external-user

Syntax

external-user = {true | false}

Description

This boolean is used to indicate whether the mapped identity should correspond to a known Verify Identity Access identity. When you are creating a session with an external user, the credential does not contain any group membership. The scopes contained in the credential should instead be used for authorization policy. This configuration item may be customized for a particular junction by adding the adjusted configuration item to a [oauth-introspection:{jct_id}] stanza, where '{jct-id}' refers to the junction point for a standard junction (include the leading '/'), or the virtual host label for a virtual host junction.

Options

true

The mapped identity should correspond to a known Verify Identity Access identity.

false

The mapped identity does not need to correspond to a known Verify Identity Access identity.

Usage

This stanza entry is required.