52.28.42.15

AttributeValue
443.https.dhe.support
False
443.https.dhe_export.support
False
443.https.get.body
<!DOCTYPE html>
<!--[if IE 7]><html lang="en" class="lt-ie10 lt-ie9 lt-ie8"><![endif]-->
<!--[if IE 8]><html lang="en" class="lt-ie10 lt-ie9"> <![endif]-->
<!--[if IE 9]><html lang="en" class="lt-ie10"><![endif]-->
<!--[if gt IE 9]><html lang="en"><![endif]-->
<!--[if !IE]><!--><html lang="en"><!--<![endif]-->
<head>
<meta charset="UTF-8">

<script>if (typeof module === 'object') {window.module = module; module = undefined;}</script>
443.https.get.body_sha256
862eeb87ea4b8c1efe606051bf2cf9d6d93e48fd88c51d969a7eba2f6f80bdbd
443.https.get.headers.cache_control
no-cache, no-store
443.https.get.headers.connection
keep-alive
443.https.get.headers.content_language
en
443.https.get.headers.content_security_policy
default-src 'self' flywire.oktapreview.com *.oktacdn.com; connect-src 'self' flywire.oktapreview.com flywire-admin.oktapreview.com *.oktacdn.com *.mixpanel.com *.mapbox.com app.pendo.io data.pendo.io pendo-static-5634101834153984.storage.googleapis.com flywire.kerberos.oktapreview.com flywire.mtls.oktapreview.com https://oinmanager.okta.com data:; script-src 'unsafe-inline' 'unsafe-eval' 'self' flywire.oktapreview.com *.oktacdn.com; style-src 'unsafe-inline' 'self' flywire.oktapreview.com *.okta
443.https.get.headers.content_type
text/html;charset=utf-8
443.https.get.headers.expires
0
443.https.get.headers.p3p
CP="HONK"
443.https.get.headers.pragma
no-cache
443.https.get.headers.server
nginx
443.https.get.headers.strict_transport_security
max-age=315360000; includeSubDomains
443.https.get.headers.unknown
{u'key': u'expect_ct', u'value': u'report-uri="https://oktaexpectct.report-uri.com/r/t/ct/reportOnly", max-age=0'}, {u'key': u'x_robots_tag', u'value': u'none'}, {u'key': u'x_rate_limit_reset', u'value': u'1620657005'}, {u'key': u'report_to', u'value': u'{"group":"csp-enforce","max_age":31536000,"endpoints":[{"url":"https://okta.report-uri.com/r/d/csp/enforce"}],"include_subdomains":true}'}, {u'key': u'public_key_pins_report_only', u'value': u'pin-sha256="jZomPEBSDXoipA9un78hKRIeN/+U4ZteRaiX8YpW
443.https.get.headers.vary
Accept-Encoding
443.https.get.headers.x_content_type_options
nosniff
443.https.get.headers.x_frame_options
SAMEORIGIN
443.https.get.headers.x_ua_compatible
IE=edge
443.https.get.headers.x_xss_protection
0
443.https.get.metadata.description
nginx
443.https.get.metadata.product
nginx
443.https.get.status_code
200
443.https.get.status_line
200 OK
443.https.get.title
Flywire - Sign In
443.https.heartbleed.heartbeat_enabled
False
443.https.heartbleed.heartbleed_vulnerable
False
443.https.rsa_export.support
False
443.https.tls.certificate.parsed.extensions.authority_info_access.issuer_urls
443.https.tls.certificate.parsed.extensions.authority_info_access.ocsp_urls
443.https.tls.certificate.parsed.extensions.authority_key_id
59a4660652a07b95923ca394072796745bf93dd0
443.https.tls.certificate.parsed.extensions.basic_constraints.is_ca
False
443.https.tls.certificate.parsed.extensions.certificate_policies
{u'id': u'2.16.840.1.114412.1.2'}, {u'id': u'2.23.140.1.2.1'}
443.https.tls.certificate.parsed.extensions.crl_distribution_points
443.https.tls.certificate.parsed.extensions.extended_key_usage.client_auth
True
443.https.tls.certificate.parsed.extensions.extended_key_usage.server_auth
True
443.https.tls.certificate.parsed.extensions.key_usage.digital_signature
True
443.https.tls.certificate.parsed.extensions.key_usage.key_encipherment
True
443.https.tls.certificate.parsed.extensions.key_usage.value
5
443.https.tls.certificate.parsed.extensions.signed_certificate_timestamps
{u'log_id': u'9lyUL9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOM=', u'timestamp': 1603325792, u'version': 0, u'signature': u'BAMARzBFAiEAj75pOyA2UbCMq1ru6MtRUWSSkoRLniI8hZ7vp+uTysQCICbERu5jHRhcPtlbsuU0M2DOm8p40ix9ezMkA4cxriu+'}, {u'log_id': u'XNxDkv7mq0VEsV6a1FbmEDf71fpH3KFzlLJe5vbHDso=', u'timestamp': 1603325793, u'version': 0, u'signature': u'BAMARzBFAiEAkzxUPJNKu6C9dG5G8ScuozvMlb9Gh+ewlPd6eljTVcICIH9XE0Ds4TeIEHLQxJvBmEkClJDN+yAfhn8ABM7cPwkr'}
443.https.tls.certificate.parsed.extensions.subject_alt_name.dns_names
sal.flywire.io
443.https.tls.certificate.parsed.extensions.subject_key_id
32e0e5281df237ae5ca7da84fc7a3fe7f5f3f534
443.https.tls.certificate.parsed.fingerprint_md5
0240c5c23a2fd855c9382fb301b6d86c
443.https.tls.certificate.parsed.fingerprint_sha1
cf216b4bf8148c9aaa4e32b0a4bf72d409623082
443.https.tls.certificate.parsed.fingerprint_sha256
4a9d9de2bd56ab162f33c62b1cea5ef299ffec7d0c353e050b65dc04992eb080
443.https.tls.certificate.parsed.issuer.common_name
Amazon
443.https.tls.certificate.parsed.issuer.country
US
443.https.tls.certificate.parsed.issuer.organization
Amazon
443.https.tls.certificate.parsed.issuer.organizational_unit
Server CA 1B
443.https.tls.certificate.parsed.issuer_dn
C=US, O=Amazon, OU=Server CA 1B, CN=Amazon
443.https.tls.certificate.parsed.names
sal.flywire.io
443.https.tls.certificate.parsed.redacted
False
443.https.tls.certificate.parsed.serial_number
2111839288605905982977814748668460943
443.https.tls.certificate.parsed.signature.self_signed
False
443.https.tls.certificate.parsed.signature.signature_algorithm.name
SHA256WithRSA
443.https.tls.certificate.parsed.signature.signature_algorithm.oid
1.2.840.113549.1.1.11
443.https.tls.certificate.parsed.signature.valid
True
443.https.tls.certificate.parsed.signature.value
s7TE5b+rVXH/kfSKjQNKai+OhcmRisf3eKkuNIHmyC/kP8XwN7Uzwx0AMmgfz5UgUWfnyqSMA1XBI13ZafE0BbBIqslkoqpoUqilS/HNMZkAods6XmMeHDM0rGKdT3cHhG2XR+RjdMDTXGZSz9MK5CE0Z4WIdYUmsvAChZ9tRKLFuZbkZgLjqJYXfNUqlUU8r+J3Zqye4ye5zhjG2vzpGZJJcpQjN4w8ypaaT0xRrafWUnfWfnLXfB2FXibTF207YOO7pTAuSZrHu9+QSHdxqQ/AaI9NAl1K//vLkfPe0eyBNEFl5nVrfZZGuVN9XrEFrnH1XDrsjj59zZbMNf5d2w==
443.https.tls.certificate.parsed.signature_algorithm.name
SHA256WithRSA
443.https.tls.certificate.parsed.signature_algorithm.oid
1.2.840.113549.1.1.11
443.https.tls.certificate.parsed.spki_subject_fingerprint
205bd8d1bde2def239642899b811966127ca3d0857d015a263f467262ff2c791
443.https.tls.certificate.parsed.subject.common_name
sal.flywire.io
443.https.tls.certificate.parsed.subject_dn
CN=sal.flywire.io
443.https.tls.certificate.parsed.subject_key_info.fingerprint_sha256
6359de6ea3d496b5b513695668bb57b5b9d9af565afcd5c929e97fbafe042565
443.https.tls.certificate.parsed.subject_key_info.key_algorithm.name
RSA
443.https.tls.certificate.parsed.subject_key_info.rsa_public_key.exponent
65537
443.https.tls.certificate.parsed.subject_key_info.rsa_public_key.length
2048
443.https.tls.certificate.parsed.subject_key_info.rsa_public_key.modulus
p+7myLaopslyfEy+p+3L+a6MWhh66VMucawGyc429RC9YjxYRJL7dB/eiAq4BtEjwpThmqVeQXsYZJBYPC9eIxIxtcd0BMQRK44jhYzTnRmg4fR9OZMXdPZ1NlVgrEDRwBdo5y/Wu5O5dAiEDpf54LbpIqgNNwyIIps2hPJdCnhKceAvqX72uQQ710FsdUeS+TP5zT2AEVCfovVrRDNbA7lyEEby6U5zXx9U7GsQ66cSUS/FS3JY/mEpdU9d5KjhGb6Ut83Ma6tFQjofDW1BTv6H5beTwhXliosI0x7+2F/A1S0PXEAhHvmXEFMD8240G/NeUlkOdrlcm+KNU6CcpQ==
443.https.tls.certificate.parsed.tbs_fingerprint
7e5c21eff3321e2038b31e68fae365157208aad8f1260f14e501c83266c0d7d5
443.https.tls.certificate.parsed.tbs_noct_fingerprint
30c7a06f5421e31c79f48374dea4689d63e085749b96bd95b16e4213a504ce2b
443.https.tls.certificate.parsed.validation_level
DV
443.https.tls.certificate.parsed.validity.end
2021-11-21T23:59:59Z
443.https.tls.certificate.parsed.validity.length
34214399
443.https.tls.certificate.parsed.validity.start
2020-10-22T00:00:00Z
443.https.tls.certificate.parsed.version
3
443.https.tls.chain
443.https.tls.cipher_suite.id
0xC02F
443.https.tls.cipher_suite.name
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
443.https.tls.ocsp_stapling
False
443.https.tls.server_key_exchange.ecdh_params.curve_id.id
23
443.https.tls.server_key_exchange.ecdh_params.curve_id.name
secp256r1
443.https.tls.signature.hash_algorithm
sha512
443.https.tls.signature.signature_algorithm
rsa
443.https.tls.signature.valid
True
443.https.tls.validation.browser_trusted
True
443.https.tls.version
TLSv1.2
80.http.get.body
<!DOCTYPE html>
<!--[if IE 7]><html lang="en" class="lt-ie10 lt-ie9 lt-ie8"><![endif]-->
<!--[if IE 8]><html lang="en" class="lt-ie10 lt-ie9"> <![endif]-->
<!--[if IE 9]><html lang="en" class="lt-ie10"><![endif]-->
<!--[if gt IE 9]><html lang="en"><![endif]-->
<!--[if !IE]><!--><html lang="en"><!--<![endif]-->
<head>
<meta charset="UTF-8">

<script>if (typeof module === 'object') {window.module = module; module = undefined;}</script>
80.http.get.body_sha256
b75d73371432dff91d2ef32c2177ff763067eb75a6a250547b8ee2f856601dc9
80.http.get.headers.cache_control
no-cache, no-store
80.http.get.headers.connection
keep-alive
80.http.get.headers.content_language
en
80.http.get.headers.content_security_policy
default-src 'self' flywire.oktapreview.com *.oktacdn.com; connect-src 'self' flywire.oktapreview.com flywire-admin.oktapreview.com *.oktacdn.com *.mixpanel.com *.mapbox.com app.pendo.io data.pendo.io pendo-static-5634101834153984.storage.googleapis.com flywire.kerberos.oktapreview.com flywire.mtls.oktapreview.com https://oinmanager.okta.com data:; script-src 'unsafe-inline' 'unsafe-eval' 'self' flywire.oktapreview.com *.oktacdn.com; style-src 'unsafe-inline' 'self' flywire.oktapreview.com *.okta
80.http.get.headers.content_type
text/html;charset=utf-8
80.http.get.headers.expires
0
80.http.get.headers.p3p
CP="HONK"
80.http.get.headers.pragma
no-cache
80.http.get.headers.server
nginx
80.http.get.headers.strict_transport_security
max-age=315360000; includeSubDomains
80.http.get.headers.unknown
{u'key': u'public_key_pins_report_only', u'value': u'pin-sha256="jZomPEBSDXoipA9un78hKRIeN/+U4ZteRaiX8YpWfqc="; pin-sha256="axSbM6RQ+19oXxudaOTdwXJbSr6f7AahxbDHFy3p8s8="; pin-sha256="SE4qe2vdD9tAegPwO79rMnZyhHvqj3i5g1c2HkyGUNE="; pin-sha256="ylP0lMLMvBaiHn0ihLxHjzvlPVQNoyQ+rMiaj0da/Pw="; max-age=60; report-uri="https://okta.report-uri.com/r/default/hpkp/reportOnly"'}, {u'key': u'report_to', u'value': u'{"group":"csp-enforce","max_age":31536000,"endpoints":[{"url":"https://okta.report-uri.com/r/d
80.http.get.headers.vary
Accept-Encoding
80.http.get.headers.x_content_type_options
nosniff
80.http.get.headers.x_frame_options
SAMEORIGIN
80.http.get.headers.x_ua_compatible
IE=edge
80.http.get.headers.x_xss_protection
0
80.http.get.metadata.description
nginx
80.http.get.metadata.product
nginx
80.http.get.status_code
200
80.http.get.status_line
200 OK
80.http.get.title
Flywire - Sign In
autonomous_system.asn
16509
autonomous_system.country_code
US
autonomous_system.description
AMAZON-02
autonomous_system.name
AMAZON-02
autonomous_system.path
7018, 174, 16509
autonomous_system.rir
unknown
autonomous_system.routed_prefix
52.28.0.0/16
ip
52.28.42.15
location.city
Frankfurt am Main
location.continent
Europe
location.country
Germany
location.country_code
DE
location.latitude
50.1188
location.longitude
8.6843
location.postal_code
60313
location.province
Hesse
location.registered_country
United States
location.registered_country_code
US
location.timezone
Europe/Berlin
ports
80, 443
protocols
443/https, 80/http
tags
http, https
updated_at
2021-05-17T07:33:59+00:00

HTTP Body


<!DOCTYPE html>
<!--[if IE 7]><html lang="en" class="lt-ie10 lt-ie9 lt-ie8"><![endif]-->
<!--[if IE 8]><html lang="en" class="lt-ie10 lt-ie9"> <![endif]-->
<!--[if IE 9]><html lang="en" class="lt-ie10"><![endif]-->
<!--[if gt IE 9]><html lang="en"><![endif]-->
<!--[if !IE]><!--><html lang="en"><!--<![endif]-->
<head>
    <meta charset="UTF-8">

    <script>if (typeof module === 'object') {window.module = module; module = undefined;}</script>

    <title>Flywire - Sign In</title>
        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <meta name="robots" content="none" />
    <script src="https://op1static.oktacdn.com/assets/js/sdk/okta-signin-widget/5.6.0/js/okta-sign-in.min.js" type="text/javascript"></script>
    <link href="https://op1static.oktacdn.com/assets/js/sdk/okta-signin-widget/5.6.0/css/okta-sign-in.min.css" type="text/css" rel="stylesheet"/>
    <link href="https://op1static.oktacdn.com/assets/loginpage/css/loginpage-theme.7138a0eb969c6a25c2d39004ad54df8a.css" type="text/css" rel="stylesheet"/><script>
        var okta = {
            locale: 'en',
            deployEnv: 'PREVIEW'
        };
    </script>
    <script>window.okta || (window.okta = {}); okta.cdnUrlHostname = "//op1static.oktacdn.com"; okta.cdnPerformCheck = false;</script><script>if (window.module) module = window.module;</script>

</head>
<body class="auth okta-container">

<!--[if gte IE 8]>
  <![if lte IE 10]>

    <style>
    .unsupported-browser-banner-wrap {
      padding: 20px;
      border: 1px solid #ddd;
      background-color: #f3fbff;
    }
    .unsupported-browser-banner-inner {
      position: relative;
      width: 735px;
      margin: 0 auto;
      text-align: left;
    }
    .unsupported-browser-banner-inner .icon {
      vertical-align: top;
      margin-right: 20px;
      display: inline-block;
      position: static !important;
    }
    .unsupported-browser-banner-inner a {
      text-decoration: underline;
    }
    </style>

    <div class="unsupported-browser-banner-wrap">
      <div class="unsupported-browser-banner-inner">
        <span class="icon icon-16 icon-only warning-16-yellow"></span>You are using an unsupported browser. For the best experience, update to <a href="https://support.okta.com/help/s/article/Okta-Browser-and-OS-Support-Policy">a supported browser</a>.</div>
    </div>

  <![endif]>
<![endif]-->
<!--[if IE 8]> <div id="login-bg-image-ie8" class="login-bg-image" data-se="login-bg-image"></div> <![endif]-->
<!--[if (gt IE 8)|!(IE)]><!--> <div id="login-bg-image" class="login-bg-image" data-se="login-bg-image"></div> <!--<![endif]-->

<!-- hidden form for reposting fromURI for X509 auth -->
<form action="/login/cert" method="post" id="x509_login" name="x509_login" style="display:none;">
    <input type="hidden" class="hide" name="_xsrfToken" value="null"/><input type="hidden" id="fromURI" name="fromURI" class="hidden" value="&#x2f;app&#x2f;flywire_salopensource_1&#x2f;exkifi8lopNps9bDN0h7&#x2f;sso&#x2f;saml&#x3f;SAMLRequest&#x3d;nVJLb9pAEL73V6z2wsle22pVusKOKFZUpJSg4ERVL9FihrCKvbvsjCH8&#x25;2B6x5qOmFQ64z32seo5u3tmE78KityQdpnAwYmNqutHnJB4&#x25;2FVbTQc3BRfRqjaxslxRxvzANsOkFggGpR9I&#x25;2BedN9Iq1CiNagEl1XIx&#x25;2Fn0nsziRChE8BXn&#x25;2BgeKuc5y3ZGvbcDa&#x25;2BsCfWYNeCX4Df6RoeH&#x25;2B5yviFyKIVA1cTr5rDXHmJtRW&#x25;2BQCVWj4KwMUbVRvcI&#x25;2F&#x25;2FAVrX0k5DzsN&#x25;2B7i2rVDOXXrPQdM6MGg7X8NzKuDtVa&#x25;2F1MBRnDn8sy1my&#x25;2BS4QT26cTcuc61Vky&#x25;2BzPS0bbTm1ny&#x25;2FY&#x25;2BnYQOYgdTg6QM5TxLsjRKvkVpWmWJTL7KZPiXs&#x25;2Fl53p&#x25;2FaHDd&#x25;2FdTnLEwjlr6qaR&#x25;2FP7RcXZ0&#x25;2FmCPAB4cTyXPBp7dmt9q&#x25;2Bi6ZF8J6ddHqARDmg68uLreFkitFCkxEh&#x25;2FcivOnzILgtJzbRtcHNm4au594UAQ5X6sGgX8iletHRArhOBPFyfX&#x25;2FlyzeAQ&#x25;3D&#x25;3D&amp;RelayState&#x3d;&#x25;2F"/>
</form>

<div class="content">
  <div class="applogin-banner">
          <div class="applogin-background"></div>
          <div class="applogin-container">
              <h1>
                Connecting to<div class="applogin-app-logo">
                      <img src="https://op1static.oktacdn.com/assets/img/logos/default.6770228fb0dab49a1695ef440a5279bb.png" alt="Sal&#x20;Opensource" class="logo flywire_salopensource_1"/></div>
              </h1>
              <p>Sign-in with your Flywire account to access Sal Opensource</p>
          </div>
      </div>
  <style type="text/css">
    .noscript-msg {
        background-color: #fff;
        border-color: #ddd #ddd #d8d8d8;
        box-shadow:0 2px 0 rgba(175, 175, 175, 0.12);
        text-align: center;
        width: 398px;
        min-width: 300px;
        margin: 200px auto;
        border-radius: 3px;
        border-width: 1px;
        border-style: solid;
    }

    .noscript-content {
        padding: 42px;
    }

    .noscript-content h2 {
        padding-bottom: 20px;
    }

    .noscript-content h1 {
        padding-bottom: 25px;
    }

    .noscript-content a {
        background: transparent;
        box-shadow: none;
        display: table-cell;
        vertical-align: middle;
        width: 314px;
        height: 50px;
        line-height: 36px;
        color: #fff;
        background: linear-gradient(#007dc1, #0073b2), #007dc1;
        border: 1px solid;
        border-color: #004b75;
        border-bottom-color: #00456a;
        box-shadow: rgba(0, 0, 0, 0.15) 0 1px 0, rgba(255, 255, 255, 0.1) 0 1px 0 0 inset;
        -webkit-border-radius: 3px;
        border-radius: 3px;
    }

    .noscript-content a:hover {
        background: #007dc1;
        cursor: hand;
        text-decoration: none;
    }
</style>
<noscript>
    <div id="noscript-msg" class="noscript-msg">
        <div class="noscript-content">
            <h2>Javascript is required</h2>
            <h1>Javascript is disabled on your browser.&nbspPlease enable Javascript and refresh this page.</h1>
            <a href=".">Refresh</a>
        </div>
    </div>
</noscript>
<div id="signin-container"></div>
  <div id="okta-sign-in" class="auth-container main-container" style="display:none">
      <div id="unsupported-onedrive" class="unsupported-message" style="display:none">
        <h2 class="o-form-head">Your OneDrive version is not supported</h2>
        <p>Upgrade now by installing the OneDrive for Business Next Generation Sync Client to login to Okta</p>
        <a class="button button-primary" target="_blank" href="https://support.okta.com/help/articles/Knowledge_Article/Upgrading-to-OneDrive-for-Business-Next-Generation-Sync-Client">
          Learn how to upgrade</a>
      </div>
      <div id="unsupported-cookie" class="unsupported-message" style="display:none">
          <h2 class="o-form-head">Cookies are required</h2>
          <p>Cookies are disabled on your browser. Please enable Cookies and refresh this page.</p>
          <a class="button button-primary" target="_blank" href=".">
              Refresh</a>
      </div>
  </div>
</div>

<div class="footer">
  <div class="footer-container clearfix">
    <p class="copyright">Powered by <a href="http://www.okta.com/" class="inline-block notranslate">Okta</a></p>
        <p class="privacy-policy"><a href="/privacy" target="_blank" class="inline-block margin-l-10">Privacy Policy</a></p>
    </div>
</div>

<script type="text/javascript">function runLoginPage (fn) {var mainScript = document.createElement('script');mainScript.src = 'https://op1static.oktacdn.com/assets/js/mvc/loginpage/initLoginPage.pack.6f2afa08c2df7e1d92923d5772376354.js';mainScript.crossOrigin = 'anonymous';mainScript.integrity = 'sha384-iQajeY5kiD0oTWzN2PBYa7mW5jClfCFnzViEj8WrbG/BEA3bf7wtsAuAm2SHHGI2';document.getElementsByTagName('head')[0].appendChild(mainScript);fn && mainScript.addEventListener('load', function () { setTimeout(fn, 1) });}</script><script type="text/javascript">
(function(){
  var baseUrl = 'https\x3A\x2F\x2Fflywire.oktapreview.com';
  var suppliedRedirectUri = '';
  var repost = false;
  var stateToken = '';
  var fromUri = '\x2Fapp\x2Fflywire_salopensource_1\x2Fexkifi8lopNps9bDN0h7\x2Fsso\x2Fsaml\x3FSAMLRequest\x3DnVJLb9pAEL73V6z2wsle22pVusKOKFZUpJSg4ERVL9FihrCKvbvsjCH8\x252B6x5qOmFQ64z32seo5u3tmE78KityQdpnAwYmNqutHnJB4\x252FVbTQc3BRfRqjaxslxRxvzANsOkFggGpR9I\x252BedN9Iq1CiNagEl1XIx\x252Fn0nsziRChE8BXn\x252BgeKuc5y3ZGvbcDa\x252BsCfWYNeCX4Df6RoeH\x252B5yviFyKIVA1cTr5rDXHmJtRW\x252BQCVWj4KwMUbVRvcI\x252F\x252FAVrX0k5DzsN\x252B7i2rVDOXXrPQdM6MGg7X8NzKuDtVa\x252F1MBRnDn8sy1my\x252BS4QT26cTcuc61Vky\x252BzPS0bbTm1ny\x252FY\x252BnYQOYgdTg6QM5TxLsjRKvkVpWmWJTL7KZPiXs\x252Fl53p\x252FaHDd\x252FdTnLEwjlr6qaR\x252FP7RcXZ0\x252FmCPAB4cTyXPBp7dmt9q\x252Bi6ZF8J6ddHqARDmg68uLreFkitFCkxEh\x252FcivOnzILgtJzbRtcHNm4au594UAQ5X6sGgX8iletHRArhOBPFyfX\x252FlyzeAQ\x253D\x253D\x26RelayState\x3D\x252F';
  var username = '';
  var rememberMe = true;
  var smsRecovery = false;
  var callRecovery = false;
  var emailRecovery = true;
  var usernameLabel = 'Username';
  var usernameInlineLabel = '';
  var passwordLabel = 'Password';
  var passwordInlineLabel = '';
  var signinLabel = 'Sign\x20In';
  var forgotpasswordLabel = 'Forgot\x20password\x3F';
  var unlockaccountLabel = 'Unlock\x20account\x3F';
  var helpLabel = 'Help';
  var orgSupportPhoneNumber = '';
  var hideSignOutForMFA = false;
  var hideBackToSignInForReset = false;
  var footerHelpTitle = 'Need\x20help\x20signing\x20in\x3F';
  var recoveryFlowPlaceholder = 'Email\x20or\x20Username';
  var signOutUrl = '';
  var authScheme = 'OAUTH2';
  var hasPasswordlessPolicy = '';
  var INVALID_TOKEN_ERROR_CODE = 'errors.E0000011';

  var securityImage = true;
  


  var selfServiceUnlock = false;
  

  var redirectByFormSubmit = false;
  

  var showPasswordRequirementsAsHtmlList = false;
  
    showPasswordRequirementsAsHtmlList = true;
  

  var autoPush = false;
  
    autoPush = true;
  

  var accountChooserDiscoveryUrl = 'https://login.okta.com/discovery/iframe.html';

  // In case of custom app login, the uri is already absolute, so we must not attach baseUrl
  var redirectUri;
  if (isAbsoluteUri(fromUri)) {
      redirectUri = fromUri;
  } else {
      redirectUri = baseUrl + fromUri;
  }
  

  var customButtons;
  var pivProperties = {};

  

  var customLinks = [];
  
  var factorPageCustomLink = {};
  

  var linkParams;
  

  var proxyIdxResponse;
  

  var stateTokenAllFlows;
  

  var idpDiscovery;
  var idpDiscoveryRequestContext;
  

  var showPasswordToggleOnSignInPage = false;
  

  var hasOAuth2ConsentFeature = false;
  var consentFunc;
  
    hasOAuth2ConsentFeature = true;
  

  var hasMfaAttestationFeature = false;
  
    hasMfaAttestationFeature = true;
  

  var registration = false;
  

  var webauthn = true;
  

  var loginPageConfig = {
    fromUri: fromUri,
    repost: repost,
    redirectUri: redirectUri,
    isMobileClientLogin: false,
    isMobileSSO: false,
    disableiPadCheck: false,
    enableiPadLoginReload: false,
    linkParams: linkParams,
    hasChromeOSFeature: false,
    showLinkToAppStore: false,
    accountChooserDiscoveryUrl: accountChooserDiscoveryUrl,
    preventBrowserFromSavingOktaPassword: true,
    mfaAttestation: hasMfaAttestationFeature,
    enrollingFactor: '',
    stateTokenExpiresAt: '',
    stateTokenRefreshWindowMs: '',
    overrideExistingToken: false,
    signIn: {
      el: '#signin-container',
      baseUrl: baseUrl,
      brandName: 'Okta',
      logo: 'https://op1static.oktacdn.com/fs/bco/1/fs0j9se73jd398aaO0h7',
      logoText: 'Flywire logo',
      helpSupportNumber: orgSupportPhoneNumber,
      stateToken: stateToken,
      username: username,
      signOutLink: signOutUrl,
      consent: consentFunc,
      authScheme: authScheme,
      relayState: fromUri,
      proxyIdxResponse: proxyIdxResponse,
      idpDiscovery: {
        requestContext: idpDiscoveryRequestContext
      },
      features: {
        router: true,
        securityImage: securityImage,
        rememberMe: rememberMe,
        autoPush: autoPush,
        webauthn: webauthn,
        smsRecovery: smsRecovery,
        callRecovery: callRecovery,
        emailRecovery: emailRecovery,
        selfServiceUnlock: selfServiceUnlock,
        multiOptionalFactorEnroll: true,
        deviceFingerprinting: true,
        useDeviceFingerprintForSecurityImage: true,
        trackTypingPattern: false,
        hideSignOutLinkInMFA: hideSignOutForMFA,
        hideBackToSignInForReset: hideBackToSignInForReset,
        customExpiredPassword: true,
        idpDiscovery: idpDiscovery,
        passwordlessAuth: hasPasswordlessPolicy,
        consent: hasOAuth2ConsentFeature,
        showPasswordToggleOnSignInPage: showPasswordToggleOnSignInPage,
        registration: registration,
        redirectByFormSubmit: redirectByFormSubmit,
        restrictRedirectToForeground: true,
        showPasswordRequirementsAsHtmlList: showPasswordRequirementsAsHtmlList
      },

      assets: {
        baseUrl: "https\x3A\x2F\x2Fop1static.oktacdn.com\x2Fassets\x2Fjs\x2Fsdk\x2Fokta\x2Dsignin\x2Dwidget\x2F5.6.0"
      },

      language: okta.locale,
      i18n: {},

      customButtons: customButtons,

      piv: pivProperties,

      helpLinks: {
        help: '',
        forgotPassword: '',
        unlock: '',
        custom: customLinks,
        factorPage: factorPageCustomLink
      }
    }
  };

  loginPageConfig.signIn.i18n[okta.locale] = {
    
    'primaryauth.username.placeholder': usernameLabel,
    'primaryauth.username.tooltip': usernameInlineLabel,
    'primaryauth.password.placeholder': passwordLabel,
    'primaryauth.password.tooltip': passwordInlineLabel,
    'mfa.challenge.password.placeholder': passwordLabel,
    'primaryauth.title': signinLabel,
    'forgotpassword': forgotpasswordLabel,
    'unlockaccount': unlockaccountLabel,
    'help': helpLabel,
    'needhelp': footerHelpTitle,
    'password.forgot.email.or.username.placeholder': recoveryFlowPlaceholder,
    'password.forgot.email.or.username.tooltip': recoveryFlowPlaceholder,
    'account.unlock.email.or.username.placeholder': recoveryFlowPlaceholder,
    'account.unlock.email.or.username.tooltip': recoveryFlowPlaceholder
  };

  // When STAF is enabled and the token is not valid, the Widget must be reloaded to obtain a new stateToken. We're updating
  // the error message here as it isn't applicable for non-STAF orgs. The override is behind a new eng flag
  // See : OKTA-376620, Feature flag : ENG_CHANGE_INVALID_TOKEN_MESSAGE
  

  function isOldWebBrowserControl() {
    // We no longer support IE7. If we see the MSIE 7.0 browser mode, it's a good signal
    // that we're in a windows embedded browser.
    if (navigator.userAgent.indexOf('MSIE 7.0') === -1) {
      return false;
    }

    // Because the userAgent is the same across embedded browsers, we use feature
    // detection to see if we're running on older versions that do not support updating
    // the documentMode via x-ua-compatible.
    return document.all && !window.atob;
  }

  function isAbsoluteUri(uri) {
    var pat = /^https?:\/\//i;
    return pat.test(uri);
  }

  var unsupportedContainer = document.getElementById('okta-sign-in');

  var failIfCookiesDisabled = true;
  

  // Old versions of WebBrowser Controls (specifically, OneDrive) render in IE7 browser
  // mode, with no way to override the documentMode. In this case, inform the user they need
  // to upgrade.
  if (isOldWebBrowserControl()) {
    document.getElementById('unsupported-onedrive').removeAttribute('style');
    unsupportedContainer.removeAttribute('style');
  }
  else if (failIfCookiesDisabled && !navigator.cookieEnabled) {
    document.getElementById('unsupported-cookie').removeAttribute('style');
    unsupportedContainer.removeAttribute('style');
  }
  else {
    unsupportedContainer.parentNode.removeChild(unsupportedContainer);
    runLoginPage(function () {
      OktaLogin.initLoginPage(loginPageConfig);
    });
  }


}());
</script>

<script>
  window.addEventListener('load', function(event) {
    function applyStyle(id, style) {
      if (style) {
        var el = document.getElementById(id);
        if (el) {
          el.setAttribute('style', style);
        }
      }
    }
    applyStyle('login-bg-image', "background-image: none");
    applyStyle('login-bg-image-ie8', "");
  });
</script>

</body>
</html>