Fixing ForceAuthn
Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/bd0511ca Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/bd0511ca Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/bd0511ca Branch: refs/heads/master Commit: bd0511cabcc7fe1163eb83af2df7a7d59ac1184f Parents: bf460dd Author: Colm O hEigeartaigh <[email protected]> Authored: Thu Dec 8 11:46:09 2016 +0000 Committer: Colm O hEigeartaigh <[email protected]> Committed: Thu Dec 8 11:46:09 2016 +0000 ---------------------------------------------------------------------- .../idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/bd0511ca/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml ---------------------------------------------------------------------- diff --git a/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml b/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml index e385a25..c4adbe5 100644 --- a/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml +++ b/services/idp/src/main/webapp/WEB-INF/flows/saml-signin-request.xml @@ -94,7 +94,8 @@ <action-state id="wfreshParserRemoteAction"> <evaluate - expression="idpTokenExpiredAction.isTokenExpired(flowScope.home_realm, flowRequestContext)" /> + expression="idpTokenExpiredAction.isTokenExpired(flowScope.home_realm, flowRequestContext) + or authnRequestParser.isForceAuthentication(flowRequestContext)" /> <transition on="yes" to="redirectToTrustedIDP" /> <transition on="no" to="validateWReply" > <set name="flowScope.idpToken" value="externalContext.sessionMap[flowScope.home_realm]" />
