- Overview
- Amster Entity Reference
- AcceptTermsAndConditions
- AccountActiveCheck
- AccountActiveDecision
- AccountLockout
- ActiveDirectory
- ActiveDirectoryApplicationModeADAM
- ActiveDirectoryModule
- AdaptiveRiskModule
- AdvancedProperties
- AgentDataStoreDecision
- AgentGroups
- AgentService
- Agents
- AmsterModule
- AnonymousModule
- AnonymousSessionUpgrade
- AnonymousUserMapping
- ApplicationTypes
- Applications
- AttributeCollector
- AttributePresentDecision
- AttributeValueDecision
- AuditEvent
- AuditLogging
- AuthLevelDecision
- AuthTree
- AuthenticateThing
- Authentication
- AuthenticationChains
- AuthenticationModules
- AuthenticationNodes
- AuthenticationTreesConfiguration
- AuthenticatorOath
- AuthenticatorOathModule
- AuthenticatorPush
- AuthenticatorPushModule
- AuthenticatorPushRegistrationModule
- AuthenticatorWebAuthn
- BaseUrlSource
- CORSService
- CRESTReporter
- Captcha
- CertificateCollectorNode
- CertificateModule
- CertificateUserExtractorNode
- CertificateValidationNode
- ChoiceCollector
- CircleOfTrust
- CommonFederationConfiguration
- ConditionTypes
- ConfigurationVersionService
- ConsentCollector
- CookiePresenceDecisionNode
- CorsConfiguration
- CreateObject
- CreatePassword
- Csv
- CtsDataStoreProperties
- Dashboard
- DashboardInstance
- DashboardUserService
- Dashboards
- DataStoreDecision
- DataStoreInstance
- DataStoreModule
- DataStoreService
- DecisionCombiners
- DefaultAdvancedProperties
- DefaultCtsDataStoreProperties
- DefaultDirectoryConfiguration
- DefaultGeneralProperties
- DefaultSdkProperties
- DefaultSecurityProperties
- DefaultSessionProperties
- DefaultUmaDataStoreProperties
- DeviceGeofencing
- DeviceIDService
- DeviceIdMatchModule
- DeviceIdSaveModule
- DeviceLocationMatch
- DeviceMatch
- DeviceProfile
- DeviceProfileCollector
- DeviceProfileSave
- DeviceProfilesService
- DeviceTamperingVerification
- DirectoryConfiguration
- DisplayUsername
- ElasticSearch
- EmailService
- EmailSuspendNode
- EmailTemplateNode
- EnvironmentAndSystemPropertySecretsStore
- FailureURL
- FederationModule
- FileSystemSecretStore
- ForgeRockIAMDirectoryServer
- ForgottenPassword
- ForgottenUsername
- GeneralProperties
- GenericLDAPv3
- GetSessionData
- GlobalScripts
- GlobalSecretsSettings
- Globalization
- GoogleKeyManagementServiceSecretStore
- GoogleKmsMappings
- GraphiteReporter
- HOTPGenerator
- HostedSaml2EntityProvider
- HotpModule
- HsmMappings
- HsmSecretStore
- HttpBasicModule
- IDMProvisioning
- IdRepository
- IdRepositoryUser
- IdentifyExistingUser
- IdentityGatewayAgentGroups
- IdentityGatewayAgents
- IncrementLoginCount
- InnerTreeEvaluator
- IoTService
- J2EEAgentGroups
- J2eeAgents
- JSONStdout
- Jdbc
- JdbcModule
- Jms
- Json
- JwtProofOfPossessionModule
- KBADecision
- KBADefinition
- KBAVerification
- KbaQuestions
- KerberosNode
- KeyStoreMappings
- KeyStoreSecretStore
- LDAPDecision
- LdapModule
- LegacyUserSelfService
- LinkedInClient
- Logging
- LoginCountDecision
- MembershipModule
- MessageNode
- Meter
- ModifyAuthLevel
- Monitoring
- MsisdnModule
- MultiFederationProtocol
- Naming
- OAuth20
- OAuth2Client
- OAuth2ClientAgentGroups
- OAuth2Clients
- OAuth2Module
- OAuth2Provider
- OAuth2RemoteConsentAgentGroups
- OAuth2SoftwarePublisherAgentGroups
- OAuth2TrustedJWTIssuerAgentGroups
- OAuth2UserApplications
- OIDCClient
- OTPCollectorDecision
- OTPEmailSender
- OTPSMSSender
- OathModule
- OathUserDevices
- OpenDJ
- OpenIDConnect
- OpenIdConnectModule
- PageNode
- PasswordCollector
- PatchObject
- PendingUmaRequests
- PersistentCookieDecision
- PersistentCookieModule
- Platform
- PlatformPassword
- PlatformUsername
- Policies
- PolicyAgents
- PolicyConfiguration
- PollingWaitNode
- ProfileCompletenessDecision
- PrometheusReporter
- ProvisionDynamicAccount
- ProvisionIDMAccount
- PushNotification
- PushNotificationResponse
- PushResultVerifierNode
- PushSender
- PushUserDevices
- QueryFilterDecision
- RESTSecurityTokenServices
- RadiusClient
- RadiusModule
- RadiusServer
- Realms
- Records
- RecoveryCodeCollectorDecision
- RecoveryCodeDisplayNode
- RegisterLogoutWebhook
- RegisterThing
- RemoteConsentAgent
- RemoteConsentService
- RemoteSaml2EntityProvider
- RemoveSessionProperties
- RequiredAttributesPresent
- ResourceSets
- ResourceTypes
- RestApis
- RetryLimitDecision
- SAML2Authentication
- SOAPSecurityTokenServices
- SaeModule
- Saml2Entities
- Saml2Entity
- Saml2Module
- SamlV2ServiceConfiguration
- SamlV2SoapBinding
- ScriptStore
- ScriptTypes
- ScriptedDecision
- ScriptedModule
- Scripting
- ScriptingEngineConfiguration
- Scripts
- SdkProperties
- SecretStores
- Secrets
- SecurID
- SecurityProperties
- SecurityTokenServices
- SelectIdentityProvider
- SelfServiceTreeConfig
- SelfServiceTrees
- ServerInformation
- ServerVersion
- Servers
- Services
- Session
- SessionProperties
- SessionPropertyWhiteList
- SessionUserService
- Sessions
- SetPersistentCookie
- SetSessionProperties
- SharedAgents
- Sites
- SoapSTSAgentGroups
- SoapStsAgents
- SocialAuthInstagramModule
- SocialAuthOAuth2Module
- SocialAuthOpenIDModule
- SocialAuthTwitterModule
- SocialAuthVKontakteModule
- SocialAuthWeChatMobileModule
- SocialAuthWeChatModule
- SocialAuthentication
- SocialFacebook
- SocialGoogle
- SocialIdentityProviders
- SocialIdentityProvidersConfig
- SocialIgnoreProfile
- SocialProviderHandlerNode
- SoftwarePublisher
- Splunk
- StateMetadata
- SubjectAttributes
- SubjectTypes
- SuccessURL
- SunDSWithOpenAMSchema
- SupportedIds
- Syslog
- TermsAndConditionsDecision
- TimeSinceDecision
- TimerStart
- TimerStop
- TivoliDirectoryServer
- TransactionAuthentication
- TrustedJwtIssuer
- TrustedUserDevices
- TwitterClient
- UmaDataStoreProperties
- UmaPolicies
- UmaProvider
- UmaResourceSetLabels
- UmaUserAuditHistory
- User
- UserGroups
- UserPolicies
- UserRegistration
- UserSelfService
- UserServices
- UsernameCollector
- VKClient
- ValidationService
- WeChatClient
- WebAgentGroups
- WebAgents
- WebAuthnAuthenticationNode
- WebAuthnDeviceStorageNode
- WebAuthnRegistrationNode
- WebAuthnUserDevices
- WebhookService
- WindowsDesktopSsoModule
- WindowsNtModule
- WriteFederationInformation
- WsEntity
- ZeroPageLoginCollector
PersistentCookieDecision
Realm Operations
Resource path: /realm-config/authentication/authenticationtrees/nodes/PersistentCookieDecisionNode
Resource version: 1.0
create
Usage:
am> create PersistentCookieDecision --realm Realm --id id --body body
Parameters:
--id
The unique identifier for the resource.
--body
The resource in JSON format, described by the following JSON schema:
{ "type" : "object", "properties" : { "useSecureCookie" : { "title" : "Use Secure Cookie", "description" : "Sets the persistent cookie as \"Secure\".", "propertyOrder" : 300, "type" : "boolean", "exampleValue" : "" }, "useHttpOnlyCookie" : { "title" : "Use HTTP Only Cookie", "description" : "Sets the persistent cookie as \"HttpOnly\".", "propertyOrder" : 400, "type" : "boolean", "exampleValue" : "" }, "enforceClientIp" : { "title" : "Enforce Client IP", "description" : "Enforces that the persistent cookie can only be used from the same client IP to which the cookie was issued.", "propertyOrder" : 200, "type" : "boolean", "exampleValue" : "" }, "persistentCookieName" : { "title" : "Persistent Cookie Name", "description" : "The name of the persistent cookie.", "propertyOrder" : 600, "type" : "string", "exampleValue" : "" }, "hmacSigningKey" : { "title" : "HMAC Signing Key", "description" : "Base64-encoded 256-bit key to use for HMAC signing of the cookie.", "propertyOrder" : 500, "type" : "string", "format" : "password", "exampleValue" : "" }, "idleTimeout" : { "title" : "Idle Timeout", "description" : "The maximum idle time between requests before the cookie is invalidated, in hours.", "propertyOrder" : 100, "type" : "integer", "exampleValue" : "" } }, "required" : [ "hmacSigningKey", "useHttpOnlyCookie", "idleTimeout", "persistentCookieName", "enforceClientIp", "useSecureCookie" ] }
delete
Usage:
am> delete PersistentCookieDecision --realm Realm --id id
Parameters:
--id
The unique identifier for the resource.
getAllTypes
Obtain the collection of all secondary configuration types related to the resource.
Usage:
am> action PersistentCookieDecision --realm Realm --actionName getAllTypes
getCreatableTypes
Obtain the collection of secondary configuration types that have yet to be added to the resource.
Usage:
am> action PersistentCookieDecision --realm Realm --actionName getCreatableTypes
listOutcomes
List the available outcomes for the node type.
Usage:
am> action PersistentCookieDecision --realm Realm --body body --actionName listOutcomes
Parameters:
--body
The resource in JSON format, described by the following JSON schema:
{ "type" : "object", "title" : "Some configuration of the node. This does not need to be complete against the configuration schema." }
nextdescendents
Obtain the collection of secondary configuration instances that have been added to the resource.
Usage:
am> action PersistentCookieDecision --realm Realm --actionName nextdescendents
query
Get the full list of instances of this collection. This query only supports `_queryFilter=true` filter.
Usage:
am> query PersistentCookieDecision --realm Realm --filter filter
Parameters:
--filter
A CREST formatted query filter, where "true" will query all.
read
Usage:
am> read PersistentCookieDecision --realm Realm --id id
Parameters:
--id
The unique identifier for the resource.
update
Usage:
am> update PersistentCookieDecision --realm Realm --id id --body body
Parameters:
--id
The unique identifier for the resource.
--body
The resource in JSON format, described by the following JSON schema:
{ "type" : "object", "properties" : { "useSecureCookie" : { "title" : "Use Secure Cookie", "description" : "Sets the persistent cookie as \"Secure\".", "propertyOrder" : 300, "type" : "boolean", "exampleValue" : "" }, "useHttpOnlyCookie" : { "title" : "Use HTTP Only Cookie", "description" : "Sets the persistent cookie as \"HttpOnly\".", "propertyOrder" : 400, "type" : "boolean", "exampleValue" : "" }, "enforceClientIp" : { "title" : "Enforce Client IP", "description" : "Enforces that the persistent cookie can only be used from the same client IP to which the cookie was issued.", "propertyOrder" : 200, "type" : "boolean", "exampleValue" : "" }, "persistentCookieName" : { "title" : "Persistent Cookie Name", "description" : "The name of the persistent cookie.", "propertyOrder" : 600, "type" : "string", "exampleValue" : "" }, "hmacSigningKey" : { "title" : "HMAC Signing Key", "description" : "Base64-encoded 256-bit key to use for HMAC signing of the cookie.", "propertyOrder" : 500, "type" : "string", "format" : "password", "exampleValue" : "" }, "idleTimeout" : { "title" : "Idle Timeout", "description" : "The maximum idle time between requests before the cookie is invalidated, in hours.", "propertyOrder" : 100, "type" : "integer", "exampleValue" : "" } }, "required" : [ "hmacSigningKey", "useHttpOnlyCookie", "idleTimeout", "persistentCookieName", "enforceClientIp", "useSecureCookie" ] }