Interface ClientSessionTransfer

Native to Web SSO Configuration

Hierarchy

  • ClientSessionTransfer

Properties

allow_refresh_token?: boolean

Indicates whether Refresh Tokens are allowed to be issued when authenticating with a session_transfer_token.

Indicates whether an app can create a session from a session_token received via indicated methods.

can_create_session_transfer_token?: boolean

Indicates whether an app can issue a session_token through Token Exchange. If set to 'false', the app will not be able to issue a session_token.

enforce_cascade_revocation?: boolean

Indicates whether revoking the parent Refresh Token that initiated a Native to Web flow and was used to issue a Session Transfer Token should trigger a cascade revocation affecting its dependent child entities.

Indicates whether device binding security should be enforced for the app. If set to 'ip', the app will enforce device binding by IP, meaning that consumption of session_token must be done from the same IP of the issuer. Likewise, if set to 'asn', device binding is enforced by ASN, meaning consumption of session_token must be done from the same ASN as the issuer. If set to 'null', device binding is not enforced.

enforce_online_refresh_tokens?: boolean

Indicates whether Refresh Tokens created during a native-to-web session are tied to that session's lifetime. This determines if such refresh tokens should be automatically revoked when their corresponding sessions are.