View Source GoogleApi.IAM.V1.Model.GoogleIamAdminV1WorkforcePoolProviderOidcWebSsoConfig (google_api_iam v0.42.0)
Configuration for web single sign-on for the OIDC provider.
Attributes
-
additionalScopes
(type:list(String.t)
, default:nil
) - Additional scopes to request for in the OIDC authentication request on top of scopes requested by default. By default, theopenid
,profile
andemail
scopes that are supported by the identity provider are requested. Each additional scope may be at most 256 characters. A maximum of 10 additional scopes may be configured. -
assertionClaimsBehavior
(type:String.t
, default:nil
) - Required. The behavior for how OIDC Claims are included in theassertion
object used for attribute mapping and attribute condition. -
responseType
(type:String.t
, default:nil
) - Required. The Response Type to request for in the OIDC Authorization Request for web sign-in. TheCODE
Response Type is recommended to avoid the Implicit Flow, for security reasons.
Summary
Functions
Unwrap a decoded JSON object into its complex fields.
Types
Functions
Unwrap a decoded JSON object into its complex fields.