Re: [keycloak-user] SAML2.0 Identity Provider modify authn context / extensions

FYI to anyone else doing stuff related to this. I also needed to add custom authn context class references and ended up re-implementing the SAML2AuthnRequestBuilder. Basically copy-pasting the old one and adding the methods required to add stuff to the RequestedAuthnContextType. Martin On Fri, 24 Feb 2017 at 08:43 Martin Hardselius <martin.hardselius(a)gmail.com&gt; wrote: > Got it, thanks! > > On Fri, 24 Feb 2017 at 08:30 Hynek Mlnarik <hmlnarik(a)redhat.com&gt; wrote: > > The latter, you need to extend SAMLIdentityProvider. I'd suggest adding > extensions to the AuthnRequest via SAML2AuthnRequestBuilder.addExtension() > method rather than supplying query params for the sake of simplicity. > > --Hynek > > On 02/23/2017 05:17 PM, Martin Hardselius wrote: >> Hi, >> >> Is there an easy way to add stuff to the authn context or add extensions > to >> the AuthN request? Or even add query parameters to the destination url? >> >> Context: >> >> The SAML2.0 Provider I'm integrating with supports several auth methods. >> Usually you would end up on a method select page, where the options are >> presented to you, once you've been forwarded to the IDP. They do however >> support selecting an option directly by modifying the authncontext. They >> also support prefilling information by adding extensions to the authn >> request or adding supplying it through query params. Kind of like "login >> hint". >> >> So. Easy way, or do I have to extend SAMLIdentityProvider? >> >> Martin >> _______________________________________________ >> keycloak-user mailing list >> keycloak-user(a)lists.jboss.org >> https://lists.jboss.org/mailman/listinfo/keycloak-user >> > _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user