Skip to main content

KOBIL Configure ACR

KOBIL Configure ACR

This execution contains the following main steps:

  1. To verify and validate the token and set user in context.
  2. To extract the expected step-up ACR value from the scope and current ACR value of the user from token and setting both of them in session.
  3. It will get succeeded only the expected step-up ACR value is greater than the current ACR value.

Type

ProtocolOpenID Connect 1.0
HTTP methodGET
TypeBrowser Flow
EndpointAuthorization Endpoint
Flow SupportedAuthorization code flow
Implicit flow
Hybrid flow
ResponseID Token, Access Token, Refresh Token
Response Modequery, form_post, fragment

How to configure

To access the config of the execution press the Settings button and select Config. The authenticator configuration screen will appear. Then enter your config data.

KOBIL Configure ACR

Configuration

Parameters involved in KOBIL Verify Password execution
ParameterDescription
IDUnique system UUID, which will be assigned automatically to record in a database.
AliasName for the overall configured configurations which occurs in particular authenticator. (Example: ACR 1)
Authentication Flow TypeType of flow for which the authenticator is used. (Example: Step-Up)

KOBIL Configure ACR

User Flow

Execution Flow

This execution contains the following main steps:

  1. The execution is basically a conditional execution, which needs scope and token, astClientId as input from the header, in which the token should contain ACR and AMR values

  2. If the expected step-up ACR value is greater than the current ACR value of the user, then the flow will move to the next execution otherwise, the flow gets succeeded.

  3. This execution will be used only for Step-Up flow.

KOBIL Configure ACR flow