Rehydrate context after expiringPassword intercept
Herron, Joel D
herronj at uww.edu
Wed Jun 30 16:21:30 UTC 2021
Fantastic... So I shouldn't be see the ExpiringPassword Interceptor run before the MFA flow runs. It should go after that fully completes in a normal setup? So somewhere my predecessor has set it up to run right after LDAP auth happens...
--Joel
On 6/30/21, 11:12 AM, "users on behalf of Cantor, Scott" <users-bounces at shibboleth.net on behalf of cantor.2 at osu.edu> wrote:
*EXTERNAL EMAIL*
There's no such thing as an "intercept" in the middle of MFA. Interceptors run at 3 points, and none of them are in the middle of authentication.
If you mean something custom and not the interceptor, that's a different, though likely complex and "outside scope of my list support", question.
-- Scott
--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list