Retrieve User Identity Block

This block provides the ability to retrieve user identity from request context. This block can be used to check if the authenticated user/subject's identity is present and save this identity in another variable as well.


Name

Specify the name for the block.


Description

Provide a description for this block.


Where is the user's identity attribute located? *

Select the user identity's location from one of the following options:

  • Headers - System will look for the user identity in headers that are passed from resource server. The variable name that will be searched in headers for the value extraction is specified in field below.
  • Query Parameters - System will look for the user identity in Query Parameters that are passed from resource server. The variable name that will be searched in query parameters for the value extraction is specified in field below.
  • Authorization Context - System will look for the user identity in the authorization Context that is passed from resource server. The variable name that will be searched in authorization context for the value extraction is specified in field below.
  • Message Context - System will look for the user identity in the current message context. The variable name that will be searched in message context for the value extraction is specified in field below.
  • AuthScope Data Services - System will look for the user identity in AuthScope Data Store. The variable name that will be searched in AuthScope Data Store for the value extraction is specified in field below.
  • Others - This option can be used to specify the attribute location in the format specified in next field.
  • Value - Use this option if you would like to specify a hard coded value for user identity. The following field can be used to specify the value.

What is the user's Identity Attribute Name? *

Specify the attribute name that should be selected from the location above if you selected one of the following options:

  • Headers
  • Query Parameters
  • Authorization Context
  • Message Context

If you selected the "Other" option in above field then enter the attribute value as follows:

Example Inputs Value selected
messageContext.allowedGroups.name {"messageContext": {"allowedGroups": {"name" : "teller"}}} teller
authzContext.amount {"authzContext": {"amount": 10000}} 10000

if you selected the "Value" option above then specify the hard coded attribute value here. Example tony.stark,john.doe etc.


Copy UserID to another variable *

Specify an attribute name which will be used to store the retrieved user's identity. This variable will be set in message context.


results matching ""

    No results matching ""