Protecting Applications With the Use of Application Metadata
Instructions on how to protect applications using application metadata in SecureAuth
Note
Application metadata can be used for validating policies. It enables, for example, blocking the scope assignment to an application identified with specific metadata.
Prerequisites
You can log in to SecureAuth as an administrator.
You have at least one application in SecureAuth.
Configure App Metadata
Select Applications > Clients from the sidebar.
In the client Metadata view, select the Client metadata tab.
In the Client metadata view, enter the metadata as a JSON.
When your JSON is ready, select SAVE CHANGES.
Result: You've configured metadata for the application and you are able to use this data for your purposes.
Create Policy
Create a SecureAuth policy as described in Create Policy.
In the policy generating engine, select ADD VALIDATOR.
From the fly-out Add new validator pane, select Client.
In the Client validator, select ADD FIELD.
In the Cross context condition editor
Enter the name of a client-content attribute that you want to use, for example client_id.
Select an attribute operator, for example, contains.
Enter a value (target) for your attribute that would validate the policy, for example auth21.
Select SAVE to complete the field setup.
Select the OK icon from the top right corner if you're done with adding fields.
If you're done with adding validators, select SAVE to complete the policy setup.
Result: Your policy validating application metadata is ready to be used.
Next Steps
Use the application metadata for various authorization operations on the 3rd party application in SecureAuth. See, for example, Protecting scopes with access policies as a reference.