PNG  IHDR;IDATxܻn0K )(pA 7LeG{ §㻢|ذaÆ 6lذaÆ 6lذaÆ 6lom$^yذag5bÆ 6lذaÆ 6lذa{ 6lذaÆ `}HFkm,mӪôô! x|'ܢ˟;E:9&ᶒ}{v]n&6 h_tڠ͵-ҫZ;Z$.Pkž)!o>}leQfJTu іچ\X=8Rن4`Vwl>nG^is"ms$ui?wbs[m6K4O.4%/bC%t Mז -lG6mrz2s%9s@-k9=)kB5\+͂Zsٲ Rn~GRC wIcIn7jJhۛNCS|j08yiHKֶۛkɈ+;SzL/F*\Ԕ#"5m2[S=gnaPeғL lذaÆ 6l^ḵaÆ 6lذaÆ 6lذa; _ذaÆ 6lذaÆ 6lذaÆ RIENDB` # Generated by default/object.tt package Paws::ELBv2::AuthenticateOidcActionConfig; use Moose; has AuthenticationRequestExtraParams => (is => 'ro', isa => 'Paws::ELBv2::AuthenticateOidcActionAuthenticationRequestExtraParams'); has AuthorizationEndpoint => (is => 'ro', isa => 'Str', required => 1); has ClientId => (is => 'ro', isa => 'Str', required => 1); has ClientSecret => (is => 'ro', isa => 'Str'); has Issuer => (is => 'ro', isa => 'Str', required => 1); has OnUnauthenticatedRequest => (is => 'ro', isa => 'Str'); has Scope => (is => 'ro', isa => 'Str'); has SessionCookieName => (is => 'ro', isa => 'Str'); has SessionTimeout => (is => 'ro', isa => 'Int'); has TokenEndpoint => (is => 'ro', isa => 'Str', required => 1); has UseExistingClientSecret => (is => 'ro', isa => 'Bool'); has UserInfoEndpoint => (is => 'ro', isa => 'Str', required => 1); 1; ### main pod documentation begin ### =head1 NAME Paws::ELBv2::AuthenticateOidcActionConfig =head1 USAGE This class represents one of two things: =head3 Arguments in a call to a service Use the attributes of this class as arguments to methods. You shouldn't make instances of this class. Each attribute should be used as a named argument in the calls that expect this type of object. As an example, if Att1 is expected to be a Paws::ELBv2::AuthenticateOidcActionConfig object: $service_obj->Method(Att1 => { AuthenticationRequestExtraParams => $value, ..., UserInfoEndpoint => $value }); =head3 Results returned from an API call Use accessors for each attribute. If Att1 is expected to be an Paws::ELBv2::AuthenticateOidcActionConfig object: $result = $service_obj->Method(...); $result->Att1->AuthenticationRequestExtraParams =head1 DESCRIPTION Request parameters when using an identity provider (IdP) that is compliant with OpenID Connect (OIDC) to authenticate users. =head1 ATTRIBUTES =head2 AuthenticationRequestExtraParams => L The query parameters (up to 10) to include in the redirect request to the authorization endpoint. =head2 B AuthorizationEndpoint => Str The authorization endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path. =head2 B ClientId => Str The OAuth 2.0 client identifier. =head2 ClientSecret => Str The OAuth 2.0 client secret. This parameter is required if you are creating a rule. If you are modifying a rule, you can omit this parameter if you set C to true. =head2 B Issuer => Str The OIDC issuer identifier of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path. =head2 OnUnauthenticatedRequest => Str The behavior if the user is not authenticated. The following are possible values: =over =item * denyC< - Return an HTTP 401 Unauthorized error.> =item * allowC< - Allow the request to be forwarded to the target.> =item * authenticateC< - Redirect the request to the IdP authorization endpoint. This is the default value.> =back =head2 Scope => Str The set of user claims to be requested from the IdP. The default is C. To verify which scope values your IdP supports and how to separate multiple values, see the documentation for your IdP. =head2 SessionCookieName => Str The name of the cookie used to maintain session information. The default is AWSELBAuthSessionCookie. =head2 SessionTimeout => Int The maximum duration of the authentication session, in seconds. The default is 604800 seconds (7 days). =head2 B TokenEndpoint => Str The token endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path. =head2 UseExistingClientSecret => Bool Indicates whether to use the existing client secret when modifying a rule. If you are creating a rule, you can omit this parameter or set it to false. =head2 B UserInfoEndpoint => Str The user info endpoint of the IdP. This must be a full URL, including the HTTPS protocol, the domain, and the path. =head1 SEE ALSO This class forms part of L, describing an object used in L =head1 BUGS and CONTRIBUTIONS The source code is located here: L Please report bugs to: L =cut