This topic applies to WebSphere Application Server Liberty V8.5.5.9 and earlier. For the latest Liberty topics, see the WebSphere Application Server Liberty documentation.
OAuth Role Map (oauth-roles)
OAuth web application security role map.
Attribute name | Data type | Default value | Description |
---|---|---|---|
id | string | A unique configuration ID. |
- authenticated
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description id string A unique configuration ID. - authenticated > group
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description access-id string A group access ID in the general form group:realmName/groupUniqueId. A value will be generated if one is not specified. id string A unique configuration ID. name string Name of a group that has the security role.
- authenticated > special-subject
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description id string A unique configuration ID. type - EVERYONE
- ALL_AUTHENTICATED_USERS
One of the following special subject types: ALL_AUTHENTICATED_USERS, EVERYONE. - EVERYONE
- All users for every request, even if the request was not authenticated.
- ALL_AUTHENTICATED_USERS
- All authenticated users.
- authenticated > user
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description access-id string A user access ID in the general form user:realmName/userUniqueId. A value will be generated if one is not specified. id string A unique configuration ID. name string Name of a user who has the security role.
- clientManager
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description id string A unique configuration ID. - clientManager > group
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description access-id string A group access ID in the general form group:realmName/groupUniqueId. A value will be generated if one is not specified. id string A unique configuration ID. name string Name of a group that has the security role.
- clientManager > special-subject
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description id string A unique configuration ID. type - EVERYONE
- ALL_AUTHENTICATED_USERS
One of the following special subject types: ALL_AUTHENTICATED_USERS, EVERYONE. - EVERYONE
- All users for every request, even if the request was not authenticated.
- ALL_AUTHENTICATED_USERS
- All authenticated users.
- clientManager > user
Description: A unique configuration ID.Required: falseData type: Attribute name Data type Default value Description access-id string A user access ID in the general form user:realmName/userUniqueId. A value will be generated if one is not specified. id string A unique configuration ID. name string Name of a user who has the security role.