Honoring semantics for forceAuthn flag in the same manner as SAML
Basics
Logistics
Basics
Logistics
Description
Then adding the forceAuthn="true" flag within the OIDC.SSO bean this does not cause the authorization flow to trigger authentication in presence of an existing session.
The flag seems to be ignored altogether
Environment
None
Activity
Henri Mikkonen April 11, 2022 at 3:24 PM
Added configurable forceAuthnPredicate for the InitializeAuthenticationContext action. It’s set to ForceAuthnProfileConfigPredicate (protocol-independent) by default.
Then adding the
forceAuthn="true"flag within theOIDC.SSObean this does not cause the authorization flow to trigger authentication in presence of an existing session.The flag seems to be ignored altogether