verify_token_authorization
- Property Manager name: Auth Token 2.0 Verification
- Behavior version: The
v2025-01-13rule format supports theverify_token_authorizationbehavior v1.4. - Rule format status: GA, stable
- Access: Read/Write
- Allowed in includes: Yes
Verifies Auth 2.0 tokens.
| Option | Type | Description | Requires | |
|---|---|---|---|---|
use_advanced | boolean | If enabled, allows you to specify advanced options such as | {"displayType":"boolean","tag":"input","type":"checkbox"} | |
location | enum | Specifies where to find the token in the incoming request. | {"displayType":"enum","options":["COOKIE","QUERY_STRING","CLIENT_REQUEST_HEADER"],"tag":"select"} | |
Supported values: CLIENT_REQUEST_HEADER COOKIE QUERY_STRING | ||||
location_id | string | When | {"displayType":"string","tag":"input","type":"text"} | |
algorithm | enum | Specifies the algorithm that generates the token. It needs to match the method chosen in the token generation code. | use_advanced is true | {"displayType":"enum","options":["SHA256","SHA1","MD5"],"tag":"select"}{"if":{"attribute":"useAdvanced","op":"eq","value":true}} |
Supported values: MD5 SHA1 SHA256 | ||||
escape_hmac_inputs | boolean | URL-escapes HMAC inputs passed in as query parameters. | use_advanced is true | {"displayType":"boolean","tag":"input","type":"checkbox"}{"if":{"attribute":"useAdvanced","op":"eq","value":true}} |
ignore_query_string | boolean | Enabling this removes the query string from the URL used to form an encryption key. | use_advanced is true | {"displayType":"boolean","tag":"input","type":"checkbox"}{"if":{"attribute":"useAdvanced","op":"eq","value":true}} |
key | object array | The shared secret used to validate tokens, which needs to match the key used in the token generation code. | {"displayType":"object array","tag":"input","todo":true} | |
transition_key | object array | Specifies a transition key as a hex value. | use_advanced is true | {"displayType":"object array","tag":"input","todo":true}{"if":{"attribute":"useAdvanced","op":"eq","value":true}} |
salt | object array | Specifies a salt string for input when generating the token, which needs to match the salt value used in the token generation code. | use_advanced is true | {"displayType":"object array","tag":"input","todo":true}{"if":{"attribute":"useAdvanced","op":"eq","value":true}} |
failure_response | boolean | When enabled, sends an HTTP error when an authentication test fails. | {"displayType":"boolean","tag":"input","type":"checkbox"} |
Updated about 1 month ago