The root config type for the valkyrie authorization filter configuration file.
Time in milliseconds to cache valkyrie response. The default is 5 minutes.
Instead of returning a 403, instead return a 404 instead
If disabled (false), then a secondary authorization call will be made and has the potential to
increase in the response time (DEFAULT).
If enabled (true), then the secondary authorization call is bypassed and also no culling of the
Origin Service response will occur.
Http Connection pool ID to use when talking to Valkyrie
If enabled (true), the Valkyrie filter WILL pass the request to the next filter in the filter
chain IF the tenant ID presented is NOT a dedicated tenant ID (i.e., starts with "hybrid:").
If disabled (false), the Valkyrie filter WILL NOT pass the request to the next filter in the
filter chain IF the tenant ID presented is NOT a dedicated tenant ID
(i.e., starts with "hybrid:"). Instead, the request will be considered unauthorized.
If enabled (true), the Valkyrie filter WILL take the "upgrade_account" account-level permission
into consideration during authorization.
The "upgrade_account" permission will allow a user to DELETE any device on the account or to
create a new device on the account.
If disabled (false), the Valkyrie filter WILL NOT take the "upgrade_account" permission into
consideration during authorization.
No additional actions will be authorized due to the presence of the "upgrade_account"
permission.
Description of the Valkyrie endpoint
The target Valkyrie URI for credential requests including host, port, and path to service.
DEPRECATED - Username to authenticate against the Valkyrie endpoint.
DEPRECATED - Password to authenticate against the Valkyrie endpoint.
Whether or not you would like this filter to populate the delegation headers.
Inclusion means you do.
What quality you want any output headers to be.
When setting up a chain of delegating filters the highest quality number will be the one that is
eventually output.
Default is 0.1
A list of resources that return responses that contain a collection of items that should be culled
based on valkyrie permissions.
The action to take when a null or non-matching value is found where a device ID is expected.
A specific ReST resource that contains one or more collections that need culling based on valkyrie
permissions.
List of HTTP Methods this resource wants to cull on.
Valid values include:
GET, DELETE, POST, PUT, PATCH, HEAD, OPTIONS, CONNECT, TRACE, ALL
NOTE: If this attribute is present, then it must not be empty.
The HttpMethod simple type defines a string
enumeration of HTTP method verbs as outlined in
RFC2616
section 9.
Specifies how to find the information needed for culling the collection.
Specifies the JSON paths necessary to make changes to the collection.
The three paths needed to determine whether an item is viewable and the item count to be updated.
The path to the collection to be culled relative to the entire document.
The path to the device id relative to the objects contained in the collection.
The path to the item count for the collection to be culled relative to the entire document.
The path and regex for getting the device id.