<html>

  <head>

    <meta content="text/html; charset=windows-1252"

      http-equiv="Content-Type">

  </head>

  <body bgcolor="#FFFFFF" text="#000000">

    <div class="moz-cite-prefix">Currently the OPTIONAL means that

      authenticator is used just if it's configured for particular user

      ( Authenticator.configuredFor returns true for that user). In case

      of OTP, it means that OTP form is shown just if OTP is configured

      for particular user. <br>

      <br>

      It looks that OPTIONAL authenticator needs to return

      "requiresUser" with true, otherwise if it doesn't require user the

      error will be returned (even if authenticator is OPTIONAL).<br>

      <br>

      Marek<br>

      <br>

      On 07/06/16 17:29, Rashmi Singh wrote:<br>

    </div>

    <blockquote

cite="mid:CAJ0vL++gxxYXdjgoht0GLX2c5WFCUHumS8uUUndMmeTR7_ns3Q@mail.gmail.com"

      type="cite">

      <div dir="ltr">From the keycloak documentation and <a

          moz-do-not-send="true"

href="https://keycloak.github.io/docs/userguide/keycloak-server/html/auth_spi.html"><a class="moz-txt-link-freetext" href="https://keycloak.github.io/docs/userguide/keycloak-server/html/auth_spi.html">https://keycloak.github.io/docs/userguide/keycloak-server/html/auth_spi.html</a></a>

        <div><br>

        </div>

        <div>it is not very clear to me what the OPTIONAL setting for an

          execution mean.</div>

        <div><br>

        </div>

        <div>For example, when we have the following:</div>

        <div><br>

        </div>

        <div><a moz-do-not-send="true" id="d4e3847"

            style="color:rgb(51,51,51);font-family:'Lucida

Grande',Geneva,Verdana,Arial,sans-serif;font-size:12px;line-height:18px;text-align:justify">

            <pre class="" style="font-size:0.9em;font-family:courrier,monospace;overflow:auto;padding:5px 15px 5px 25px;border:1px solid rgb(204,204,204);background-color:rgb(245,245,245)">Forms Subflow - ALTERNATIVE

           Username/Password Form - REQUIRED

           OTP Password Form - OPTIONAL</pre>

          </a></div>

        <div><br>

        </div>

        <div><br>

        </div>

        <div>When can it enter the Optional OTP form? Do we need to add

          some code (some condition ?) in the

          UsernamePasswordAuthentication Code, so it enters the optional

          OTP form authenticator? Or something else? I am not so clear

          about the concept of this optional field and how to enter it.

          Can someone please explain this in detail?</div>

      </div>

      <br>

      <fieldset class="mimeAttachmentHeader"></fieldset>

      <br>

      <pre wrap="">_______________________________________________

keycloak-dev mailing list

<a class="moz-txt-link-abbreviated" href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a>

<a class="moz-txt-link-freetext" href="https://lists.jboss.org/mailman/listinfo/keycloak-dev">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a></pre>

    </blockquote>

    <br>

  </body>

</html>