Class AuthenticationAttributeMultifactorAuthenticationProperties
java.lang.Object
org.apereo.cas.configuration.model.support.mfa.AuthenticationAttributeMultifactorAuthenticationProperties
- All Implemented Interfaces:
Serializable
@RequiresModule(name="cas-server-core-authentication",
automated=true)
public class AuthenticationAttributeMultifactorAuthenticationProperties
extends Object
implements Serializable
- Since:
- 6.4.0
- See Also:
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionMFA can be triggered for all users/subjects whose authentication event/metadata has resolved a specific attribute that matches one of the below conditions: Trigger MFA based on a authentication attribute(s) whose value(s) matches a regex pattern.The regular expression that is cross matches against the authentication attribute to determine if the account is qualified for multifactor authentication.setGlobalAuthenticationAttributeNameTriggers
(String globalAuthenticationAttributeNameTriggers) MFA can be triggered for all users/subjects whose authentication event/metadata has resolved a specific attribute that matches one of the below conditions: Trigger MFA based on a authentication attribute(s) whose value(s) matches a regex pattern.setGlobalAuthenticationAttributeValueRegex
(String globalAuthenticationAttributeValueRegex) The regular expression that is cross matches against the authentication attribute to determine if the account is qualified for multifactor authentication.
-
Constructor Details
-
AuthenticationAttributeMultifactorAuthenticationProperties
public AuthenticationAttributeMultifactorAuthenticationProperties()
-
-
Method Details
-
getGlobalAuthenticationAttributeNameTriggers
MFA can be triggered for all users/subjects whose authentication event/metadata has resolved a specific attribute that matches one of the below conditions:- Trigger MFA based on a authentication attribute(s) whose value(s) matches a regex pattern. Note that this behavior is only applicable if there is only a single MFA provider configured, since that would allow CAS to know what provider to next activate.
- Trigger MFA based on a authentication attribute(s) whose value(s) EXACTLY matches an MFA provider. This option is more relevant if you have more than one provider configured or if you have the flexibility of assigning provider ids to attributes as values.
-
getGlobalAuthenticationAttributeValueRegex
The regular expression that is cross matches against the authentication attribute to determine if the account is qualified for multifactor authentication. -
setGlobalAuthenticationAttributeNameTriggers
public AuthenticationAttributeMultifactorAuthenticationProperties setGlobalAuthenticationAttributeNameTriggers(String globalAuthenticationAttributeNameTriggers) MFA can be triggered for all users/subjects whose authentication event/metadata has resolved a specific attribute that matches one of the below conditions:- Trigger MFA based on a authentication attribute(s) whose value(s) matches a regex pattern. Note that this behavior is only applicable if there is only a single MFA provider configured, since that would allow CAS to know what provider to next activate.
- Trigger MFA based on a authentication attribute(s) whose value(s) EXACTLY matches an MFA provider. This option is more relevant if you have more than one provider configured or if you have the flexibility of assigning provider ids to attributes as values.
- Returns:
this
.
-
setGlobalAuthenticationAttributeValueRegex
public AuthenticationAttributeMultifactorAuthenticationProperties setGlobalAuthenticationAttributeValueRegex(String globalAuthenticationAttributeValueRegex) The regular expression that is cross matches against the authentication attribute to determine if the account is qualified for multifactor authentication.- Returns:
this
.
-