SP step-up authentication

Cantor, Scott cantor.2 at osu.edu
Mon Apr 29 14:20:16 EDT 2019

On 4/29/19, 2:17 PM, "users on behalf of Plovich, Tony" <users-bounces at shibboleth.net on behalf of aplovich at anl.gov> wrote:

> Has there been any thought about making the redirect behavior something 
> the access control system can do?  It can be difficult to get people to 
> extend their app.

I never really saw static access control rules as a viable solution to real problems, it's too brittle. But you can install a custom error response in many different ways and any of those could issue a redirect. I'm not an Apache expert, but the SP has the same capability if the access property in the Errors element is set.

-- Scott

More information about the users mailing list