| Name | Required | Default | Description | Examples |
|---|
| ttlExpiryRefreshOnAccess |
false |
true
|
controls if the expiry refreshes to expiresAfterSeconds on access (true) or if it should not refresh (false)
|
- |
| domain |
false |
- |
- |
- |
| sameSite |
false |
- |
- |
- |
| sessionCookie |
false |
false
|
if true removes the expire part of a set cookie header and thus makes it a session cookie
|
- |
| expiresAfterSeconds |
false |
- |
- |
- |
| httpOnly |
false |
- |
- |
- |
| secure |
false |
false
|
forces secure cookie attribute even when no ssl context is present (e.g. TLS termination in front of membrane)
|
- |
| issuer |
false |
- |
- |
- |
| verbose |
false |
- |
- |
- |