[
https://issues.apache.org/jira/browse/FEDIZ-48?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13562011#comment-13562011
]
Oliver Wulff commented on FEDIZ-48:
-----------------------------------
Doesn't wfresh mean how much time ago the authentication can have occured? If
it's 5, that the authencation must not have occured longer than 5 minutes ago.
But we need some sort of mechanism to specify per application how long its
token can be valid (besides the usage of the wreq parameter which is the RST
for the STS)
http://docs.oasis-open.org/wsfed/federation/v1.2/os/ws-federation-1.2-spec-os.html#_Toc223175013
> Support wfresh properly in the IdP
> ----------------------------------
>
> Key: FEDIZ-48
> URL: https://issues.apache.org/jira/browse/FEDIZ-48
> Project: CXF-Fediz
> Issue Type: Improvement
> Affects Versions: 1.0.2
> Reporter: Colm O hEigeartaigh
> Assignee: Colm O hEigeartaigh
> Fix For: 1.1.0, 1.0.3
>
>
> This task is to properly support wfresh in the IdP. Currently, we only
> support "wfresh" in the context of forcing a re-authentication if it's equal
> to "0". We should also use it to specify the Lifetime when requesting a token
> from the STS.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
