Skip to content

Step up Authentication

Jump to bottom Edit New page
Hans Zandbelt edited this page May 30, 2017 · 17 revisions

TODO:

Since version version 2.3.0rc0 the new directive OIDCUnAutzAction enables step-up authentication scenarios when combined with the following:

  • add OIDCPathAuthRequestParams that is configurable on a per-path basis and use OIDCAuthRequestParams for the static per-provider value
  • add OIDCPathScope that is configurable on a per-path basis and concatenate with OIDCScope as static per-provider value

Note:

  • this setup can lead to infinite redirect loops
  • Session Management refresh with per-path authn request params & scopes is not possible (yet)
  • Apache 2.4 does the authorization-based redirect with a HTML page with a meta refresh tag
Add a custom footer
Add a custom sidebar
Clone this wiki locally