SKFS 4.16.0 and after

Enabling Related Origin Requests (ROR) for a specific domain

Switch to (or login as) the strongkey user
```
shell> su - strongkey
```
Add a list of allowed related web origins to the database using the ror web service.
Please note: There should be atleast one active web origin configured for a domain, otherwise Related Origin Request (ROR) cannot be enabled in the FIDO Policy.
Retrieve the current policy for the domain using the instructions here. Set the value for enabled to true in the relatedOriginRequests policy element:
```
"relatedOriginRequests": {
   "enabled": true
}
```
Use the updatePolicy web service or skfsadminclient to update the modified policy for the domain.

Please note: SKFS administrator must create a WebAuthn file and host it at a location specified in the ROR specification (Please follow this link to retrieve the list of all active related web origins for a domain).

Disabling ROR for specific domain

Switch to (or login as) the strongkey user
```
shell> su - strongkey
```
Retrieve the current policy for the domain using the instructions here. Set the value of enabled to false in the relatedOriginRequests policy element:
```
"relatedOriginRequests": {
   "enabled": false
}
```
Use the skfsadminclient update Policy or updatePolicy web service to update the modified policy for the domain.