Push-enabled Cronto apps need to communicate directly with Airlock IAM (via Airlock Gateway (WAF)). If a recent Gateway (WAF) mapping template for IAM is in use, it should be sufficient to activate the "Cronto Online Functionality" allow rule. To add the URLs to existing Gateway (WAF) mappings, or to create a separate mapping for the app access, the following URLs are called by the apps:
App | URLs |
|---|---|
Digipass for Mobile | [iam-loginapp]/cronto-notification-id-registration |
CrontoSign Swiss | [iam-loginapp]/cronto/notification |
These paths must be excluded from URL Encryption and also from CSRF Token protection.