1:36 p.m.
Saml spec allows for a SessionNotOnOrAfter attribute inside the
AuthnStatement and I see some getters/setters for that attribute
in AuthnStatementType.java, but it doesn't look like it gets invoked
anywhere, so we can't actually use it.
Were there any plans to give us a way to specify a value for this
attribute, or just set it to the length of sso session max? I had some
clients asking about it.
Jared
3:25 p.m.
I ended up submitting https://github.com/keycloak/keycloak/pull/3250.
Please take a look!
Jared
On Tue, Sep 20, 2016 at 2:36 PM, Jared Blashka <jblashka(a)redhat.com> wrote:
Saml spec allows for a SessionNotOnOrAfter attribute inside the
AuthnStatement and I see some getters/setters for that attribute
in AuthnStatementType.java, but it doesn't look like it gets invoked
anywhere, so we can't actually use it.
Were there any plans to give us a way to specify a value for this
attribute, or just set it to the length of sso session max? I had some
clients asking about it.
Jared
2:11 a.m.
Your PR makes the testsuite fail. There's also no new tests for the
addition.
On 20 September 2016 at 22:25, Jared Blashka <jblashka(a)redhat.com> wrote:
I ended up submitting
https://github.com/keycloak/keycloak/pull/3250.
Please take a look!
Jared
On Tue, Sep 20, 2016 at 2:36 PM, Jared Blashka <jblashka(a)redhat.com>
wrote:
> Saml spec allows for a SessionNotOnOrAfter attribute inside the
> AuthnStatement and I see some getters/setters for that attribute
> in AuthnStatementType.java, but it doesn't look like it gets invoked
> anywhere, so we can't actually use it.
>
> Were there any plans to give us a way to specify a value for this
> attribute, or just set it to the length of sso session max? I had some
> clients asking about it.
>
> Jared
>
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
3022
days inactive
3032
days old
2 comments
2 participants
participants (2)
-
Jared Blashka -
Stian Thorgersen