remember-session-attribute-rule

Edit online

The remember-session-attribute-rule configuration entry specifies the rules which are used to determine which credential attributes should be stored in the session token.

Syntax

remember-session-attribute-rule =[+|-]<attribute_pattern>

Description

The rules which define the credential attributes which will be stored in the remember-session token. This entry may be repeated multiple times, once for each rule which is to be defined.

Each attribute in the credential will be matched against each rule in order until a match is found. The corresponding prefix (+|-) will then be used to control whether the attribute is included or excluded from the remember-session token. If no matching rule is found the attribute will be excluded from the token.

Options

+: Indicates that the attribute should be included.
-: Indicates that the attribute should be excluded.
<attribute_pattern>: The name of the attribute to which this rule applies. The attribute pattern can contain the ‘*?’ pattern matching characters.

Usage

This stanza entry is optional.

Default Value

None

Example

remember-session-attribute-rule = +AUTHENTICATION_LEVEL
remember-session-attribute-rule = +AZN_CRED_NETWORK_ADDRESS_STR