selectively inhibit previous session
Cantor, Scott
cantor.2 at osu.edu
Thu May 21 21:56:42 UTC 2020
Maybe explaining the confusion:
There are two conditions you can attach now. The original one that's named consistently with all the objects in the system is the "activationCondition" that controls whether Password can run at all. That would not be the one that applies here.
The later addition is called "reuseCondition" and is separate. It's a hook for *reuse* of a result from the flow, not initial use. It controls SSO behavior of a result.
It was added precisely because of what you're asking about. You want the flow to run, but you want it to run *again* now and not be skipped because of condition X.
Both are properties on the beans in general-authn.xml but they're separate.
-- Scott
More information about the users
mailing list