This page contains a few useful Perl expressions you can use in your Handler rules, SAML/OIDC/CAS security rules, 2FA Activation rules, etc.
Session attributes are visible in the Manager's Session browser, any attribute you see there can be used in a rule!
$uid eq "dwho" $uidNumber == 1000 $cn eq "Doctor Who" $email eq "dwho@tardis.info" etc.
eq means Equal and must be used on strings. == should be used only on numbers
defined $hGroups{'administrators'}
# 2.0.8 and higher only
inGroup('administrators')
inGroup('timelords') and not $uid eq 'missy'
$cn =~ /^Doctor.*/i $email !~ /@spam.com$/
$authenticationLevel >= 3
$_auth ne 'Demo'
ne means Not Equal and must be used on strings
$env->{REMOTE_ADDR} =~ /^10\./