Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-18043

Device Match module not setting correct AuthLevel

    XMLWordPrintable

    Details

    • Rank:
      1|i0502o:
    • AM Sustaining Sprint 87
    • 2

      Description

      Bug description

      Despite Device Match AuthLevel being set to 5 and the device matching successfully, getSessionInfo shows AuthLevel as 0.

      How to reproduce the issue

      1. Setup SMTP server for HOTP (I used fakeSMTP) 
      2. Create authentication chain (Datastore, AuthLevel 0, Requisite > DeviceIDMatch, AuthLevel 5, Sufficient > HOTP, AuthLevel 0, Requisite > DeviceSave, AuthLevel 0, Requisite)
      3. Add AuthLevel to Session Property Whitelist Service
      4. Authenticate successfully, save device to profile
      5. Complete new authentication, it should complete before HOTP is reached
      Expected behaviour
      getSessionInfo returns AuthLevel 5
      Current behaviour
      getSessionInfo returns AuthLevel 0

        Attachments

          Issue Links

            Activity

              People

              kamal.sivanandam@forgerock.com Kamal Sivanandam
              aaron.haskins Aaron Haskins
              Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: