Parameterized AuthnRequest template
Cantor, Scott
cantor.2 at osu.edu
Wed Nov 2 15:40:40 UTC 2022
There is a feature, likely prone to abuse of various sorts, to feed an AuthnRequest template into the URL. I didn't do it because I thought it was a good idea to allow it, but it's there. I don't remember the details but the options should be documented.
When the SP is replaced, all of that will be Spring/Java and should have suitable extensibility for those prepared to accept that Spring and Java skills will be a prerequisite to using the SP at that point, just as it is with the IdP.
It's a good time to be thinking about how likely you even are to stay on this software since the current iteration has no future anyway, and pushing the dying version to its limits isn't a good direction to go.
-- Scott
More information about the users
mailing list