OAuth2 advanced options

OAuth2 security subnodes in xDI Designer have extra options that are not exposed by the configuration wizard.

Token generation tab

Option Default Description

Enable Hostname Verification

Yes

Chooses whether the runtime will verify that the server certificate matches the hostname.

Enable Certificate Verification

Yes

Chooses whether the runtime will verify that the server certificate matches the hostname.

These options should be used with caution, as they impact process security.

Advanced tab

Option Default Description

Use Json Properties

No

Chooses whether OAuth2 parameters should be passed as a JSON structure or not.

Designer templates normally pass OAuth2 subnode parameters individually, and you have to explicitly mark all parameters you want to externalize. This option makes templates pass your OAuth2 parameters as a single JSON structure instead, which allows all parameters to be defined and externalized in one attribute.

Json Properties

Inherited

Represents the whole OAuth2 configuration as a JSON structure, used together with the Use Json Properties option.

  • When this option is inactive, the JSON structure inherits all parameters you set in the other tabs.

  • When this option is active, the JSON structure is whatever the field contains. Activating the option fills the field with the inherited structure, which can then be edited as needed.