Application Center BL appsettings

This page lists all the appsettings.json settings available for the Application Center BL (WebApi).

The appsettings.json file is located in the folder <AMT Environment>\AmtTools\ApplicationCenterWebApi\

The appsettings file is (sub-)divided into the following sections.

AuthenticationType

The authentication type used to validate tokens received from the Application Center, the only valid option is "JWT" (JSON Web Token).

JWT

The 'JWT' section contains settings needed to validate tokens received from the Application Center.

• Authority - The URL of the authorization server.
• Audience - The configured intended recipient of the access token.
• TokenValidationParameters:
  • NameClaimType - The claim type that will be used to identify the user. Commonly preferred_username is used as claim type.
    The claim type must be identical to the claim type set in the ApplicationCenter appsettings.
• RequireHttpsMetadata - If true then HTTPS is required for the authority. The default is true. This should be disabled only in development environments.

Logging

Sets the logging levels for the various ASP.NET Core components of the web application. These settings do not need be adjusted in a normal situation.
The allowed log levels are, from most to least detailed: Trace, Debug, Information, Warning, Error, Critical and None.

AllowedHosts

In the AllowedHosts section, access to the web application can be restricted to specific hostnames.
The value is a semicolon-delimited list of host names without port numbers.
By default all hostnames are allowed by the asterisk (*) wildcard.
Disallowed users will get a HTTP 400 error code (Bad Request).