Optionalcan_Indicates whether an app can issue a session_token through Token Exchange. If set to 'false', the app will not be able to issue a session_token.
Optionalallowed_Indicates whether an app can create a session from a session_token received via indicated methods.
Optionalenforce_Optionalallow_Indicates whether Refresh Tokens are allowed to be issued when authenticating with a session_transfer_token.
Optionalenforce_Indicates whether Refresh Tokens created during a native-to-web session are tied to that session's lifetime. This determines if such refresh tokens should be automatically revoked when their corresponding sessions are.
Optionalenforce_Indicates whether revoking the parent Refresh Token that initiated a Native to Web flow and was used to issue a Session Transfer Token should trigger a cascade revocation affecting its dependent child entities.
Native to Web SSO Configuration