Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-1266

RFE to deployer-constructed RequestedPrincipalContext

    XMLWordPrintable

    Details

      Description

      RFE per Scott Cantor to potentially revisit the code pertaining to the process described below...

      Handling our Duo user-opt in policy in the mfa-flow, one scenario required that a RequestedPrincipalContext be instantiated for an opt-in where mfa had not been previously requested by RelyingParty.

      It was fairly trivial for us, to instantiate the RPC and populate the operator property.  It gets a little trickier to add a principal to the empty immutable requestedPrincipals list.  Once I got that far, the authentication finalization was failing because the RPC contained an empty PrincipalEvalPredicateFactoryRegistry.  Scott had determined that the registry needed to be set to the shibboleth.AuthnComparisonRegistry (at least in our case), which worked out nicely in the end.

        Attachments

          Activity

            People

            Assignee:
            cantor.2@osu.edu Scott Cantor
            Reporter:
            jo180287e@umt.edu Josh Odowd
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 2 hours, 30 minutes
                2h 30m