OIDC Auth: Response mode & decode access token options

As of WorkflowGen version 7.21.0, the Auth module (updated to version 2.3.0) includes two new configuration options:

ApplicationSecurityAuthResponseMode

This determines the response mode for the authentication process. In other words, it determines how the provider will send its response if it supports it.

Possible values: form_post (default) or query

ApplicationSecurityAuthDecodeAccessToken

This indicates whether or not the access token should be decoded by the authentication module. It is decoded to get the expiration date. The session token expiration date is based on it. If it should not be decoded, the ID token’s expiration is taken for the session.

Possible values: Y (default) or N

For a complete list of Auth parameters along with their descriptions and values, see the Auth section in the WorkflowGen Technical Guide Web and Application Configuration Parameters appendix.