Configuration of application and service mappings

Depending on the used IAM features, use the corresponding Denied Access URL and Authentication Flow in the Airlock Gateway mapping of the application or service protected by Airlock IAM:

IAM Feature	Denied Access URL	Authentication Flow
Loginapp UI	`<loginapp-uri>/ui/app/auth/application/access` `<loginapp-uri>/ui/app/auth/logout` Notice The deprecated `<loginapp-uri>/check-login` URL still works with the Loginapp UI for backward compatibility with the old JSP-Loginapp. However, this URL might be removed in a future release.	Redirect
HTTP request authentication (One-Shot flow) Securing REST APIs/service APIs Front-side Kerberos authentication (with one-shot flow)	`<loginapp-uri>/login-oneshot`	One-shot
Airlock Gateway and IAM configuration for NextGenPSD2 Gateway configuration for STET PSD2	`<loginapp-uri>/login-oneshot`	One-shot with body
Front-side Kerberos authentication (with redirect flow)	`<loginapp-uri>/check-spnego`	Redirect