Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(jans-auth-server): allow authentication for max_age=0 #2361 #2362

Merged
merged 1 commit into from
Sep 12, 2022
Merged

feat(jans-auth-server): allow authentication for max_age=0 #2361 #2362

merged 1 commit into from
Sep 12, 2022

Conversation

yuriyz
Copy link
Contributor

@yuriyz yuriyz commented Sep 12, 2022

Prepare

Description

Setting max_age parameter with 0 value in a authorization request doesn't allow user to log in at all. After postlogin call user is redirected back to login page.

In addition we can introduce disableAuthnForMaxAgeZero with default value false. If true - authn will be disabled.

max_age
OPTIONAL. Maximum Authentication Age. Specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated by the OP. If the elapsed time is greater than this value, the OP MUST attempt to actively re-authenticate the End-User. (The max_age request parameter corresponds to the OpenID 2.0 PAPE [OpenID.PAPE] max_auth_age request parameter.) When max_age is used, the ID Token returned MUST include an auth_time Claim Value.

Target issue

closes #2361

Test and Document the changes

  • Static code analysis has been run locally and issues have been fixed
  • Relevant unit and integration tests have been added/updated
  • Relevant documentation has been updated if any (i.e. user guides, installation and configuration guides, technical design docs etc)

@yuriyz yuriyz added comp-jans-auth-server Component affected by issue or PR kind-feature Issue or PR is a new feature request labels Sep 12, 2022
@yuriyz yuriyz added this to the 1.0.3 milestone Sep 12, 2022
@yuriyz yuriyz self-assigned this Sep 12, 2022
@mo-auto mo-auto added the comp-jans-config-api Component affected by issue or PR label Sep 12, 2022
@yuriyz yuriyz merged commit aed6ee3 into main Sep 12, 2022
@yuriyz yuriyz deleted the jans-auth-server-2361 branch September 12, 2022 11:54
@sonarcloud
Copy link

sonarcloud bot commented Sep 12, 2022

[jans-config-api-parent] Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@sonarcloud
Copy link

sonarcloud bot commented Sep 12, 2022

[Jans authentication server parent] Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 1 Code Smell

0.0% 0.0% Coverage
0.0% 0.0% Duplication

This was referenced Nov 1, 2022
Merged
Merged
@mo-auto3 mo-auto3 mentioned this pull request Nov 1, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pujavs pujavs Awaiting requested review from pujavs pujavs is a code owner

@yurem yurem Awaiting requested review from yurem yurem is a code owner

Assignees

@yuriyz yuriyz

Labels
comp-jans-auth-server Component affected by issue or PR comp-jans-config-api Component affected by issue or PR kind-feature Issue or PR is a new feature request
Projects
None yet
Milestone
1.0.3
Development

Successfully merging this pull request may close these issues.

feat(jans-auth-server): allow authentication for max_age=0
2 participants
@yuriyz @mo-auto