...
The beans defined in authn/mfa-authn-config.xml follow:
| Bean ID / Type | Default | Function | |
|---|---|---|---|
shibboleth.authn.MFA.TransitionMap Map<String,MultiFactorAuthenticationTransition> | Static ruleset containing the starting point for MFA execution and the rules to use to decide how to do work | ||
shibboleth.authn.MFA.TransitionMapStrategy Function<ProfileRequestContext,Map<String,MultiFactorAuthenticationTransition> | Returns shibboleth.authn.MFA.TransitionMap | Function Optional function bean to return the ruleset to use instead of using a static ruleset | |
shibboleth.authn.MFA.Transition | Parent bean for defining transition rules in the values of the previous bean's map entries | ||
shibboleth.authn.MFA.validateLoginTransitions Boolean | true | Whether login flows should only be run with regard for forceAuthn/isPassive/nonBrowser conditions | |
shibboleth.authn.MFA.resultMergingStrategy | described above | Function to run to produce final merged result of MFA login flow during successful completion | |
shibboleth.authn.MFA.resultCachingPredicate Predicate<ProfileRequestContext> | An optional bean that can be defined to control whether to preserve the authentication result in an IdP session |
...