Input and Output (JWT)

Forms serve as an intermediary, accepting input from a requesting application, guiding the user through a structured sequence of steps, and finally returning control to the originating application.

Receive input

Forms receives a JWT containing data using post. The JWT is verified using the trust_store and the payload is put into the flow state. This can later be accessed using flow.my_param1 in forms, and using request.my_param1 in pipes.

Name

Description

Mandatory

Default

trust_store

Trust store for verifying signatures of incoming JWT tokens

parameter_name

Name of the form input parameter

jwt

This configuration is a part of the flow configuration.

"input_jwt":
{
	"parameter_name": "jwt",
	"trust_store":
	{
		"type" : "PKCS12",
		"path" : "resources/keys/keystore_trust.p12",
		"password" : "password"
	}
}

Send output

Forms sends a JWT to an external service using post. The payload is defined in the payload json structure and is expanded.

Name

Description

Mandatory

Default

key_store

Key store used to sign the outgoing JWT token

parameter_name

Name of the form output parameter

jwt

payload

A json structure containgn payload data

location

The default location to post the data to.

This configuration is a part of the flow configuration.

"output_jwt": 
{
    "location": "${flow.return_url}",
    "parameter_name": "jwt",
    "key_store":
    {
      "type" : "PKCS12",
      "path" : "keys/keystore.p12",
      "password" : "password",
      "private_key_password": "password"
    },
    "payload":
    {
      "external_flow_id": "${flow.external_flow_id}",
      "user_info": "${flow.user_info}"
    }
  }

External_flow_id

Note! If Forms is used together with the ExternalFlow authenticator, the incoming external_flow_id must be added to the payload of the output JWT.

PreviousAuthentication & authorisation NextStep