Configuration of application and service mappings

Depending on the used IAM features, use the corresponding Denied Access URL and Authentication Flow in the Airlock Gateway mapping of the application or service protected by Airlock IAM:

IAM Feature	Denied Access URL	Authentication Flow
Loginapp UI	`<loginapp-uri>/ui/app/auth/application/access` `<loginapp-uri>/ui/app/auth/logout` Notice The `<loginapp-uri>/check-login` URL is still available. For new integrations, however, use the URLs listed above.	Redirect
HTTP request authentication (One-Shot flow) Securing REST APIs/service APIs Front-side Kerberos authentication (with one-shot flow)	`<loginapp-uri>/login-oneshot`	One-shot
Airlock Gateway and IAM configuration for NextGenPSD2 Gateway configuration for STET PSD2	`<loginapp-uri>/login-oneshot`	One-shot with body
Front-side Kerberos authentication (with redirect flow)	`<loginapp-uri>/check-spnego`	Redirect