[keycloak-user] SessionNotOnOrAfter Saml Attribute Support?

Jared Blashka jblashka at redhat.com
Tue Sep 20 14:36:15 EDT 2016


Saml spec allows for a SessionNotOnOrAfter attribute inside the
AuthnStatement and I see some getters/setters for that attribute
in AuthnStatementType.java, but it doesn't look like it gets invoked
anywhere, so we can't actually use it.

Were there any plans to give us a way to specify a value for this
attribute, or just set it to the length of sso session max? I had some
clients asking about it.

Jared
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160920/ecd433dc/attachment.html 


More information about the keycloak-user mailing list