KOBIL Verify User Identity
KOBIL Verify User Identity
This execution has the following main tasks to verify user identity on IDP Provider.
Type
| Protocol | OpenID Connect 1.0 |
|---|---|
| HTTP method | GET |
| Type | Browser Flow |
| Endpoint | Authorization Endpoint |
| Flow Supported | Authorization code flow Implicit flow Hybrid flow |
| Response | ID Token, Access Token, Refresh Token |
| Response Mode | query, form_post, fragment |
How to configure
To access the config of the execution press the Settings button and select Config. The authenticator configuration screen will appear. Then enter your config data.
Configuration
Parameters involved in KOBIL Verify User Identity execution
| Parameter | Description |
|---|---|
| ID | Unique system UUID, which will be assigned automatically to record in a database. |
| Alias | Name for the overall configured configurations which occurs in particular authenticator. (Example: KOBIL Verify User Identity execution ). |
| Authentication Flow Type | Type of flow for which this authenticator is going to be used. (Example: Login) |
| User Identity attribute | Select the user identity attribute through which login validation should happens. Default : Email. |
| Display User Identity attribute | Select the user property which to be displayed during login validation. |
| User Attribute | Configure the user attribute through which login validation should happen. This should be set only if the User Identity Attribute value is "user attribute". |
| Enable Password Check | Password verification will be execute when Enable Password Check is enabled. |
| Disable the check for registration status | If enabled, it won't check the user registration status. |
| Disable show previous input | If enabled, it will erase the previously entered inputs. |
| Invalid credentials message | Message to be displayed when the user credentials are invalid. For default : incorrect password. |
| OTP temporarily locked message | Configure the message to be displayed when the Resend option is temporarily locked. |
| ACR value | Configured ACR value which will be set in the token if verification succeeds. |
| AMR value | Configured AMR value which will be set in the token, if verification succeeds. |
| Show Success Popup screen | Enable to show success popup in the flow. |
| Success Popup Title | Configure the text, which will be displayed in the success popup title. |
| Success Popup Description | Configure the text, which will be displayed in the success popup body. |
| Is Captcha Required | Enable to add Captcha verification in the flow. |
Parameter specific to Bruteforce feature
| Parameter | Description |
|---|---|
| User disabled message | Message to be displayed when the user is disabled. Default Message: User is currently disabled, please contact admin. |
| User temporarily locked message | Message to be displayed when the user is temporarily locked. Example: User is temporarily locked for %time% minutes. |
| Reset Bruteforce failure count | Reset Bruteforce failure count is enabled bruteforce count will be reset to 0 when user is successfully login. |
User Flow
Execution Flow
This execution contains the following main steps:
- KOBIL Verify User Identity can be used as a standalone execution, since it is used to configure a user. This execution will be used in the login flow.