Dug more into this on my end, and discovered a few more things. *) trustedDevice is working fine with mfa-authy (just grabbed another random one that had a free trial) - I see it log the trustedDevice, and then read back the trustedDevice and bypass authy accordingly. I've not tried other mfas yet to see if there's a pattern.
*) when I try to use trustedDevice w/ mfa-gauth, the trustedDevice flow/hooks (sorry, not sure of the correct terminology) triggers even if the user's setup to bypass the multifactor - this is NOT the behavior when I use mfa-authy (in that case, bypassing the mfa bypasses trustedDevice altogether). That combined w/ the fact the error I'm receiving seems to because it's being directed to a non-existent "success" state in the "login" flow makes it look like that for some reason the mfa-gauth flows aren't working right when combined w/ trustedDevice. I'm sort of new to Java webflow (and not really a programmer), so not quite sure if I'm understanding the interactions correctly - I don't mind digging into code to try and learn more, but not quite sure where to begin since it's all quite daunting. In any case, any help would be appreciated! Matt Elson -- - CAS gitter chatroom: https://gitter.im/apereo/cas - CAS mailing list guidelines: https://apereo.github.io/cas/Mailing-Lists.html - CAS documentation website: https://apereo.github.io/cas - CAS project website: https://github.com/apereo/cas --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/8e68ce27-6ddf-fa7f-20ec-8e262a4d8588%40fastmail.net.