Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-1519

MFA transition action mishandles previous event determination

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.3.0, 3.3.1, 3.4.0, 3.3.2, 3.3.3, 3.4.1, 3.4.2, 3.4.3, 3.4.4, 3.4.5, 3.4.6
    • Fix Version/s: 4.0.0, 3.4.7
    • Component/s: Authentication
    • Labels:
      None

      Description

      I believe there's a flaw in the event handling code in the TransitionMFA action that affects cases where authn flows are run via reuse. The state of the system is such that I believe it re-derives the pre-existing "previous event" if one exists, and treats that as the one to operate on. That causes a misdiagnosis of the right step to follow in the rules configured and/or causes the final MFA result to be other than what it should be.

        Attachments

          Activity

            People

            Assignee:
            cantor.2@osu.edu Scott Cantor
            Reporter:
            cantor.2@osu.edu Scott Cantor
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 1 hour, 30 minutes
                1h 30m