FAL2 - max authentication age

[deansaxe]

Section 4.7 in SP800-63C Rev4 draft states:

An RP requiring authentication through a federation protocol SHALL specify the maximum acceptable authentication age to the IdP, either through the federation protocol (if possible) or through the terms of the trust agreement.

IPSIE OIDC SL1 should add the max_age claim to the requirements for the request from the RP to OP.

[deansaxe]

Update PR to include OP processing the max_age param and returning auth_time claim per call on June 17, 2025

[deansaxe]

@aaronpk I suggest that we close this issue since the openid/ipsie-openid-sl1#4 has been merged. The remaining work is to determine how to handle the prompt (#92) and multiple amr and auth_time claims (#96).

[deansaxe]

Closing this issue as completed. Related work continues on in #102.