Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-2984

Provide clear-on-disconnect (dis)connection strategy

    XMLWordPrintable

    Details

    • Type: Story
    • Status: Resolved
    • Priority: Critical
    • Resolution: Won't Do
    • Affects Version/s: Not Applicable
    • Fix Version/s: Not Applicable
    • Component/s: OpenAM
    • Labels:
      None

      Description

      As a route deployer, I want to block/unauthorize/refuses access to resources while IG is disconnected from AM, in order to guarantee that no one can access protected resources with a token that would have been revoked, or against a policy that may have changed.

      Acceptance criteria

      • New¬†value in the strategy selector for both SSO and PEF
      • When disconnected:
        • SSO/CDSSO returns a XXX status code
        • PEF returns an unauthorized status code

        Attachments

          Activity

            People

            Assignee:
            laurent.vaills Laurent Vaills
            Reporter:
            guillaume.sauthier Guillaume Sauthier
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: