| Name | Required | Default | Description | Example |
|---|
| ttlExpiryRefreshOnAccess |
false |
true
|
controls if the expiry refreshes to expiresAfterSeconds on access (true) or if it should not refresh (false) |
- |
| domain |
false |
- |
- |
- |
| sameSite |
false |
- |
- |
- |
| sessionCookie |
false |
false
|
if true removes the expire part of a set cookie header and thus makes it a session cookie |
- |
| expiresAfterSeconds |
false |
- |
- |
- |
| httpOnly |
false |
- |
- |
- |
| secure |
false |
false
|
forces secure cookie attribute even when no ssl context is present (e.g. TLS termination in front of membrane) |
- |
| issuer |
false |
- |
- |
- |