-
Notifications
You must be signed in to change notification settings - Fork 12
Closed
Labels
Description
Section 4.7 in SP800-63C Rev4 draft states:
An RP requiring authentication through a federation protocol SHALL specify the maximum acceptable authentication age to the IdP, either through the federation protocol (if possible) or through the terms of the trust agreement.
IPSIE OIDC SL1 should add the max_age claim to the requirements for the request from the RP to OP.