Authentication Realms · Commerce Cloud

You can use the Authentication Realms endpoint to configure authentication options. Authentication Realm sub-resources can be used to configure single sign-on.

The Authentication Realm object

Attributes

Sample Response

Attribute	Type	Description
`id`	`string`	The unique identifier for the authentication realm.
`meta`	`object`	Additional information for this realm. For more information, see The meta object section.
`name`	`string`	The name of the authentication realm.
`redirect_uris`	`array[string]`	An array of Storefront URIs that can start Single Sign On authentication. These URIs must follow the rules for redirection endpoints in OAuth 2.0. All URIs must start with `https://` except for `http://localhost`.
`relationships`	`object`	The related resources. For more information, see The relationships object section.
`duplicate_email_policy`	`string`	The values permitted for this parameter are, `allowed` or `api_only`. When an unfamiliar user signs in for the first time, a value of `allowed` always creates a new user with the name and e-mail address supplied by the identity provider. With the `api_only` value, the system assigns the user to an existing user with a matching e-mail address, if one already exists. The `api_only` setting is recommended only when all configured identity providers treat e-mail address as a unique identifier for the user, otherwise a user might get access to another user’s account and data. Thus the `api_only` value can simplify administration of users.
`type`	`string`	The type of the object returned.

{
    "data": {
        "id": "40086652-2779-45f0-8ea6-ae630dfd13cb",
        "meta": {
            "created_at": "2020-11-04T21:28:50.796Z",
            "updated_at": "2020-11-04T21:28:50.796Z"
        },
        "name": "Test Authentication Realm",
        "redirect_uris": [
            "https://example.com"
        ],
        "relationships": {
            "origin": {
                "data": {
                    "id": "88888888-4444-4333-8333-111111111111",
                    "type": "customer-authentication-settings"
                }
            }
        },
        "duplicate_email_policy": "allowed",
        "type": "authentication-realm"
    },
    "links": {
        "self": "https://api.moltin.com/v2/authentication-realms/40086652-2779-45f0-8ea6-ae630dfd13cb"
    }
}

The `meta` object

Attribute	Type	Description
`meta.created_at`	`string`	The creation date of this realm.
`meta.updated_at`	`string`	The last updated date of this realm.

The `relationships` object

Attribute	Type	Description
`relationships.origin`	`object`	Relationships information regarding the entity that created this realm.
`relationships.origin.data`	`object`	Information regarding the origin entity.
`relationships.origin.data.id`	`string`	The ID of the origin entity.
`relationships.origin.data.type`	`string`	The type of the origin entity. Currently only `customer-authentication-settings` is supported, however other values are still accepted.

The Authentication Realm object

The meta object

The relationships object

The `meta` object

The `relationships` object