Authorize access for an authenticated request
Table 1. Supported parameters
| Parameter |
Required |
Data type |
Details |
| namespace |
No |
string |
Context namespace to exchange data with other security actions. Default value is
"user". |
| operation |
Yes |
object |
Specifies the authorization logic for the current request. |
Table 2. Options for operation
| Option |
Required |
Data type |
Details |
| subscription |
No |
object |
Used for subscription-based authorization. |
| jwt |
No |
object |
Authorizes using JWT token validation. |
| oauth2 |
No |
object |
Authorizes using OAuth2 token validation. |
Table 3. Nested properties inside
jwt
| Property |
Required |
Data type |
Details |
| issClaim |
No |
string or null |
Expected issuer claim for token validation. If not configured, no extra validation on iss
claim. |
Table 4. Nested properties inside
oauth2
| Property |
Required |
Data type |
Details |
| issClaim |
No |
string or null |
Expected issuer claim for token validation. If not configured, no extra validation on iss
claim. |
| requiredScopes |
No |
array of OAuthScopeSet |
Validates token scope claim. Each OAuthScopeSet includes provider (string) and scopes (array
of string). |