Application settings

There are a couple of settings specific to your application that are worth explaining.

Direct signup URL

For each redirect URL you have configured on your application, it is possible to generate a 'direct signup url'. This URL will provide the option to communicate this to your customers outside of your application, like in a newsletter or other marketing outlets.

When a user visits this specific signup URL, they can create their Veriam account, which will be linked to your application (you will see them in the Accounts and Users overviews). After signing up, the user will be redirected to the redirect URL for which the signup URL is generated. It's important to know that since the signup request did not come for the application, the user will not be logged in directly at the moment of this redirect. You should therefore make sure that the user is redirected to a page that is available for any visitor.

MFA requirement

There is an option in the application configuration to indicate if MFA usage is required. If this is enabled, it requires every user that logs in to your application to use a form of MFA that is supported on their Veriam account. This is currently either biometrics, TOTP or email OTP.

You can change this setting at any time, but it will always apply to all users.

Renew client secret

From a security perspective, it might be needed to at some point change the client secret that your application uses to connect to Veriam.

You can do this in the edit application screen, but generating a new client secret. You will be presented with the client secret on the screen only ones, after that it is not possible to view the client secret again.

After saving (and publishing) both client secrets will be allowed, so there is time to change the client secret in the configuration of your application without any connection interruption. After you have successfully changed the client secret in your application, simply revisit the configuration and delete the old client secret from the configuration in Veriam. Each client secret has a date and time it was generated, so you can easily see what the new and old client secrets are.