Configuration of application and service mappings

Depending on the used IAM features, use the corresponding Denied Access URL and Authentication Flow in the Airlock Gateway mapping of the application or service protected by Airlock IAM:

IAM Feature	Denied Access URL	Authentication Flow
Loginapp UI	<loginapp-uri>/ui/app/auth/application/access <loginapp-uri>/ui/app/auth/logout The /check-login entry point also works with the Loginapp UI.	Redirect
HTTP request authentication (Airlock One-Shot flow) Securing REST APIs/service APIs Front-side Kerberos authentication (with one-shot flow)	<loginapp-uri>/login-oneshot	One-shot
Airlock Gateway and IAM configuration for NextGenPSD2 Airlock Gateway configuration for STET PSD2	<loginapp-uri>/login-oneshot	One-shot with body
Front-side Kerberos authentication (with redirect flow)	<loginapp-uri>/check-spnego	Redirect