-
Notifications
You must be signed in to change notification settings - Fork 6.1k
Open
Labels
in: saml2An issue in SAML2 modulesAn issue in SAML2 modulestype: enhancementA general enhancementA general enhancement

Description
Expected Behavior
As a service provider, it would be great if we could override the following parameter in a SAMLRequest
- saml:AuthnContextClassRef
- ForceAuthn
- IsPassive
Current Behavior
Currently, we are having the default values configured which is
- saml:AuthnContextClassRef = empty
- ForceAuthn =false OpenSamlAuthenticationRequestFactory.java#L171
- IsPassive = false OpenSamlAuthenticationRequestFactory.java#L172
Context
As a service provider, we want to enforce the user is always prompted for authentication while access some sensitive service so we would like to set the following values.
saml:AuthnContextClassRef = urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
ForceAuthn =true
Metadata
Metadata
Assignees
Labels
in: saml2An issue in SAML2 modulesAn issue in SAML2 modulestype: enhancementA general enhancementA general enhancement