SP step-up authentication
cantor.2 at osu.edu
Mon Apr 29 14:20:16 EDT 2019
On 4/29/19, 2:17 PM, "users on behalf of Plovich, Tony" <users-bounces at shibboleth.net on behalf of aplovich at anl.gov> wrote:
> Has there been any thought about making the redirect behavior something
> the access control system can do? It can be difficult to get people to
> extend their app.
I never really saw static access control rules as a viable solution to real problems, it's too brittle. But you can install a custom error response in many different ways and any of those could issue a redirect. I'm not an Apache expert, but the SP has the same capability if the access property in the Errors element is set.
More information about the users