| max: 15 | |
| strategy_version: 2 | |
| brute_force_protection: true | |
| strategy: auth0 | |
| name: Username-Password-Authentication2 | |
| is_domain_connection: false | |
| realms: | |
| - Username-Password-Authentication2 | |
| enabled_clients: [] | |
| - options: | |
| mfa: | |
| active: true | |
| return_enroll_settings: true | |
| passwordPolicy: good | |
| disable_signup: false | |
| requires_username: false | |
| validation: | |
| username: | |
| min: 1 | |
| max: 15 | |
| strategy_version: 2 | |
| brute_force_protection: true | |
| strategy: auth0 | |
| name: userimport | |
| is_domain_connection: false | |
| realms: | |
| - userimport | |
| enabled_clients: | |
| - Android-Test | |
| connections: | |
| - options: | |
| domain_aliases: | |
| - test.com | |
| tenant_domain: test.com | |
| certAuth: false | |
| kerberos: false | |
| ips: null | |
| disable_cache: false | |
| agentIP: 52.14.175.88 | |
| agentVersion: 4.2.3 | |
| agentMode: true | |
| certs: | |
| - >- | |
| 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 | |
| thumbprints: | |
| - 8c281c70ad126807afc3f8e84958258c75ad2837 | |
| signInEndpoint: 'http://WIN-KFM8JKIA73E:59638/wsfed' | |
| strategy: ad | |
| name: AWS-AD-SERVER | |
| is_domain_connection: false | |
| enabled_clients: | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - Default App | |
| - Zendesk | |
| - Slack | |
| - auth0-management-api-webhooks | |
| - options: | |
| domain_aliases: | |
| - fabrikam.local | |
| tenant_domain: fabrikam.local | |
| certAuth: false | |
| kerberos: false | |
| ips: null | |
| disable_cache: false | |
| brute_force_protection: true | |
| strategy: ad | |
| name: Docker | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| domain_aliases: [] | |
| tenant_domain: null | |
| adfs_server: >- | |
| https://dse-adfs.eastus.cloudapp.azure.com/FederationMetadata/2007-06/FederationMetadata.xml | |
| thumbprints: | |
| - 28e94b6abe202521e8156a8c5dccb5de652c2772 | |
| signInEndpoint: 'https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/' | |
| fedMetadataXml: >- | |
| <EntityDescriptor ID="_66fc3c46-5007-447a-8e81-aa3cb90007e0" | |
| entityID="http://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:metadata"><ds:Signature | |
| xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod | |
| Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod | |
| Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference | |
| URI="#_66fc3c46-5007-447a-8e81-aa3cb90007e0"><ds:Transforms><ds:Transform | |
| Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform | |
| Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod | |
| Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>mky+VpjrluiTmgMvbMMQAAo1cOZVBAqlEPD/vs4lyfQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ztBxYBRARbAP9sptTWF9MtVWmN/k/0KpoqE7F5AlOoSLxHlAIxgoQFKskVJG0IkatySPD/oXhK3Fa7HgtQ4D1L2yFsI89qfwX1scIM7df7mecbgQubiTnVnG+xvecPgJhuHgzqtxu/5VH/LReV1AwNwyB/09EUhftrcIeMUZmdyNWfcRr9QcsFc0euJY4wf+bUcRXwYXQeDE7tR7NzjKYBAVaGvMzTf+RaHYMcn3PH4LNrZfq3joKCPz2RP0rTOSTAp9HsjA7r12C8OnsWYf7XoY04GKsjSWLJGNR/QzQ8jkQk2M68o7xsR3R5vWVqL5SGoZeHVFArDHl8mjfrDxjw==</ds:SignatureValue><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></ds:Signature><RoleDescriptor | |
| xsi:type="fed:ApplicationServiceType" | |
| protocolSupportEnumeration="http://docs.oasis-open.org/ws-sx/ws-trust/200512 | |
| http://schemas.xmlsoap.org/ws/2005/02/trust | |
| http://docs.oasis-open.org/wsfed/federation/200706" | |
| ServiceDisplayName="DSE ADFS" | |
| xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | |
| xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706"><KeyDescriptor | |
| use="encryption"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><fed:ClaimTypesRequested><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>E-Mail | |
| Address</auth:DisplayName><auth:Description>The e-mail address of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Given | |
| Name</auth:DisplayName><auth:Description>The given name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Name</auth:DisplayName><auth:Description>The | |
| unique name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>UPN</auth:DisplayName><auth:Description>The | |
| user principal name (UPN) of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/CommonName" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Common | |
| Name</auth:DisplayName><auth:Description>The common name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/EmailAddress" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>AD | |
| FS 1.x E-Mail Address</auth:DisplayName><auth:Description>The e-mail | |
| address of the user when interoperating with AD FS 1.1 or AD FS | |
| 1.0</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/Group" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Group</auth:DisplayName><auth:Description>A | |
| group that the user is a member | |
| of</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/UPN" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>AD | |
| FS 1.x UPN</auth:DisplayName><auth:Description>The UPN of the user when | |
| interoperating with AD FS 1.1 or AD FS | |
| 1.0</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/role" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Role</auth:DisplayName><auth:Description>A | |
| role that the user | |
| has</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Surname</auth:DisplayName><auth:Description>The | |
| surname of the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>PPID</auth:DisplayName><auth:Description>The | |
| private identifier of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Name | |
| ID</auth:DisplayName><auth:Description>The SAML name identifier of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationinstant" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| time stamp</auth:DisplayName><auth:Description>Used to display the time | |
| and date that the user was | |
| authenticated</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| method</auth:DisplayName><auth:Description>The method used to | |
| authenticate the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/denyonlysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only group SID</auth:DisplayName><auth:Description>The deny-only group | |
| SID of the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only primary SID</auth:DisplayName><auth:Description>The deny-only | |
| primary SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarygroupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only primary group SID</auth:DisplayName><auth:Description>The deny-only | |
| primary group SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Group | |
| SID</auth:DisplayName><auth:Description>The group SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarygroupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Primary | |
| group SID</auth:DisplayName><auth:Description>The primary group SID of | |
| the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Primary | |
| SID</auth:DisplayName><auth:Description>The primary SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| account name</auth:DisplayName><auth:Description>The domain account name | |
| of the user in the form of | |
| domain\user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/isregistereduser" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Is | |
| Registered User</auth:DisplayName><auth:Description>User is registered | |
| to use this device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Identifier</auth:DisplayName><auth:Description>Identifier of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/registrationid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Registration Identifier</auth:DisplayName><auth:Description>Identifier | |
| for Device | |
| Registration</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/displayname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Registration DisplayName</auth:DisplayName><auth:Description>Display | |
| name of Device | |
| Registration</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/ostype" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| OS type</auth:DisplayName><auth:Description>OS type of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/osversion" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| OS Version</auth:DisplayName><auth:Description>OS version of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/ismanaged" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Is | |
| Managed Device</auth:DisplayName><auth:Description>Device is managed by | |
| a management service</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-forwarded-client-ip" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Forwarded | |
| Client IP</auth:DisplayName><auth:Description>IP address of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-application" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| Application</auth:DisplayName><auth:Description>Type of the Client | |
| Application</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-user-agent" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| User Agent</auth:DisplayName><auth:Description>Device type the client is | |
| using to access the | |
| application</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-ip" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| IP</auth:DisplayName><auth:Description>IP address of the | |
| client</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Endpoint | |
| Path</auth:DisplayName><auth:Description>Absolute Endpoint path which | |
| can be used to determine active versus passive | |
| clients</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-proxy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Proxy</auth:DisplayName><auth:Description>DNS | |
| name of the federation server proxy that passed the | |
| request</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/relyingpartytrustid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Application | |
| Identifier</auth:DisplayName><auth:Description>Identifier for the | |
| Relying Party</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/applicationpolicy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Application | |
| policies</auth:DisplayName><auth:Description>Application policies of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/authoritykeyidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authority | |
| Key Identifier</auth:DisplayName><auth:Description>The Authority Key | |
| Identifier extension of the certificate that signed an issued | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/basicconstraints" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Basic | |
| Constraint</auth:DisplayName><auth:Description>One of the basic | |
| constraints of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/eku" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Enhanced | |
| Key Usage</auth:DisplayName><auth:Description>Describes one of the | |
| enhanced key usages of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuer" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Issuer</auth:DisplayName><auth:Description>The | |
| name of the certificate authority that issued the X.509 | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuername" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Issuer | |
| Name</auth:DisplayName><auth:Description>The distinguished name of the | |
| certificate issuer</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/keyusage" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Key | |
| Usage</auth:DisplayName><auth:Description>One of the key usages of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/notafter" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Not | |
| After</auth:DisplayName><auth:Description>Date in local time after which | |
| a certificate is no longer | |
| valid</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/notbefore" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Not | |
| Before</auth:DisplayName><auth:Description>The date in local time on | |
| which a certificate becomes | |
| valid</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatepolicy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Certificate | |
| Policies</auth:DisplayName><auth:Description>The policies under which | |
| the certificate has been | |
| issued</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/rsa" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Public | |
| Key</auth:DisplayName><auth:Description>Public Key of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/rawdata" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Certificate | |
| Raw Data</auth:DisplayName><auth:Description>The raw data of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/san" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Alternative Name</auth:DisplayName><auth:Description>One of the | |
| alternative names of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/serialnumber" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Serial | |
| Number</auth:DisplayName><auth:Description>The serial number of a | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/signaturealgorithm" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Signature | |
| Algorithm</auth:DisplayName><auth:Description>The algorithm used to | |
| create the signature of a | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/subject" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject</auth:DisplayName><auth:Description>The | |
| subject from the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/subjectkeyidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Key Identifier</auth:DisplayName><auth:Description>Describes the subject | |
| key identifier of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/subjectname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Name</auth:DisplayName><auth:Description>The subject distinguished name | |
| from a certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplateinformation" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>V2 | |
| Template Name</auth:DisplayName><auth:Description>The name of the | |
| version 2 certificate template used when issuing or renewing a | |
| certificate. The extension is Microsoft | |
| specific.</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplatename" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>V1 | |
| Template Name</auth:DisplayName><auth:Description>The name of the | |
| version 1 certificate template used when issuing or renewing a | |
| certificate. The extension is Microsoft | |
| specific.</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/thumbprint" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Thumbprint</auth:DisplayName><auth:Description>Thumbprint | |
| of the certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/x509version" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>X.509 | |
| Version</auth:DisplayName><auth:Description>The X.509 format version of | |
| a certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/insidecorporatenetwork" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Inside | |
| Corporate Network</auth:DisplayName><auth:Description>Used to indicate | |
| if a request originated inside corporate | |
| network</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordexpirationtime" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Password | |
| Expiration Time</auth:DisplayName><auth:Description>Used to display the | |
| time when the password | |
| expires</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordexpirationdays" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Password | |
| Expiration Days</auth:DisplayName><auth:Description>Used to display the | |
| number of days to password | |
| expiry</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordchangeurl" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Update | |
| Password URL</auth:DisplayName><auth:Description>Used to display the web | |
| address of update password | |
| service</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/claims/authnmethodsreferences" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| Methods References</auth:DisplayName><auth:Description>Used to indicate | |
| all authentication methods used to authenticate the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/client-request-id" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| Request ID</auth:DisplayName><auth:Description>Identifier for a user | |
| session</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2013/11/alternateloginid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Alternate | |
| Login ID</auth:DisplayName><auth:Description>Alternate login ID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsdevicegroup" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| device group</auth:DisplayName><auth:Description>The windows group SID | |
| of the device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlywindowsdevicegroup" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| deny-only device group</auth:DisplayName><auth:Description>The windows | |
| deny-only group SID of the | |
| device</auth:Description></auth:ClaimType></fed:ClaimTypesRequested><fed:TargetScopes><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256</Address></EndpointReference><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256</Address></EndpointReference><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256</Address></EndpointReference><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256</Address></EndpointReference><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/</Address></EndpointReference><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>http://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust</Address></EndpointReference></fed:TargetScopes><fed:ApplicationServiceEndpoint><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256</Address></EndpointReference></fed:ApplicationServiceEndpoint><fed:PassiveRequestorEndpoint><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/</Address></EndpointReference></fed:PassiveRequestorEndpoint></RoleDescriptor><RoleDescriptor | |
| xsi:type="fed:SecurityTokenServiceType" | |
| protocolSupportEnumeration="http://docs.oasis-open.org/ws-sx/ws-trust/200512 | |
| http://schemas.xmlsoap.org/ws/2005/02/trust | |
| http://docs.oasis-open.org/wsfed/federation/200706" | |
| ServiceDisplayName="DSE ADFS" | |
| xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | |
| xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706"><KeyDescriptor | |
| use="signing"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><fed:TokenTypesOffered><fed:TokenType | |
| Uri="urn:oasis:names:tc:SAML:2.0:assertion"/><fed:TokenType | |
| Uri="urn:oasis:names:tc:SAML:1.0:assertion"/></fed:TokenTypesOffered><fed:ClaimTypesOffered><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>E-Mail | |
| Address</auth:DisplayName><auth:Description>The e-mail address of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Given | |
| Name</auth:DisplayName><auth:Description>The given name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Name</auth:DisplayName><auth:Description>The | |
| unique name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>UPN</auth:DisplayName><auth:Description>The | |
| user principal name (UPN) of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/CommonName" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Common | |
| Name</auth:DisplayName><auth:Description>The common name of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/EmailAddress" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>AD | |
| FS 1.x E-Mail Address</auth:DisplayName><auth:Description>The e-mail | |
| address of the user when interoperating with AD FS 1.1 or AD FS | |
| 1.0</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/Group" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Group</auth:DisplayName><auth:Description>A | |
| group that the user is a member | |
| of</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/claims/UPN" Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>AD | |
| FS 1.x UPN</auth:DisplayName><auth:Description>The UPN of the user when | |
| interoperating with AD FS 1.1 or AD FS | |
| 1.0</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/role" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Role</auth:DisplayName><auth:Description>A | |
| role that the user | |
| has</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Surname</auth:DisplayName><auth:Description>The | |
| surname of the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>PPID</auth:DisplayName><auth:Description>The | |
| private identifier of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Name | |
| ID</auth:DisplayName><auth:Description>The SAML name identifier of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationinstant" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| time stamp</auth:DisplayName><auth:Description>Used to display the time | |
| and date that the user was | |
| authenticated</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| method</auth:DisplayName><auth:Description>The method used to | |
| authenticate the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/denyonlysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only group SID</auth:DisplayName><auth:Description>The deny-only group | |
| SID of the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only primary SID</auth:DisplayName><auth:Description>The deny-only | |
| primary SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarygroupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Deny | |
| only primary group SID</auth:DisplayName><auth:Description>The deny-only | |
| primary group SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Group | |
| SID</auth:DisplayName><auth:Description>The group SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarygroupsid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Primary | |
| group SID</auth:DisplayName><auth:Description>The primary group SID of | |
| the user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarysid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Primary | |
| SID</auth:DisplayName><auth:Description>The primary SID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| account name</auth:DisplayName><auth:Description>The domain account name | |
| of the user in the form of | |
| domain\user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/isregistereduser" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Is | |
| Registered User</auth:DisplayName><auth:Description>User is registered | |
| to use this device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Identifier</auth:DisplayName><auth:Description>Identifier of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/registrationid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Registration Identifier</auth:DisplayName><auth:Description>Identifier | |
| for Device | |
| Registration</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/displayname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| Registration DisplayName</auth:DisplayName><auth:Description>Display | |
| name of Device | |
| Registration</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/ostype" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| OS type</auth:DisplayName><auth:Description>OS type of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/osversion" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Device | |
| OS Version</auth:DisplayName><auth:Description>OS version of the | |
| device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/devicecontext/claims/ismanaged" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Is | |
| Managed Device</auth:DisplayName><auth:Description>Device is managed by | |
| a management service</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-forwarded-client-ip" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Forwarded | |
| Client IP</auth:DisplayName><auth:Description>IP address of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-application" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| Application</auth:DisplayName><auth:Description>Type of the Client | |
| Application</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-user-agent" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| User Agent</auth:DisplayName><auth:Description>Device type the client is | |
| using to access the | |
| application</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-ip" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| IP</auth:DisplayName><auth:Description>IP address of the | |
| client</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Endpoint | |
| Path</auth:DisplayName><auth:Description>Absolute Endpoint path which | |
| can be used to determine active versus passive | |
| clients</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-proxy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Proxy</auth:DisplayName><auth:Description>DNS | |
| name of the federation server proxy that passed the | |
| request</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/relyingpartytrustid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Application | |
| Identifier</auth:DisplayName><auth:Description>Identifier for the | |
| Relying Party</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/applicationpolicy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Application | |
| policies</auth:DisplayName><auth:Description>Application policies of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/authoritykeyidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authority | |
| Key Identifier</auth:DisplayName><auth:Description>The Authority Key | |
| Identifier extension of the certificate that signed an issued | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/basicconstraints" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Basic | |
| Constraint</auth:DisplayName><auth:Description>One of the basic | |
| constraints of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/eku" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Enhanced | |
| Key Usage</auth:DisplayName><auth:Description>Describes one of the | |
| enhanced key usages of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuer" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Issuer</auth:DisplayName><auth:Description>The | |
| name of the certificate authority that issued the X.509 | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuername" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Issuer | |
| Name</auth:DisplayName><auth:Description>The distinguished name of the | |
| certificate issuer</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/keyusage" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Key | |
| Usage</auth:DisplayName><auth:Description>One of the key usages of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/notafter" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Not | |
| After</auth:DisplayName><auth:Description>Date in local time after which | |
| a certificate is no longer | |
| valid</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/notbefore" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Not | |
| Before</auth:DisplayName><auth:Description>The date in local time on | |
| which a certificate becomes | |
| valid</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatepolicy" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Certificate | |
| Policies</auth:DisplayName><auth:Description>The policies under which | |
| the certificate has been | |
| issued</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/rsa" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Public | |
| Key</auth:DisplayName><auth:Description>Public Key of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/rawdata" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Certificate | |
| Raw Data</auth:DisplayName><auth:Description>The raw data of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/san" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Alternative Name</auth:DisplayName><auth:Description>One of the | |
| alternative names of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/serialnumber" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Serial | |
| Number</auth:DisplayName><auth:Description>The serial number of a | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/signaturealgorithm" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Signature | |
| Algorithm</auth:DisplayName><auth:Description>The algorithm used to | |
| create the signature of a | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/subject" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject</auth:DisplayName><auth:Description>The | |
| subject from the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/subjectkeyidentifier" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Key Identifier</auth:DisplayName><auth:Description>Describes the subject | |
| key identifier of the | |
| certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/subjectname" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Subject | |
| Name</auth:DisplayName><auth:Description>The subject distinguished name | |
| from a certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplateinformation" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>V2 | |
| Template Name</auth:DisplayName><auth:Description>The name of the | |
| version 2 certificate template used when issuing or renewing a | |
| certificate. The extension is Microsoft | |
| specific.</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplatename" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>V1 | |
| Template Name</auth:DisplayName><auth:Description>The name of the | |
| version 1 certificate template used when issuing or renewing a | |
| certificate. The extension is Microsoft | |
| specific.</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/thumbprint" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Thumbprint</auth:DisplayName><auth:Description>Thumbprint | |
| of the certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/12/certificatecontext/field/x509version" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>X.509 | |
| Version</auth:DisplayName><auth:Description>The X.509 format version of | |
| a certificate</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/insidecorporatenetwork" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Inside | |
| Corporate Network</auth:DisplayName><auth:Description>Used to indicate | |
| if a request originated inside corporate | |
| network</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordexpirationtime" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Password | |
| Expiration Time</auth:DisplayName><auth:Description>Used to display the | |
| time when the password | |
| expires</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordexpirationdays" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Password | |
| Expiration Days</auth:DisplayName><auth:Description>Used to display the | |
| number of days to password | |
| expiry</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2012/01/passwordchangeurl" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Update | |
| Password URL</auth:DisplayName><auth:Description>Used to display the web | |
| address of update password | |
| service</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/claims/authnmethodsreferences" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Authentication | |
| Methods References</auth:DisplayName><auth:Description>Used to indicate | |
| all authentication methods used to authenticate the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/2012/01/requestcontext/claims/client-request-id" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Client | |
| Request ID</auth:DisplayName><auth:Description>Identifier for a user | |
| session</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2013/11/alternateloginid" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Alternate | |
| Login ID</auth:DisplayName><auth:Description>Alternate login ID of the | |
| user</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsdevicegroup" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| device group</auth:DisplayName><auth:Description>The windows group SID | |
| of the device</auth:Description></auth:ClaimType><auth:ClaimType | |
| Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlywindowsdevicegroup" | |
| Optional="true" | |
| xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706"><auth:DisplayName>Windows | |
| deny-only device group</auth:DisplayName><auth:Description>The windows | |
| deny-only group SID of the | |
| device</auth:Description></auth:ClaimType></fed:ClaimTypesOffered><fed:SecurityTokenServiceEndpoint><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/2005/certificatemixed</Address><Metadata><Metadata | |
| xmlns="http://schemas.xmlsoap.org/ws/2004/09/mex" | |
| xmlns:xsd="http://www.w3.org/2001/XMLSchema" | |
| xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"><wsx:MetadataSection | |
| Dialect="http://schemas.xmlsoap.org/ws/2004/09/mex" | |
| xmlns=""><wsx:MetadataReference><Address | |
| xmlns="http://www.w3.org/2005/08/addressing">https://dse-adfs.eastus.cloudapp.azure.com/adfs/services/trust/mex</Address></wsx:MetadataReference></wsx:MetadataSection></Metadata></Metadata></EndpointReference></fed:SecurityTokenServiceEndpoint><fed:PassiveRequestorEndpoint><EndpointReference | |
| xmlns="http://www.w3.org/2005/08/addressing"><Address>https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/</Address></EndpointReference></fed:PassiveRequestorEndpoint></RoleDescriptor><SPSSODescriptor | |
| WantAssertionsSigned="true" | |
| protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><KeyDescriptor | |
| use="encryption"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><KeyDescriptor | |
| use="signing"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><SingleLogoutService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><SingleLogoutService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat><NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat><NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat><AssertionConsumerService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/" index="0" | |
| isDefault="true"/><AssertionConsumerService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/" | |
| index="1"/><AssertionConsumerService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/" | |
| index="2"/></SPSSODescriptor><IDPSSODescriptor | |
| protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><KeyDescriptor | |
| use="encryption"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><KeyDescriptor | |
| use="signing"><KeyInfo | |
| xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></KeyDescriptor><SingleLogoutService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><SingleLogoutService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat><NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat><NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat><SingleSignOnService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><SingleSignOnService | |
| Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" | |
| Location="https://dse-adfs.eastus.cloudapp.azure.com/adfs/ls/"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="E-Mail Address" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Given Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="UPN" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/claims/CommonName" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Common Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/claims/EmailAddress" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="AD FS 1.x E-Mail Address" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/claims/Group" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Group" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/claims/UPN" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="AD FS 1.x UPN" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/role" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Role" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Surname" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="PPID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Name ID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationinstant" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Authentication time stamp" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Authentication method" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/denyonlysid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Deny only group SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarysid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Deny only primary SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarygroupsid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Deny only primary group SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Group SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarygroupsid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Primary group SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarysid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Primary SID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Windows account name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/isregistereduser" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Is Registered User" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Device Identifier" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/registrationid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Device Registration Identifier" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/displayname" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Device Registration DisplayName" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/ostype" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Device OS type" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/osversion" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Device OS Version" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/ismanaged" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Is Managed Device" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-forwarded-client-ip" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Forwarded Client IP" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-application" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Client Application" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-user-agent" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Client User Agent" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-ip" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Client IP" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Endpoint Path" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-proxy" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Proxy" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/relyingpartytrustid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Application Identifier" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/applicationpolicy" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Application policies" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/authoritykeyidentifier" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Authority Key Identifier" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/basicconstraints" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Basic Constraint" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/eku" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Enhanced Key Usage" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuer" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Issuer" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuername" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Issuer Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/keyusage" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Key Usage" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/notafter" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Not After" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/notbefore" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Not Before" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatepolicy" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Certificate Policies" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/rsa" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Public Key" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/rawdata" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Certificate Raw Data" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/san" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Subject Alternative Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/serialnumber" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Serial Number" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/signaturealgorithm" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Signature Algorithm" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/subject" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Subject" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/subjectkeyidentifier" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Subject Key Identifier" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/subjectname" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Subject Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplateinformation" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="V2 Template Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplatename" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="V1 Template Name" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/thumbprint" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Thumbprint" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/x509version" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="X.509 Version" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2012/01/insidecorporatenetwork" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Inside Corporate Network" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2012/01/passwordexpirationtime" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Password Expiration Time" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2012/01/passwordexpirationdays" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Password Expiration Days" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2012/01/passwordchangeurl" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Update Password URL" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/claims/authnmethodsreferences" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Authentication Methods References" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/client-request-id" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Client Request ID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2013/11/alternateloginid" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Alternate Login ID" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsdevicegroup" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Windows device group" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/><Attribute | |
| Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlywindowsdevicegroup" | |
| NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" | |
| FriendlyName="Windows deny-only device group" | |
| xmlns="urn:oasis:names:tc:SAML:2.0:assertion"/></IDPSSODescriptor></EntityDescriptor> | |
| fedMetadataSize: 73771 | |
| fedMetadataName: 871bde7c3eb42101f6e8d941fd70f853.xml | |
| strategy: adfs | |
| name: adfs-wsfed | |
| is_domain_connection: false | |
| enabled_clients: | |
| - jarvis (Test Application) | |
| - Default App | |
| - auth0-management-api-webhooks | |
| - options: | |
| disable_signup: false | |
| name: email | |
| email: | |
| syntax: liquid | |
| from: '{{ application.name }} <[email protected]>' | |
| subject: 'Welcome to {{ application.name }}' | |
| body: >- | |
| <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" | |
| "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> | |
| <html xmlns="http://www.w3.org/1999/xhtml"> | |
| <head> | |
| <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> | |
| <style type="text/css">.ExternalClass,.ExternalClass div,.ExternalClass font,.ExternalClass p,.ExternalClass span,.ExternalClass td,img{line-height:100%}#outlook a{padding:0}.ExternalClass,.ReadMsgBody{width:100%}a,blockquote,body,li,p,table,td{-webkit-text-size-adjust:100%;-ms-text-size-adjust:100%}table,td{mso-table-lspace:0;mso-table-rspace:0}img{-ms-interpolation-mode:bicubic;border:0;height:auto;outline:0;text-decoration:none}table{border-collapse:collapse!important}#bodyCell,#bodyTable,body{height:100%!important;margin:0;padding:0;font-family:ProximaNova,sans-serif}#bodyCell{padding:20px}#bodyTable{width:600px}@font-face{font-family:ProximaNova;src:url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-regular-webfont-webfont.eot);src:url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-regular-webfont-webfont.eot?#iefix) format('embedded-opentype'),url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-regular-webfont-webfont.woff) format('woff');font-weight:400;font-style:normal}@font-face{font-family:ProximaNova;src:url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-semibold-webfont-webfont.eot);src:url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-semibold-webfont-webfont.eot?#iefix) format('embedded-opentype'),url(https://cdn.auth0.com/fonts/proxima-nova/proximanova-semibold-webfont-webfont.woff) format('woff');font-weight:600;font-style:normal}@media only screen and (max-width:480px){#bodyTable,body{width:100%!important}a,blockquote,body,li,p,table,td{-webkit-text-size-adjust:none!important}body{min-width:100%!important}#bodyTable{max-width:600px!important}#signIn{max-width:280px!important}} | |
| </style> | |
| </head> | |
| <body leftmargin="0" marginwidth="0" topmargin="0" marginheight="0" offset="0" style="-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;margin: 0;padding: 0;font-family: "ProximaNova", sans-serif;height: 100% !important;"><center> | |
| <table style="width: 600px;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;mso-table-lspace: 0pt;mso-table-rspace: 0pt;margin: 0;padding: 0;font-family: "ProximaNova", sans-serif;border-collapse: collapse !important;height: 100% !important;" align="center" border="0" cellpadding="0" cellspacing="0" height="100%" width="100%" id="bodyTable"> | |
| <tr> | |
| <td align="center" valign="top" id="bodyCell" style="-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;mso-table-lspace: 0pt;mso-table-rspace: 0pt;margin: 0;padding: 20px;font-family: "ProximaNova", sans-serif;height: 100% !important;"> | |
| <div class="main"> | |
| <p style="text-align: center;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%; margin-bottom: 30px;"> | |
| <img src="https://cdn.auth0.com/styleguide/2.0.9/lib/logos/img/badge.png" width="50" alt="Your logo goes here" style="-ms-interpolation-mode: bicubic;border: 0;height: auto;line-height: 100%;outline: none;text-decoration: none;"> | |
| </p> | |
| <!-- Email change content --> | |
| {% if operation == 'change_email' %} | |
| <p style="font-size: 1.2em;line-height: 1.3;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;">Your email address has been updated.</p> | |
| {% else %} | |
| <!-- Signup email content --> | |
| {% if send == 'link' or send == 'link_ios' or send == 'link_android' %} | |
| <p style="font-size: 1.2em;line-height: 1.3;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;">Click and confirm that you want to sign in to {{ application.name }}. This link will expire in five minutes.</p> | |
| <div style="text-align:center"> | |
| <a id="signIn" style="text-transform: uppercase;letter-spacing: 1px;color: #ffffff;text-decoration: none;display: inline-block;min-height: 48px;line-height: 48px;padding-top: 0;padding-right: 26px;padding-bottom: 0;margin: 20px 0;padding-left: 26px;border: 0;outline: 0;background: #eb5424;font-size: 14px;font-style: normal;font-weight: 400;text-align: center;white-space: nowrap;border-radius: 3px;text-overflow: ellipsis;max-width: 280px;overflow: hidden;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;" href="{{ link }}">Sign in to {{ application.name }}</a> | |
| </div> | |
| <p style="-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;">Or sign in using this link:</p> | |
| <p style="-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;"><a style="font-size: 12px; color: #A9B3BC; text-decoration: none;word-break: break-all;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;" href="{{ link }}">{{ link }}</a></p> | |
| {% elsif send == 'code' %} | |
| <p style="font-size: 1.4em; line-height: 1.3;">Your verification code is: <b>{{ code }}</b></p> | |
| {% endif %} | |
| {% endif %} | |
| <p style="-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;">If you are having any issues with your account, please don't hesitate to contact us by replying to this mail.</p> | |
| <br> | |
| Thanks! | |
| <br> | |
| <strong>{{ application.name }}</strong> | |
| <br><br> | |
| <hr style="border: 2px solid #EAEEF3; border-bottom: 0; margin: 20px 0;"> | |
| <p style="text-align: center;color: #A9B3BC;-webkit-text-size-adjust: 100%;-ms-text-size-adjust: 100%;"> | |
| If you did not make this request, please contact us by replying to this mail. | |
| </p> | |
| </div> | |
| </td> | |
| </tr> | |
| </table> | |
| </center> | |
| </body> | |
| </html> | |
| authParams: '' | |
| totp: | |
| time_step: 3600 | |
| length: 6 | |
| brute_force_protection: true | |
| strategy: email | |
| name: email | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - OmniAuth | |
| - Zendesk | |
| - Slack | |
| - Wordpress | |
| - auth0-management-api-webhooks | |
| - options: | |
| client_id: '660314557804541' | |
| public_profile: true | |
| email: true | |
| user_birthday: false | |
| user_website: false | |
| user_hometown: false | |
| user_location: false | |
| user_work_history: false | |
| user_education_history: false | |
| user_about_me: false | |
| ads_management: false | |
| ads_read: false | |
| manage_pages: false | |
| pages_show_list: false | |
| pages_manage_cta: false | |
| pages_messaging: false | |
| pages_messaging_phone_number: false | |
| pages_messaging_subscriptions: false | |
| publish_pages: false | |
| publish_video: false | |
| read_audience_network_insights: false | |
| read_custom_friendlists: false | |
| read_insights: false | |
| read_page_mailboxes: false | |
| rsvp_event: false | |
| user_actions-books: false | |
| user_actions-fitness: false | |
| user_actions-music: false | |
| user_actions-news: false | |
| user_actions-video: false | |
| user_events: false | |
| user_friends: false | |
| user_games_activity: false | |
| user_likes: false | |
| user_managed_groups: false | |
| user_tagged_places: false | |
| user_photos: false | |
| user_posts: false | |
| user_relationships: false | |
| user_relationship_details: false | |
| user_religion_politics: false | |
| user_status: false | |
| user_videos: false | |
| manage_notifications: false | |
| publish_actions: false | |
| read_stream: false | |
| read_mailbox: false | |
| user_groups: false | |
| scope: 'public_profile,email' | |
| client_secret: 24ce57d5e269218a11d4541dc9e5bb40 | |
| groups_access_member_info: false | |
| publish_to_groups: false | |
| user_age_range: false | |
| user_gender: false | |
| user_link: false | |
| business_management: false | |
| leads_retrieval: false | |
| pages_manage_instant_articles: false | |
| allow_context_profile_field: false | |
| strategy: facebook | |
| name: facebook | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - auth0-authz | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - options: | |
| client_id: 026f23a8ad25f05c7ef7 | |
| client_secret: 7a8087d229ffbbe71a84dbcb3fdc68ca9eed7c4e | |
| profile: true | |
| email: true | |
| read_user: true | |
| follow: true | |
| public_repo: true | |
| repo: true | |
| repo_deployment: true | |
| repo_status: true | |
| delete_repo: true | |
| notifications: true | |
| gist: true | |
| read_repo_hook: true | |
| write_repo_hook: true | |
| admin_repo_hook: true | |
| read_org: true | |
| write_org: true | |
| admin_org: true | |
| read_public_key: true | |
| write_public_key: true | |
| admin_public_key: true | |
| scope: | |
| - 'user:email' | |
| - 'read:user' | |
| - 'user:follow' | |
| - public_repo | |
| - repo | |
| - repo_deployment | |
| - 'repo:status' | |
| - delete_repo | |
| - notifications | |
| - gist | |
| - 'read:repo_hook' | |
| - 'write:repo_hook' | |
| - 'admin:repo_hook' | |
| - 'read:org' | |
| - 'write:org' | |
| - 'admin:org' | |
| - 'read:public_key' | |
| - 'write:public_key' | |
| - 'admin:public_key' | |
| strategy: github | |
| name: github | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - Default App | |
| - auth0-authz | |
| - auth0-logs-to-mixpanel | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - options: | |
| email: true | |
| profile: true | |
| upstream_params: | |
| access_type: | |
| value: offline | |
| prompt: | |
| value: consent | |
| scope: | |
| - profile | |
| client_id: 756396685214-v0q7oj57k06nrhr0p3tl2rqb3v251m0t.apps.googleusercontent.com | |
| client_secret: ZYMo02mOzzbrzySx8Oa_cI57 | |
| allowed_audiences: [] | |
| contacts: false | |
| blogger: false | |
| calendar: false | |
| gmail: false | |
| google_plus: false | |
| orkut: false | |
| picasa_web: false | |
| tasks: false | |
| youtube: false | |
| adsense_management: false | |
| google_affiliate_network: false | |
| analytics: false | |
| google_books: false | |
| google_cloud_storage: false | |
| content_api_for_shopping: false | |
| chrome_web_store: false | |
| document_list: false | |
| google_drive: false | |
| google_drive_files: false | |
| latitude_best: false | |
| latitude_city: false | |
| moderator: false | |
| sites: false | |
| spreadsheets: false | |
| url_shortener: false | |
| webmaster_tools: false | |
| coordinate: false | |
| coordinate_readonly: false | |
| strategy: google-oauth2 | |
| name: google-oauth2 | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - My App | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - Default App | |
| - Console | |
| - auth0-authz | |
| - Nest API (Test Application) | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - API Explorer Application | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Wordpress | |
| - Office 365 | |
| - IOS-lOCK | |
| - auth0-management-api-webhooks | |
| - API (Test Application) | |
| - auth0-deploy-cli-extension | |
| - options: | |
| client_id: 770043sbwshs89 | |
| client_secret: Vi1G9wuWWlEGB5ls | |
| profile: true | |
| full_profile: false | |
| email: true | |
| network: false | |
| scope: | |
| - r_liteprofile | |
| - r_emailaddress | |
| strategy_version: 2 | |
| basic_profile: false | |
| strategy: linkedin | |
| name: linkedin | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - My App | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - Default App | |
| - Nest API (Test Application) | |
| - auth0-logs-to-mixpanel | |
| - Android-Test | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - auth0-deploy-cli-extension | |
| - options: | |
| scripts: | |
| fetchUserProfile: |- | |
| function(accessToken, ctx, cb) { | |
| var profile = { | |
| user_id: '123', | |
| given_name: 'tanver', | |
| family_name: 'hasan', | |
| email_verified:true, | |
| email: '[email protected]' | |
| }; | |
| cb(null, profile); | |
| } | |
| client_id: 8d7532b28ef4c16d72e7 | |
| client_secret: 820c7decd40741ff1ba6d0ec5000660b7c51d855 | |
| authorizationURL: 'https://github.com/login/oauth/authorize' | |
| tokenURL: 'https://github.com/login/oauth/access_token' | |
| scope: '' | |
| strategy: oauth2 | |
| name: con1 | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| scripts: | |
| fetchUserProfile: |- | |
| function(accessToken, ctx, cb) { | |
| // call oauth2 APIwith the accesstoken and create the profile | |
| var profile = { | |
| user_id: '123', | |
| given_name: 'tanver', | |
| family_name: 'hasan', | |
| email_verified: true, | |
| email: '[email protected]' | |
| }; | |
| cb(null, profile); | |
| } | |
| client_id: 8d7532b28ef4c16d72e7 | |
| client_secret: 820c7decd40741ff1ba6d0ec5000660b7c51d855 | |
| authorizationURL: 'https://github.com/login/oauth/authorize' | |
| tokenURL: 'https://github.com/login/oauth/access_token' | |
| scope: '' | |
| strategy: oauth2 | |
| name: con2 | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| scripts: | |
| fetchUserProfile: |- | |
| function(accessToken, ctx, cb) { | |
| request({ | |
| url: "https://auth0tanver-test.okta.com/oauth2/v1/userinfo", | |
| method: "GET", | |
| headers: { | |
| "Authorization": "Bearer " + accessToken, | |
| "Content-Type": "application/json" | |
| } | |
| }, | |
| function(e, r, b) { | |
| if (e) return cb(e); | |
| if (r.statusCode !== 200) return cb(new Error('StatusCode: ' + r.statusCode)); | |
| profile = JSON.parse(b); | |
| profile.user_id = profile.sub; | |
| delete profile.sub; | |
| cb(null, profile); | |
| } | |
| ); | |
| } | |
| client_id: 0oag19dd4rTXdZ7Mr356 | |
| client_secret: 2y6H9k_kGW84w1Rc283TiSbvJIp_Z1J3C8Czy70e | |
| authorizationURL: 'https://auth0tanver-test.okta.com/oauth2/v1/authorize' | |
| tokenURL: 'https://auth0tanver-test.okta.com/oauth2/v1/token' | |
| scope: openid email profile | |
| strategy: oauth2 | |
| name: OKTAOPENID | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| scripts: | |
| fetchUserProfile: |- | |
| function(accessToken, ctx, cb) { | |
| request({ | |
| url: "https://tanver.au.auth0.com/userinfo", | |
| method: "GET", | |
| headers: { | |
| "Authorization": "Bearer " + accessToken, | |
| "Content-Type": "application/json" | |
| } | |
| }, | |
| function(e, r, b) { | |
| if (e) return cb(e); | |
| if (r.statusCode !== 200) return cb(new Error('StatusCode: ' + r.statusCode)); | |
| profile = JSON.parse(b); | |
| profile.user_id = profile.sub; | |
| delete profile.sub; | |
| cb(null, profile); | |
| } | |
| ); | |
| } | |
| client_id: ukEJ2okj1yyf3org25NgiHKrxHZPyMRR | |
| client_secret: 7WSh_dJxd-yX0arE1o_XLuHQhTkw4YBQCehYJe_P_NI9EFBaaayRyIVOxWq-dAp_ | |
| authorizationURL: 'https://tanver.au.auth0.com/authorize' | |
| tokenURL: 'https://tanver.au.auth0.com/oauth/token' | |
| scope: openid | |
| strategy: oauth2 | |
| name: Custom-OIDC | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| scripts: | |
| fetchUserProfile: |- | |
| function(accessToken, ctx, cb) { | |
| request({ | |
| url: "https://tanver.au.auth0.com/userinfo", | |
| method: "GET", | |
| headers: { | |
| "Authorization": "Bearer " + accessToken, | |
| "Content-Type": "application/json" | |
| } | |
| }, | |
| function(e, r, b) { | |
| if (e) return cb(e); | |
| if (r.statusCode !== 200) return cb(new Error('StatusCode: ' + r.statusCode)); | |
| profile = JSON.parse(b); | |
| profile.user_id = profile.sub; | |
| delete profile.sub; | |
| cb(null, profile); | |
| } | |
| ); | |
| } | |
| client_id: ukEJ2okj1yyf3org25NgiHKrxHZPyMRR | |
| client_secret: 7WSh_dJxd-yX0arE1o_XLuHQhTkw4YBQCehYJe_P_NI9EFBaaayRyIVOxWq-dAp_ | |
| authorizationURL: 'https://tanver.au.auth0.com/authorize' | |
| tokenURL: 'https://tanver.au.auth0.com/oauth/token' | |
| scope: openid | |
| upstream_params: | |
| response_mode: | |
| value: form_post | |
| strategy: oauth2 | |
| name: Custom-OIDC2 | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Tanver Blog | |
| - options: | |
| domain_aliases: [] | |
| discovery_url: 'https://tanver.au.auth0.com/.well-known/openid-configuration' | |
| client_id: ukEJ2okj1yyf3org25NgiHKrxHZPyMRR | |
| icon_url: '' | |
| issuer: 'https://tanver.au.auth0.com/' | |
| authorization_endpoint: 'https://tanver.au.auth0.com/authorize' | |
| jwks_uri: 'https://tanver.au.auth0.com/.well-known/jwks.json' | |
| userinfo_endpoint: 'https://tanver.au.auth0.com/userinfo' | |
| type: front_channel | |
| token_endpoint: null | |
| client_secret: null | |
| scope: openid profile email | |
| strategy: oidc | |
| name: OIDC | |
| is_domain_connection: false | |
| display_name: OIDC | |
| enabled_clients: [] | |
| - options: | |
| domain_aliases: | |
| - auth0.com | |
| tenant_domain: auth0.com | |
| signInEndpoint: 'https://tenant2-idp.eu.auth0.com/samlp/ho9FASHBHDGXfBLeCJmDZCGCdiILudOM' | |
| signOutEndpoint: '' | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: false | |
| signSAMLRequest: true | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: '{}' | |
| fieldsMap: {} | |
| idpinitiated: | |
| client_id: T4T3wsZFW1zXj0cSSSJtOKG2bvToS3Pd | |
| client_protocol: oauth2 | |
| client_authorizequery: '' | |
| signingCert: >- | |
| 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 | |
| expires: '2032-03-05T17:47:28.000Z' | |
| subject: | |
| commonName: tenant2-idp.eu.auth0.com | |
| thumbprints: | |
| - 96a724c016e2a07a2d619526798e781910ab63bb | |
| cert: "-----BEGIN CERTIFICATE-----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\r\n3fAKzbiLDKmbyE+l1FXN\r\n-----END CERTIFICATE-----\r\n" | |
| strategy: samlp | |
| name: saml-con-cd | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - auth0-authz | |
| - Nest API (Test Application) | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - SAML-CON-CD-APP | |
| - auth0-management-api-webhooks | |
| - auth0-deploy-cli-extension | |
| - options: | |
| domain_aliases: | |
| - authokta.com | |
| tenant_domain: authokta.com | |
| signInEndpoint: >- | |
| https://auth0tanver-test.okta.com/app/auth0org791928_oktasamlapp_1/exkg195zttfP91ogW356/sso/saml | |
| signOutEndpoint: '' | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: true | |
| signSAMLRequest: true | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: '{}' | |
| fieldsMap: {} | |
| idpinitiated: | |
| client_id: IXMGQRRJ9ZSMZ3_oTgNJRnpioPKEvkjt | |
| client_protocol: oauth2 | |
| client_authorizequery: '' | |
| signingCert: >- | |
| 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 | |
| expires: '2029-04-10T15:12:22.000Z' | |
| subject: | |
| countryName: US | |
| stateOrProvinceName: California | |
| localityName: San Francisco | |
| organizationName: Okta | |
| organizationalUnitName: SSOProvider | |
| commonName: auth0tanver-test | |
| emailAddress: [email protected] | |
| thumbprints: | |
| - 41f1d30521aaf75ee387adc23db34f2b42db357c | |
| cert: "-----BEGIN CERTIFICATE-----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\r\nqT9Shzy5n2wzvLWOPNzMfm0hKt8NPfUlCGSutzF/O8lPqST0\r\n-----END CERTIFICATE-----\n" | |
| strategy: samlp | |
| name: saml-okta | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| metadataUrl: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/metadata/KJUuS1GyQylwfG3sn949361pFZw5XzIU | |
| signingCert: >- | |
| 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 | |
| signInEndpoint: 'https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU' | |
| signOutEndpoint: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU/logout | |
| expires: '2032-03-05T17:47:28.000Z' | |
| subject: | |
| commonName: tenant2-idp.eu.auth0.com | |
| thumbprints: | |
| - 96a724c016e2a07a2d619526798e781910ab63bb | |
| cert: | | |
| -----BEGIN CERTIFICATE----- | |
| MIIDCzCCAfOgAwIBAgIJNhMG+TVN/jYEMA0GCSqGSIb3DQEBCwUAMCMxITAfBgNV | |
| BAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNvbTAeFw0xODA2MjcxNzQ3MjhaFw0z | |
| MjAzMDUxNzQ3MjhaMCMxITAfBgNVBAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNv | |
| bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANOD3cPPlBUXtl/Euwh+ | |
| IPcELBLPRCsVWx2O/N5U/XimpSra3snCUw0wXxrRBX5bkf1zMPFTb0EizoWSxxkY | |
| wv+PP21p4hUttO49MUQfEERcxBRFrGsadxmpJ8FvCdIPHPj/byH2afZsVnJ0WXrB | |
| Ivli5a78BEU2+PTB4J5nT9c7ShRmWrxlnxDzy8YWD/tCm8zCn3xCXQSh1vOm2+jN | |
| vJLLEUPF3PiCgx6KIk6CsRPoHeqDHgfZaBdQ8bNV0gtjwLqv/V+OvGs2/Hm4ucjp | |
| /isD3FMSp7t89iE9b4dazR6criNsi7F4hPjAZshsOUUNyioCA8A0i+jMlXcOBWJH | |
| Bf0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUAvIiq6tFOp2h | |
| bL20XCaSIve10lwwDgYDVR0PAQH/BAQDAgKEMA0GCSqGSIb3DQEBCwUAA4IBAQAq | |
| fqQgx/ac3entW9F/CJBgiL4RMMNA4LhQUzpyGraE2ISiYvZbMwtlTolCxcbS4Mka | |
| nnTOzPYyVOzYOTMCZpGnN+wM6GtxbLcfG3QI6NjURmWbnkyRucb495UQPQncWDTc | |
| TP5jInNZCvUZJw/+zBi8ZYT72FFNr4/oYi6EHi1KHxMcvUkbRxvtGs6TcNlZuoR/ | |
| 42y7WKecc+SwwsSHwJ7aptZg89M7yxqJlgD0KbjUbwV3v6BL3EVJC7b3s8xT2f09 | |
| 3VWXm/7kwPUkuP1C7fuYIpjuXiXszR02o6j95vt3r4aLoBWC2rRzIssGxmA+qS5u | |
| 3fAKzbiLDKmbyE+l1FXN | |
| -----END CERTIFICATE----- | |
| domain_aliases: [] | |
| tenant_domain: null | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: false | |
| signSAMLRequest: false | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: '{}' | |
| fieldsMap: {} | |
| idpinitiated: | |
| client_id: '' | |
| client_protocol: oauth2 | |
| client_authorizequery: '' | |
| strategy: samlp | |
| name: SAML-SP-AUTO-METADATA-URL | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - Default App | |
| - auth0-logs-to-mixpanel | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - options: | |
| metadataUrl: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/metadata/KJUuS1GyQylwfG3sn949361pFZw5XzIU | |
| signingCert: >- | |
| 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 | |
| signInEndpoint: 'https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU' | |
| signOutEndpoint: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU/logout | |
| expires: '2032-03-05T17:47:28.000Z' | |
| subject: | |
| commonName: tenant2-idp.eu.auth0.com | |
| thumbprints: | |
| - 96a724c016e2a07a2d619526798e781910ab63bb | |
| cert: | | |
| -----BEGIN CERTIFICATE----- | |
| MIIDCzCCAfOgAwIBAgIJNhMG+TVN/jYEMA0GCSqGSIb3DQEBCwUAMCMxITAfBgNV | |
| BAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNvbTAeFw0xODA2MjcxNzQ3MjhaFw0z | |
| MjAzMDUxNzQ3MjhaMCMxITAfBgNVBAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNv | |
| bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANOD3cPPlBUXtl/Euwh+ | |
| IPcELBLPRCsVWx2O/N5U/XimpSra3snCUw0wXxrRBX5bkf1zMPFTb0EizoWSxxkY | |
| wv+PP21p4hUttO49MUQfEERcxBRFrGsadxmpJ8FvCdIPHPj/byH2afZsVnJ0WXrB | |
| Ivli5a78BEU2+PTB4J5nT9c7ShRmWrxlnxDzy8YWD/tCm8zCn3xCXQSh1vOm2+jN | |
| vJLLEUPF3PiCgx6KIk6CsRPoHeqDHgfZaBdQ8bNV0gtjwLqv/V+OvGs2/Hm4ucjp | |
| /isD3FMSp7t89iE9b4dazR6criNsi7F4hPjAZshsOUUNyioCA8A0i+jMlXcOBWJH | |
| Bf0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUAvIiq6tFOp2h | |
| bL20XCaSIve10lwwDgYDVR0PAQH/BAQDAgKEMA0GCSqGSIb3DQEBCwUAA4IBAQAq | |
| fqQgx/ac3entW9F/CJBgiL4RMMNA4LhQUzpyGraE2ISiYvZbMwtlTolCxcbS4Mka | |
| nnTOzPYyVOzYOTMCZpGnN+wM6GtxbLcfG3QI6NjURmWbnkyRucb495UQPQncWDTc | |
| TP5jInNZCvUZJw/+zBi8ZYT72FFNr4/oYi6EHi1KHxMcvUkbRxvtGs6TcNlZuoR/ | |
| 42y7WKecc+SwwsSHwJ7aptZg89M7yxqJlgD0KbjUbwV3v6BL3EVJC7b3s8xT2f09 | |
| 3VWXm/7kwPUkuP1C7fuYIpjuXiXszR02o6j95vt3r4aLoBWC2rRzIssGxmA+qS5u | |
| 3fAKzbiLDKmbyE+l1FXN | |
| -----END CERTIFICATE----- | |
| domain_aliases: | |
| - auth0.com | |
| tenant_domain: auth0.com | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: true | |
| signSAMLRequest: false | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: |- | |
| { | |
| "user_id": [ | |
| "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", | |
| "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn", | |
| "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" | |
| ], | |
| "mynickname":[ | |
| "nickname" | |
| ], | |
| "roles":[ | |
| "roles", | |
| "nickname" | |
| ] | |
| } | |
| fieldsMap: | |
| user_id: | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier' | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn' | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name' | |
| mynickname: | |
| - nickname | |
| roles: | |
| - roles | |
| - nickname | |
| idpinitiated: | |
| client_id: IXMGQRRJ9ZSMZ3_oTgNJRnpioPKEvkjt | |
| client_protocol: oauth2 | |
| client_authorizequery: '' | |
| strategy: samlp | |
| name: sec-test | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - zendesk | |
| - testclick (Test Application) | |
| - jarvis (Test Application) | |
| - Default App | |
| - Zendesk | |
| - Slack | |
| - auth0-management-api-webhooks | |
| - options: | |
| metadataUrl: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/metadata/KJUuS1GyQylwfG3sn949361pFZw5XzIU | |
| fieldsMap: | |
| user_id: | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier' | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn' | |
| - 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name' | |
| signingCert: >- | |
| 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 | |
| signInEndpoint: 'https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU' | |
| signOutEndpoint: >- | |
| https://tenant2-idp.eu.auth0.com/samlp/KJUuS1GyQylwfG3sn949361pFZw5XzIU/logout | |
| expires: '2032-03-05T17:47:28.000Z' | |
| subject: | |
| commonName: tenant2-idp.eu.auth0.com | |
| thumbprints: | |
| - 96a724c016e2a07a2d619526798e781910ab63bb | |
| cert: | | |
| -----BEGIN CERTIFICATE----- | |
| MIIDCzCCAfOgAwIBAgIJNhMG+TVN/jYEMA0GCSqGSIb3DQEBCwUAMCMxITAfBgNV | |
| BAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNvbTAeFw0xODA2MjcxNzQ3MjhaFw0z | |
| MjAzMDUxNzQ3MjhaMCMxITAfBgNVBAMTGHRlbmFudDItaWRwLmV1LmF1dGgwLmNv | |
| bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANOD3cPPlBUXtl/Euwh+ | |
| IPcELBLPRCsVWx2O/N5U/XimpSra3snCUw0wXxrRBX5bkf1zMPFTb0EizoWSxxkY | |
| wv+PP21p4hUttO49MUQfEERcxBRFrGsadxmpJ8FvCdIPHPj/byH2afZsVnJ0WXrB | |
| Ivli5a78BEU2+PTB4J5nT9c7ShRmWrxlnxDzy8YWD/tCm8zCn3xCXQSh1vOm2+jN | |
| vJLLEUPF3PiCgx6KIk6CsRPoHeqDHgfZaBdQ8bNV0gtjwLqv/V+OvGs2/Hm4ucjp | |
| /isD3FMSp7t89iE9b4dazR6criNsi7F4hPjAZshsOUUNyioCA8A0i+jMlXcOBWJH | |
| Bf0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUAvIiq6tFOp2h | |
| bL20XCaSIve10lwwDgYDVR0PAQH/BAQDAgKEMA0GCSqGSIb3DQEBCwUAA4IBAQAq | |
| fqQgx/ac3entW9F/CJBgiL4RMMNA4LhQUzpyGraE2ISiYvZbMwtlTolCxcbS4Mka | |
| nnTOzPYyVOzYOTMCZpGnN+wM6GtxbLcfG3QI6NjURmWbnkyRucb495UQPQncWDTc | |
| TP5jInNZCvUZJw/+zBi8ZYT72FFNr4/oYi6EHi1KHxMcvUkbRxvtGs6TcNlZuoR/ | |
| 42y7WKecc+SwwsSHwJ7aptZg89M7yxqJlgD0KbjUbwV3v6BL3EVJC7b3s8xT2f09 | |
| 3VWXm/7kwPUkuP1C7fuYIpjuXiXszR02o6j95vt3r4aLoBWC2rRzIssGxmA+qS5u | |
| 3fAKzbiLDKmbyE+l1FXN | |
| -----END CERTIFICATE----- | |
| strategy: samlp | |
| name: SAML-SP-AUTO-METADATA-URL2 | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| domain_aliases: [] | |
| tenant_domain: null | |
| signInEndpoint: >- | |
| https://dev-653462.okta.com/app/studentdev653462_auth0test_1/exk12g30psJUhKaQr357/sso/saml | |
| signOutEndpoint: '' | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: false | |
| signSAMLRequest: true | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: '{}' | |
| fieldsMap: {} | |
| idpinitiated: | |
| client_id: T4T3wsZFW1zXj0cSSSJtOKG2bvToS3Pd | |
| client_protocol: oauth2 | |
| client_authorizequery: >- | |
| response_type=token+id_token&redirect_uri=http://localhost:4200/hlp&scope=openid | |
| signingCert: >- | |
| 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 | |
| expires: '2029-08-06T14:59:12.000Z' | |
| subject: | |
| countryName: US | |
| stateOrProvinceName: California | |
| localityName: San Francisco | |
| organizationName: Okta | |
| organizationalUnitName: SSOProvider | |
| commonName: dev-653462 | |
| emailAddress: [email protected] | |
| thumbprints: | |
| - 7672211c7a672920a6a0c3079323207036a8b4c9 | |
| cert: "-----BEGIN CERTIFICATE-----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\r\nGwWCShKFAvR3ivC1WIVq6pC0eP1nGFwY\r\n-----END CERTIFICATE-----\n" | |
| strategy: samlp | |
| name: OKTA | |
| is_domain_connection: false | |
| enabled_clients: [] | |
| - options: | |
| domain_aliases: | |
| - auth0.com | |
| tenant_domain: auth0.com | |
| signInEndpoint: 'https://tenant2-idp.eu.auth0.com/samlp/RqElIc90U71TNGXZSGYlXLxr24kh7YDR' | |
| signOutEndpoint: '' | |
| protocolBinding: '' | |
| user_id_attribute: '' | |
| debug: true | |
| signSAMLRequest: false | |
| signatureAlgorithm: rsa-sha256 | |
| digestAlgorithm: sha256 | |
| fieldsMapJsonRaw: '{}' | |
| fieldsMap: {} | |
| idpinitiated: | |
| client_id: T4T3wsZFW1zXj0cSSSJtOKG2bvToS3Pd | |
| client_protocol: oauth2 | |
| client_authorizequery: >- | |
| redirect_uri=http://localhost:3000&scope=openid email | |
| offline_access&response_type=token+id_token&audience=https://api.timesheet.com/ | |
| signingCert: >- | |
| LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tDQpNSUlEQ3pDQ0FmT2dBd0lCQWdJSk5oTUcrVFZOL2pZRU1BMEdDU3FHU0liM0RRRUJDd1VBTUNNeElUQWZCZ05WDQpCQU1UR0hSbGJtRnVkREl0YVdSd0xtVjFMbUYxZEdnd0xtTnZiVEFlRncweE9EQTJNamN4TnpRM01qaGFGdzB6DQpNakF6TURVeE56UTNNamhhTUNNeElUQWZCZ05WQkFNVEdIUmxibUZ1ZERJdGFXUndMbVYxTG1GMWRHZ3dMbU52DQpiVENDQVNJd0RRWUpLb1pJaHZjTkFRRUJCUUFEZ2dFUEFEQ0NBUW9DZ2dFQkFOT0QzY1BQbEJVWHRsL0V1d2grDQpJUGNFTEJMUFJDc1ZXeDJPL041VS9YaW1wU3JhM3NuQ1V3MHdYeHJSQlg1YmtmMXpNUEZUYjBFaXpvV1N4eGtZDQp3ditQUDIxcDRoVXR0TzQ5TVVRZkVFUmN4QlJGckdzYWR4bXBKOEZ2Q2RJUEhQai9ieUgyYWZac1ZuSjBXWHJCDQpJdmxpNWE3OEJFVTIrUFRCNEo1blQ5YzdTaFJtV3J4bG54RHp5OFlXRC90Q204ekNuM3hDWFFTaDF2T20yK2pODQp2SkxMRVVQRjNQaUNneDZLSWs2Q3NSUG9IZXFESGdmWmFCZFE4Yk5WMGd0andMcXYvVitPdkdzMi9IbTR1Y2pwDQovaXNEM0ZNU3A3dDg5aUU5YjRkYXpSNmNyaU5zaTdGNGhQakFac2hzT1VVTnlpb0NBOEEwaStqTWxYY09CV0pIDQpCZjBDQXdFQUFhTkNNRUF3RHdZRFZSMFRBUUgvQkFVd0F3RUIvekFkQmdOVkhRNEVGZ1FVQXZJaXE2dEZPcDJoDQpiTDIwWENhU0l2ZTEwbHd3RGdZRFZSMFBBUUgvQkFRREFnS0VNQTBHQ1NxR1NJYjNEUUVCQ3dVQUE0SUJBUUFxDQpmcVFneC9hYzNlbnRXOUYvQ0pCZ2lMNFJNTU5BNExoUVV6cHlHcmFFMklTaVl2WmJNd3RsVG9sQ3hjYlM0TWthDQpublRPelBZeVZPellPVE1DWnBHbk4rd002R3R4YkxjZkczUUk2TmpVUm1XYm5reVJ1Y2I0OTVVUVBRbmNXRFRjDQpUUDVqSW5OWkN2VVpKdy8rekJpOFpZVDcyRkZOcjQvb1lpNkVIaTFLSHhNY3ZVa2JSeHZ0R3M2VGNObFp1b1IvDQo0Mnk3V0tlY2MrU3d3c1NId0o3YXB0Wmc4OU03eXhxSmxnRDBLYmpVYndWM3Y2QkwzRVZKQzdiM3M4eFQyZjA5DQozVldYbS83a3dQVWt1UDFDN2Z1WUlwanVYaVhzelIwMm82ajk1dnQzcjRhTG9CV0MyclJ6SXNzR3htQStxUzV1DQozZkFLemJpTERLbWJ5RStsMUZYTg0KLS0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQ0K | |
| expires: '2032-03-05T17:47:28.000Z' | |
| subject: | |
| commonName: tenant2-idp.eu.auth0.com | |
| thumbprints: | |
| - 96a724c016e2a07a2d619526798e781910ab63bb | |
| cert: "-----BEGIN CERTIFICATE-----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\r\n3fAKzbiLDKmbyE+l1FXN\r\n-----END CERTIFICATE-----\r\n" | |
| set_user_root_attributes: on_first_login | |
| strategy: samlp | |
| name: saml-con1 | |
| is_domain_connection: true | |
| enabled_clients: | |
| - jarvis (Test Application) | |
| - Default App | |
| - auth0-management-api-webhooks | |
| - options: | |
| client_id: ztMxy3Ih8uULN7P2ui6x3HLP5 | |
| client_secret: 3Wu639d3IzABzfnJxTl1UasnKubFpRLtY7Ohn7EJ36hoCpNr2L | |
| profile: true | |
| strategy: twitter | |
| name: twitter | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - My App | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - auth0-authz | |
| - Nest API (Test Application) | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - auth0-deploy-cli-extension | |
| - options: | |
| domain_aliases: | |
| - tanverhasannomanoutlook.onmicrosoft.com | |
| tenant_domain: tanverhasannomanoutlook.onmicrosoft.com | |
| use_wsfed: false | |
| useCommonEndpoint: false | |
| client_id: 47f1f231-53f6-44d3-acae-79479d42418d | |
| client_secret: tLfMBhj2u2e2DPOG/TBQyZIe9mAng+zemXY6Gg+hwTk= | |
| domain: tanverhasannomanoutlook.onmicrosoft.com | |
| waad_protocol: openid-connect | |
| app_id: '' | |
| api_enable_users: true | |
| waad_common_endpoint: false | |
| basic_profile: true | |
| ext_profile: false | |
| ext_groups: false | |
| ext_nested_groups: false | |
| app_domain: ##AUTH0_TENANT_NAME## | |
| thumbprints: | |
| - 89EFEA5825E15F1B75CC812CBB873B69C4151A7E | |
| - 68F72DC3FA1DBD13A810D8375683A5221DAD884B | |
| - 33AA57ED11E8ADA2ECA6B7C97910A34B1B944617 | |
| strategy: waad | |
| name: tanverhasannomanoutlook-waad | |
| is_domain_connection: false | |
| enabled_clients: | |
| - Salesforce | |
| - Timesheet (Test Application) | |
| - zendesk | |
| - testclick (Test Application) | |
| - auth0-bitbucket-deploy | |
| - jarvis (Test Application) | |
| - Default App | |
| - auth0-authz | |
| - auth0-logs-to-mixpanel | |
| - lock api (Test Application) | |
| - MFA API | |
| - auth0-visualstudio-deploy | |
| - Zendesk | |
| - Slack | |
| - Office 365 | |
| - auth0-management-api-webhooks | |
| - auth0-deploy-cli-extension | |
| rulesConfigs: | |
| - key: AUTHZ_EXT_API_KEY | |
| value: '*******' | |
| emailProvider: | |
| name: ses | |
| credentials: | |
| accessKeyId: ##accessKeyId## | |
| secretAccessKey: ##secretAccessKey## | |
| region: eu-west-1 | |
| enabled: true | |
| default_from_address: [email protected] | |
| emailTemplates: | |
| - template: reset_email | |
| from: [email protected] | |
| subject: Reset Passwordd | |
| resultUrl: >- | |
| {% if application.clientID == 'YOUR_CLIENT_ID' %} http://jwt.io {% else %} | |
| http://auth0.com {% endif %} | |
| syntax: liquid | |
| body: ./emailTemplates/reset_email.html | |
| urlLifetimeInSeconds: 432000 | |
| includeEmailInRedirect: false | |
| enabled: true | |
| - template: stolen_credentials | |
| from: [email protected] | |
| subject: 'Breached password ' | |
| syntax: liquid | |
| body: ./emailTemplates/stolen_credentials.html | |
| enabled: true | |
| - template: welcome_email | |
| from: '' | |
| subject: '{{ application.name }}' | |
| syntax: liquid | |
| body: ./emailTemplates/welcome_email.html | |
| enabled: false | |
| - template: verify_email | |
| from: '' | |
| subject: >- | |
| {% if user.user_metdata.lang == 'it' %} Ciao Cage Fighter {% else %} | |
| English {% endif %} | |
| resultUrl: 'http://localhost:4200' | |
| syntax: liquid | |
| body: ./emailTemplates/verify_email.html | |
| urlLifetimeInSeconds: 432000 | |
| enabled: true | |
| clientGrants: | |
| - client_id: API Explorer Application | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:client_grants' | |
| - 'create:client_grants' | |
| - 'delete:client_grants' | |
| - 'update:client_grants' | |
| - 'read:users' | |
| - 'update:users' | |
| - 'delete:users' | |
| - 'create:users' | |
| - 'read:users_app_metadata' | |
| - 'update:users_app_metadata' | |
| - 'delete:users_app_metadata' | |
| - 'create:users_app_metadata' | |
| - 'create:user_tickets' | |
| - 'read:clients' | |
| - 'update:clients' | |
| - 'delete:clients' | |
| - 'create:clients' | |
| - 'read:client_keys' | |
| - 'update:client_keys' | |
| - 'delete:client_keys' | |
| - 'create:client_keys' | |
| - 'read:connections' | |
| - 'update:connections' | |
| - 'delete:connections' | |
| - 'create:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'create:resource_servers' | |
| - 'read:device_credentials' | |
| - 'update:device_credentials' | |
| - 'delete:device_credentials' | |
| - 'create:device_credentials' | |
| - 'read:rules' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - 'create:rules' | |
| - 'read:rules_configs' | |
| - 'update:rules_configs' | |
| - 'delete:rules_configs' | |
| - 'read:email_provider' | |
| - 'update:email_provider' | |
| - 'delete:email_provider' | |
| - 'create:email_provider' | |
| - 'blacklist:tokens' | |
| - 'read:stats' | |
| - 'read:tenant_settings' | |
| - 'update:tenant_settings' | |
| - 'read:logs' | |
| - 'read:shields' | |
| - 'create:shields' | |
| - 'delete:shields' | |
| - 'read:anomaly_blocks' | |
| - 'delete:anomaly_blocks' | |
| - 'update:triggers' | |
| - 'read:triggers' | |
| - 'read:grants' | |
| - 'delete:grants' | |
| - 'read:guardian_factors' | |
| - 'update:guardian_factors' | |
| - 'read:guardian_enrollments' | |
| - 'delete:guardian_enrollments' | |
| - 'create:guardian_enrollment_tickets' | |
| - 'read:user_idp_tokens' | |
| - 'create:passwords_checking_job' | |
| - 'delete:passwords_checking_job' | |
| - 'read:custom_domains' | |
| - 'delete:custom_domains' | |
| - 'create:custom_domains' | |
| - 'read:email_templates' | |
| - 'create:email_templates' | |
| - 'update:email_templates' | |
| - 'read:mfa_policies' | |
| - 'update:mfa_policies' | |
| - 'read:roles' | |
| - 'create:roles' | |
| - 'delete:roles' | |
| - 'update:roles' | |
| - client_id: API (Test Application) | |
| audience: 'https://localhost:5001' | |
| scope: [] | |
| - client_id: jarvis (Test Application) | |
| audience: jarvis | |
| scope: [] | |
| - client_id: auth0-authz | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'read:clients' | |
| - 'delete:clients' | |
| - 'read:users' | |
| - 'read:rules' | |
| - 'create:rules' | |
| - 'update:rules_configs' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - client_id: Console | |
| audience: 'urn:auth0-authz-api' | |
| scope: | |
| - 'read:users' | |
| - 'read:applications' | |
| - 'read:connections' | |
| - 'read:configuration' | |
| - 'update:configuration' | |
| - 'read:groups' | |
| - 'create:groups' | |
| - 'update:groups' | |
| - 'delete:groups' | |
| - 'read:roles' | |
| - 'create:roles' | |
| - 'update:roles' | |
| - 'delete:roles' | |
| - 'read:permissions' | |
| - 'create:permissions' | |
| - 'update:permissions' | |
| - 'delete:permissions' | |
| - 'read:resource-server' | |
| - 'create:resource-server' | |
| - 'update:resource-server' | |
| - 'delete:resource-server' | |
| - client_id: MFA API | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:client_grants' | |
| - 'create:client_grants' | |
| - 'delete:client_grants' | |
| - 'update:client_grants' | |
| - 'read:users' | |
| - 'update:users' | |
| - 'delete:users' | |
| - 'create:users' | |
| - 'read:users_app_metadata' | |
| - 'update:users_app_metadata' | |
| - 'delete:users_app_metadata' | |
| - 'create:users_app_metadata' | |
| - 'create:user_tickets' | |
| - 'read:clients' | |
| - 'update:clients' | |
| - 'delete:clients' | |
| - 'create:clients' | |
| - 'read:client_keys' | |
| - 'update:client_keys' | |
| - 'delete:client_keys' | |
| - 'create:client_keys' | |
| - 'read:connections' | |
| - 'update:connections' | |
| - 'delete:connections' | |
| - 'create:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'create:resource_servers' | |
| - 'read:device_credentials' | |
| - 'update:device_credentials' | |
| - 'delete:device_credentials' | |
| - 'create:device_credentials' | |
| - 'read:rules' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - 'create:rules' | |
| - 'read:rules_configs' | |
| - 'update:rules_configs' | |
| - 'delete:rules_configs' | |
| - 'read:email_provider' | |
| - 'update:email_provider' | |
| - 'delete:email_provider' | |
| - 'create:email_provider' | |
| - 'blacklist:tokens' | |
| - 'read:stats' | |
| - 'read:tenant_settings' | |
| - 'update:tenant_settings' | |
| - 'read:logs' | |
| - 'read:shields' | |
| - 'create:shields' | |
| - 'delete:shields' | |
| - 'read:anomaly_blocks' | |
| - 'delete:anomaly_blocks' | |
| - 'update:triggers' | |
| - 'read:triggers' | |
| - 'read:grants' | |
| - 'delete:grants' | |
| - 'read:guardian_factors' | |
| - 'update:guardian_factors' | |
| - 'read:guardian_enrollments' | |
| - 'delete:guardian_enrollments' | |
| - 'create:guardian_enrollment_tickets' | |
| - 'read:user_idp_tokens' | |
| - 'create:passwords_checking_job' | |
| - 'delete:passwords_checking_job' | |
| - 'read:custom_domains' | |
| - 'delete:custom_domains' | |
| - 'create:custom_domains' | |
| - 'read:email_templates' | |
| - 'create:email_templates' | |
| - 'update:email_templates' | |
| - 'read:mfa_policies' | |
| - 'update:mfa_policies' | |
| - 'read:roles' | |
| - 'create:roles' | |
| - 'delete:roles' | |
| - 'update:roles' | |
| - client_id: testclick (Test Application) | |
| audience: 'https://api.com' | |
| scope: [] | |
| - client_id: Wordpress | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:client_grants' | |
| - 'create:client_grants' | |
| - 'delete:client_grants' | |
| - 'update:client_grants' | |
| - 'read:users' | |
| - 'update:users' | |
| - 'delete:users' | |
| - 'create:users' | |
| - 'read:users_app_metadata' | |
| - 'update:users_app_metadata' | |
| - 'delete:users_app_metadata' | |
| - 'create:users_app_metadata' | |
| - 'create:user_tickets' | |
| - 'read:clients' | |
| - 'update:clients' | |
| - 'delete:clients' | |
| - 'create:clients' | |
| - 'read:client_keys' | |
| - 'update:client_keys' | |
| - 'delete:client_keys' | |
| - 'create:client_keys' | |
| - 'read:connections' | |
| - 'update:connections' | |
| - 'delete:connections' | |
| - 'create:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'create:resource_servers' | |
| - 'read:device_credentials' | |
| - 'update:device_credentials' | |
| - 'delete:device_credentials' | |
| - 'create:device_credentials' | |
| - 'read:rules' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - 'create:rules' | |
| - 'read:rules_configs' | |
| - 'update:rules_configs' | |
| - 'delete:rules_configs' | |
| - 'read:email_provider' | |
| - 'update:email_provider' | |
| - 'delete:email_provider' | |
| - 'create:email_provider' | |
| - 'blacklist:tokens' | |
| - 'read:stats' | |
| - 'read:tenant_settings' | |
| - 'update:tenant_settings' | |
| - 'read:logs' | |
| - 'read:shields' | |
| - 'create:shields' | |
| - 'delete:shields' | |
| - 'read:anomaly_blocks' | |
| - 'delete:anomaly_blocks' | |
| - 'update:triggers' | |
| - 'read:triggers' | |
| - 'read:grants' | |
| - 'delete:grants' | |
| - 'read:guardian_factors' | |
| - 'update:guardian_factors' | |
| - 'read:guardian_enrollments' | |
| - 'delete:guardian_enrollments' | |
| - 'create:guardian_enrollment_tickets' | |
| - 'read:user_idp_tokens' | |
| - 'create:passwords_checking_job' | |
| - 'delete:passwords_checking_job' | |
| - 'read:custom_domains' | |
| - 'delete:custom_domains' | |
| - 'create:custom_domains' | |
| - 'read:email_templates' | |
| - 'create:email_templates' | |
| - 'update:email_templates' | |
| - 'read:mfa_policies' | |
| - 'update:mfa_policies' | |
| - 'read:roles' | |
| - 'create:roles' | |
| - 'delete:roles' | |
| - 'update:roles' | |
| - client_id: Nest API (Test Application) | |
| audience: 'http://localhost:3000' | |
| scope: [] | |
| - client_id: Console | |
| audience: 'https://localhost:5001' | |
| scope: | |
| - 'read:messages' | |
| - client_id: auth0-logs-to-mixpanel | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:logs' | |
| - 'delete:clients' | |
| - client_id: MFA API | |
| audience: 'https://api.timesheet.com/' | |
| scope: | |
| - 'read:timesheets' | |
| - 'create:timesheets' | |
| - 'approve:timesheets' | |
| - 'batch:upload' | |
| - client_id: auth0-management-api-webhooks | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:logs' | |
| - 'delete:clients' | |
| - client_id: auth0-visualstudio-deploy | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:client_grants' | |
| - 'create:client_grants' | |
| - 'delete:client_grants' | |
| - 'update:client_grants' | |
| - 'read:clients' | |
| - 'update:clients' | |
| - 'delete:clients' | |
| - 'create:clients' | |
| - 'read:client_keys' | |
| - 'update:client_keys' | |
| - 'delete:client_keys' | |
| - 'create:client_keys' | |
| - 'read:connections' | |
| - 'update:connections' | |
| - 'delete:connections' | |
| - 'create:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'create:resource_servers' | |
| - 'read:rules' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - 'create:rules' | |
| - 'read:rules_configs' | |
| - 'update:rules_configs' | |
| - 'delete:rules_configs' | |
| - 'read:email_provider' | |
| - 'update:email_provider' | |
| - 'delete:email_provider' | |
| - 'create:email_provider' | |
| - 'read:tenant_settings' | |
| - 'update:tenant_settings' | |
| - 'read:grants' | |
| - 'delete:grants' | |
| - 'read:guardian_factors' | |
| - 'update:guardian_factors' | |
| - 'read:email_templates' | |
| - 'create:email_templates' | |
| - 'update:email_templates' | |
| - client_id: lock api (Test Application) | |
| audience: 'http://localhost:5000' | |
| scope: [] | |
| - client_id: My App | |
| audience: 'https://api.timesheet.com/' | |
| scope: | |
| - 'read:timesheets' | |
| - 'create:timesheets' | |
| - 'approve:timesheets' | |
| - 'batch:upload' | |
| - client_id: auth0-bitbucket-deploy | |
| audience: 'https://##AUTH0_TENANT_NAME##/api/v2/' | |
| scope: | |
| - 'read:client_grants' | |
| - 'create:client_grants' | |
| - 'delete:client_grants' | |
| - 'update:client_grants' | |
| - 'read:clients' | |
| - 'update:clients' | |
| - 'delete:clients' | |
| - 'create:clients' | |
| - 'read:client_keys' | |
| - 'update:client_keys' | |
| - 'delete:client_keys' | |
| - 'create:client_keys' | |
| - 'read:connections' | |
| - 'update:connections' | |
| - 'delete:connections' | |
| - 'create:connections' | |
| - 'read:resource_servers' | |
| - 'update:resource_servers' | |
| - 'delete:resource_servers' | |
| - 'create:resource_servers' | |
| - 'read:rules' | |
| - 'update:rules' | |
| - 'delete:rules' | |
| - 'create:rules' | |
| - 'read:rules_configs' | |
| - 'update:rules_configs' | |
| - 'delete:rules_configs' | |
| - 'read:email_provider' | |
| - 'update:email_provider' | |
| - 'delete:email_provider' | |
| - 'create:email_provider' | |
| - 'read:tenant_settings' | |
| - 'update:tenant_settings' | |
| - 'read:grants' | |
| - 'delete:grants' | |
| - 'read:guardian_factors' | |
| - 'update:guardian_factors' | |
| - 'read:email_templates' | |
| - 'create:email_templates' | |
| - 'update:email_templates' | |
| guardianFactors: | |
| - name: sms | |
| enabled: false | |
| - name: push-notification | |
| enabled: false | |
| - name: otp | |
| enabled: false | |
| - name: email | |
| enabled: false | |
| - name: duo | |
| enabled: false | |
| guardianFactorProviders: | |
| - name: push-notification | |
| provider: sns | |
| aws_access_key_id: null | |
| aws_region: null | |
| sns_apns_platform_application_arn: null | |
| sns_gcm_platform_application_arn: null | |
| guardianFactorTemplates: [] |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment