-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support Step-up authentication in OktaAuthGuard #132
Support Step-up authentication in OktaAuthGuard #132
Conversation
@@ -100,22 +105,46 @@ export class OktaAuthGuard implements CanActivate, CanActivateChild, CanLoad { | |||
return this.canActivate(route, state); | |||
} | |||
|
|||
private async handleLogin(originalUri?: string): Promise<void> { | |||
private async isAuthenticated(routeData?: Data, authState?: AuthState | null) { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Should canActivateChild
also have this check?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
canActivateChild
just calls callActivate
: https://github.com/okta/okta-angular/pull/132/files#diff-e5e5f0918a3176e60fa44ce0fe3d25a6311a8ed8f3c4a0113730eb3e0f5e941eR101-R106
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
yep, gotcha, just had to actually look better. Thanks!
Description
Added support of Step-up authentication in
OktaAuthGuard
by specifyingacrValues
in route data.If current token does not have requested level of assurance, there will be a redirect to
/authorize
endpoint with providedacr_values
in query parametersMinimum supported version of okta-auth-js for this feature is 7.1.0
Changes for test apps:
acr
claim)Resolves #125
Internal ref: OKTA-597151
PR Checklist
Please check if your PR fulfills the following requirements:
PR Type
What kind of change does this PR introduce?
Does this PR introduce a breaking change?