jmuehlner opened a new pull request, #846: URL: https://github.com/apache/guacamole-client/pull/846
This change allows the SAML auth extension to put a session token into a "pending" state when the SAML authentication attempt succeeds, but the overall auth attempt fails. This will allow a user to enter their TOTP code and resubmit the same auth token to resume their previous SAML auth session. After the login _does_ succeed, the SAML auth session is invalidated, ensuring that it can't be replayed. I think there's probably a lot of different ways to solve this issue - this one seemed like a pretty reasonable way to handle it. Let me know what you think! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
