Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-12034

A choice selector for acr value accomplishment should be offered to the user where multiple mechanisms to achieve the requested acr value exists

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Expired
    • Affects Version/s: 5.5.2
    • Fix Version/s: None
    • Component/s: oauth2
    • Labels:
    • Target Version/s:

      Description

      When an OAuth2.0 request comes into OpenAM with either a claim requesting acr values or an acr_values param (or a combination of the two) and there is more than one available mechanism for accomplishing that acr (for instances, multiple chains that achieve the appropriate acr, or a chain and a tree - see the linked Improvement for further details) OpenAM should offer the ability to select which method the user would want to use to achieve that acr value.

      Additionally, if the acr value is non-essential, the user should be able to select to drop out of the authentication step, retaining their current session (and associated acr value if it exists).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                david.luna@forgerock.com David Luna
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: