Replies: 1 comment 4 replies
-
the scenario is covered as described here: https://github.com/zmartzone/mod_auth_openidc/wiki/Step-up-Authentication |
Beta Was this translation helpful? Give feedback.
4 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi,
How would you suggest going about supporting multiple protected resource specific apps? Currently the module supports defining parameters ('aud' or 'resource') on a per path basis within conf file.
Current behavior with server cache:
Desired behavior with server cache:
I have modified the oidc_session_encode function to save the user's aud value as the key and the session state as the value. I then encode that whole json object. I also updated the decode function to pull based on resource trying to access.
However, it's working for steps 1 - 5 BUT not working for 6. The session is getting cleared out for some reason when logging into a new protected resource. Could someone please advise where the session may be getting cleared or what's the correct way of supporting multiple resources? Thanks!
Example of what would be written to cache:
uuid={ { "resource1" : {<state_obj>} }, { "resource2" : {<state_obj>} } }
Beta Was this translation helpful? Give feedback.
All reactions