authnContextTranslationStrategyEx: passing through the authenticationContextClassRef unmodified?
cantor.2 at osu.edu
Wed Oct 13 02:23:38 UTC 2021
On 10/12/21, 10:21 PM, "users on behalf of Wessel, Keith" <users-bounces at shibboleth.net on behalf of kwessel at illinois.edu> wrote:
> Regarding the comment on the fix. When you say cascades, you mean if the function returns nothing, it falls
> back on whatever came from the upstream IdP instead of responding with unspecified? If so, yes, I agree that
> that would make a lot of sense. If one really wanted to return unspecified, which we all know is a very bad
> idea, then they could explicitly do that in the function.
The code isn't in front of me, but I was thinking to run each injectible strategy, which IIRC is just two, the Ex one and the original which defaults to using the map bean. If the Ex returns null it tries the original.
More information about the users