selectively inhibit previous session

Cantor, Scott cantor.2 at
Thu May 21 21:56:42 UTC 2020

Maybe explaining the confusion:

There are two conditions you can attach now. The original one that's named consistently with all the objects in the system is the "activationCondition" that controls whether Password can run at all. That would not be the one that applies here.

The later addition is called "reuseCondition" and is separate. It's a hook for *reuse* of a result from the flow, not initial use. It controls SSO behavior of a result.

It was added precisely because of what you're asking about. You want the flow to run, but you want it to run *again* now and not be skipped because of condition X.

Both are properties on the beans in general-authn.xml but they're separate.

-- Scott

More information about the users mailing list