{"id":"https://schema.entrecode.de/schema-acc/group","allOf":[{"$ref":"https://schema.entrecode.de/schema-acc/hal#/definitions/halResource"},{"type":"object","properties":{"groupID":{"type":"string","pattern":"^[a-zA-Z0-9_\\-:]+$"},"name":{"type":"string"},"permissions":{"type":"array","items":{"type":"string","pattern":"^[a-zA-Z0-9_\\-:*,§]+$"},"description":"all resolved permissions this group has, including subgroups"},"nativePermissions":{"type":"array","items":{"type":"string","pattern":"^[a-zA-Z0-9_\\-:*,§]+$"},"description":"permissions directly attached to this group"},"subgroups":{"type":"array","items":{"type":"string","pattern":"^[a-zA-Z0-9_\\-:*,§]+$"},"description":"subgroups of this group"},"customAuthDomain":{"oneOf":[{"type":"string","format":"uri"},{"type":"null"}]},"customAuthDomainPriority":{"oneOf":[{"type":"integer","minimum":0,"maximum":100},{"type":"null"}]},"groupSettings":{"oneOf":[{"type":"null"},{"type":"object","properties":{"mfaRequired":{"type":"boolean","default":false,"description":"If true, all users in this group are required to use MFA"},"authenticatorRequires2FA":{"type":"boolean","default":false,"description":"If true, second factor is required even when first factor was biometric"},"legacyLoginDisabled":{"type":"boolean","default":false,"description":"If true, all users in this group are required to use OIDC for login"}}}]},"_links":{"required":["self","collection"]}},"required":["groupID","name"]}],"$schema":"http://json-schema.org/draft-04/schema#"}